$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: Otk77m+bot4Pcw/9A5SNGEst5y/gzuZxTukdYy7MyOg= Subject key identifier: C9:0B:72:62:9C:AE:6D:68:D4:7F:BA:D5:8E:57:5E:3E:A4:A3:0B:39 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 07D8 Signing time: Thu 12 Jun 2025 20:51:23 +0000 Manifest this update: Thu 12 Jun 2025 20:51:22 +0000 Manifest next update: Thu 19 Jun 2025 20:51:22 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: AGVH7jDNcKh2hWEHjMQtQUsLXb/40uaobdLKLePxRPQ=) 2: BF07B0DA16AF11F08B8C4061C4F9AE02.roa (hash: m5fvUWDyLmphSj+hveftDjH5v8ZvHtc3dCRNArmrofc=) 3: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 4: 1070E6CA9A8311EF8BE0F826C4F9AE02.roa (hash: 5usMHuwC29/GKSbCm/Fabiikjfpjet0V04t/dPRj3vM=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 38BE1074FC0F11EA8DEF4D28C4F9AE02.roa (hash: iWWPKNMJez26/4BW7/wljyQN/N1JrdnLJYQsd0J35V0=) 7: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Jun 12 20:51:22 2025 GMT Not After : Jun 19 20:51:22 2025 GMT Subject: CN=684b3dcb-c5a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c7:d4:af:16:9e:43:40:6a:31:12:5f:8e:d3: dd:ae:ad:2b:d0:10:25:bf:f6:a7:8c:32:93:5f:c5: b9:73:bd:23:b1:f7:83:f6:ad:7f:ae:30:a7:3c:4f: 4b:3d:6c:fe:98:8e:27:fc:ec:99:68:1b:16:d8:3a: 74:3b:e3:e5:13:52:0d:e4:4d:d8:d6:95:d3:df:9f: d5:4d:33:92:b2:cc:6f:9b:94:bd:cc:95:4f:c2:98: 3e:d4:3d:7a:2f:62:a0:36:aa:9c:a8:98:35:86:06: 40:2f:05:03:99:2f:04:3f:a8:f6:9d:5e:33:f6:61: 4a:6f:1b:59:72:f0:30:0b:6a:13:32:93:6c:73:93: a1:e4:fd:1b:74:e9:10:42:0e:4a:b3:24:d0:c6:05: 02:56:eb:bc:57:4e:48:18:d6:c2:35:65:d1:62:59: 24:e9:f1:f1:33:8f:e6:2f:e2:37:07:28:58:b1:90: 13:eb:c0:c7:de:c1:7f:d0:20:16:27:b1:35:4d:a8: 44:51:b2:e8:bb:4c:2c:aa:27:5e:c8:e8:38:88:72: 72:fd:9c:70:81:e3:75:fb:b3:11:1d:2e:a8:3b:8a: bc:58:24:51:02:d3:ab:15:80:da:6a:2a:70:1e:9a: 7d:2f:c2:30:5f:29:3a:0b:d7:a6:57:64:20:eb:b2: e3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0B:72:62:9C:AE:6D:68:D4:7F:BA:D5:8E:57:5E:3E:A4:A3:0B:39 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:bd:df:9c:7c:5d:a4:8a:fa:9e:fe:59:9b:53:ef:60:dd:e3: e6:d6:25:bf:bc:9c:90:52:5c:76:f4:b0:04:03:e2:0c:62:f8: 75:80:ff:76:60:b5:96:f6:28:60:9b:2e:5f:99:e3:e2:87:20: f7:d4:b6:74:d7:9b:9c:a1:bc:b1:34:7f:d7:cd:36:5a:9f:5c: b0:ae:02:82:d8:5c:9d:eb:26:9b:e2:04:53:1c:55:53:02:f7: 4d:07:c7:b1:32:d4:04:93:14:74:78:06:53:00:1c:e1:3e:64: 43:a7:39:f0:ec:1f:e7:a3:87:57:40:15:02:72:20:2b:d5:21: ab:57:1e:5b:6e:93:7a:29:01:8e:53:25:62:32:d2:1c:5b:a8: 20:e4:9a:70:39:35:04:6e:f5:80:66:40:99:0e:45:24:d1:67: e8:a5:2d:e8:4d:30:2f:3f:20:ea:e3:37:7e:a2:72:3d:5d:7c: d6:e5:0e:a1:3e:af:cb:e7:b0:58:a8:92:f6:d7:37:0a:d7:d0: 77:61:ee:40:6b:c6:64:0f:31:64:84:60:9a:b0:1e:12:3d:90: bf:71:e1:fb:b1:7e:2a:a9:0a:ee:0f:a3:df:50:a5:68:de:9a: ae:fb:14:1c:70:a5:5d:de:63:64:26:90:55:a8:e4:b9:22:40: 59:61:e0:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUwNjEyMjA1MTIyWhcNMjUwNjE5MjA1MTIyWjAYMRYwFAYD VQQDEw02ODRiM2RjYi1jNWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsfUrxaeQ0BqMRJfjtPdrq0r0BAlv/anjDKTX8W5c70jsfeD9q1/rjCnPE9L PWz+mI4n/OyZaBsW2Dp0O+PlE1IN5E3Y1pXT35/VTTOSssxvm5S9zJVPwpg+1D16 L2KgNqqcqJg1hgZALwUDmS8EP6j2nV4z9mFKbxtZcvAwC2oTMpNsc5Oh5P0bdOkQ Qg5KsyTQxgUCVuu8V05IGNbCNWXRYlkk6fHxM4/mL+I3ByhYsZAT68DH3sF/0CAW J7E1TahEUbLou0wsqideyOg4iHJy/ZxwgeN1+7MRHS6oO4q8WCRRAtOrFYDaaipw Hpp9L8IwXyk6C9emV2Qg67LjywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkLcmKc rm1o1H+61Y5XXj6kows5MB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJvd+cfF2kivqe/lmbU+9g3ePm1iW/vJyQUlx29LAEA+IMYvh1gP92 YLWW9ihgmy5fmePihyD31LZ015ucobyxNH/XzTZan1ywrgKC2Fyd6yab4gRTHFVT AvdNB8exMtQEkxR0eAZTABzhPmRDpznw7B/no4dXQBUCciAr1SGrVx5bbpN6KQGO UyViMtIcW6gg5JpwOTUEbvWAZkCZDkUk0WfopS3oTTAvPyDq4zd+onI9XXzW5Q6h Pq/L57BYqJL21zcK19B3Ye5Aa8ZkDzFkhGCasB4SPZC/ceH7sX4qqQruD6PfUKVo 3pqu+xQccKVd3mNkJpBVqOS5IkBZYeDR -----END CERTIFICATE-----Generated at Sat Jun 14 18:58:12 2025 by rpki-client