$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: GeIX3NZrAh36cBxUDbXDonkyU9jkuGsKHEsyASFujFw= Subject key identifier: 96:54:39:CE:AE:A9:97:2F:D4:A7:57:7C:42:65:16:E5:C4:E2:FE:D3 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 07F5 Signing time: Fri 08 Aug 2025 21:25:45 +0000 Manifest this update: Fri 08 Aug 2025 21:25:45 +0000 Manifest next update: Fri 15 Aug 2025 21:25:45 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: WJ5sR2eb2yj2c72lDYYHzHRgLKqKl3HXBczgoZlumCE=) 2: BF07B0DA16AF11F08B8C4061C4F9AE02.roa (hash: m5fvUWDyLmphSj+hveftDjH5v8ZvHtc3dCRNArmrofc=) 3: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 4: 1070E6CA9A8311EF8BE0F826C4F9AE02.roa (hash: 5usMHuwC29/GKSbCm/Fabiikjfpjet0V04t/dPRj3vM=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 38BE1074FC0F11EA8DEF4D28C4F9AE02.roa (hash: iWWPKNMJez26/4BW7/wljyQN/N1JrdnLJYQsd0J35V0=) 7: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Aug 8 21:25:45 2025 GMT Not After : Aug 15 21:25:45 2025 GMT Subject: CN=68966b59-85e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:8b:f5:74:97:99:07:53:94:e0:d8:09:7b: ef:1c:15:a7:85:f1:4f:0c:e0:1f:d7:91:f7:07:38: 1e:15:ce:65:a8:11:7b:83:5c:ec:15:72:70:01:1c: 55:dc:c0:36:97:22:6a:02:2e:05:34:97:fa:d6:80: 04:fa:c0:51:c1:15:be:26:fd:ca:1a:48:37:88:7c: 60:bb:e3:ec:2e:d1:be:98:62:41:32:c5:8a:5d:45: d1:b8:07:58:78:ee:b7:7e:4c:3d:ac:6d:95:b3:21: 48:cb:41:71:a9:31:f9:2f:c0:5a:34:54:7a:9c:c3: 54:55:89:34:ae:cf:e2:30:23:e2:ef:b4:2d:ff:e7: 29:85:c6:d6:2c:2b:c9:cc:10:89:d1:42:b6:04:62: 72:bc:7a:5b:36:ef:13:69:a4:2f:54:18:14:b8:6e: 2d:eb:b2:46:f2:47:2c:91:ad:ca:47:73:91:80:c1: 14:24:82:25:f5:2c:c8:1c:ed:9d:b5:d4:aa:5f:72: f0:67:f9:1c:5e:58:a0:bb:35:dd:38:0e:17:03:f9: e9:3c:5c:ee:8b:bc:ee:44:0d:ef:81:fd:cb:8d:32: 49:df:21:34:ed:42:3a:70:35:86:4c:9a:9f:12:61: 36:94:13:13:fb:91:5b:20:4e:49:fa:19:71:39:80: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:54:39:CE:AE:A9:97:2F:D4:A7:57:7C:42:65:16:E5:C4:E2:FE:D3 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:87:12:c3:e2:0b:4a:19:38:78:ec:56:38:b8:b7:4b:05:0b: 8d:79:76:bd:55:71:1b:1c:04:5a:96:66:a1:80:ac:ce:54:19: 32:bc:ff:2b:1e:5e:52:56:e7:28:8d:b8:b0:78:5e:b0:b6:ae: 45:e5:52:56:d8:25:3f:0c:62:9f:0a:c5:51:58:c2:5e:08:f3: 01:66:2f:95:66:0b:02:a9:ae:3a:6d:96:0e:20:c3:b5:5a:33: 98:24:06:0b:e9:a1:2d:e0:7f:1b:4f:07:30:38:f8:b7:24:ad: a3:25:10:ca:be:34:8e:6a:d3:fe:7c:aa:75:d8:29:ff:e9:69: a5:b9:17:9a:21:c3:5c:c2:ce:30:4f:07:44:c0:23:04:64:9b: 21:e0:43:67:0c:e9:c7:b8:d2:ca:43:be:b0:33:f8:9a:80:07: b8:d8:bd:65:03:21:70:66:bd:b1:2e:99:7f:d4:ea:29:77:fc: 74:8c:8e:93:e4:d2:2e:fe:0e:64:5f:ea:de:5f:83:c9:56:8c: a8:e5:e1:00:64:bd:ac:25:9f:9f:5c:9b:d2:e8:20:cd:42:83: 71:18:64:39:26:f3:d9:38:a0:e0:ad:91:8f:bb:6d:c2:79:42: ab:68:08:f0:04:af:60:15:6f:d7:18:06:34:83:b8:f4:b5:78: 9f:f5:ef:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUwODA4MjEyNTQ1WhcNMjUwODE1MjEyNTQ1WjAYMRYwFAYD VQQDEw02ODk2NmI1OS04NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HuL9XSXmQdTlODYCXvvHBWnhfFPDOAf15H3BzgeFc5lqBF7g1zsFXJwARxV 3MA2lyJqAi4FNJf61oAE+sBRwRW+Jv3KGkg3iHxgu+PsLtG+mGJBMsWKXUXRuAdY eO63fkw9rG2VsyFIy0FxqTH5L8BaNFR6nMNUVYk0rs/iMCPi77Qt/+cphcbWLCvJ zBCJ0UK2BGJyvHpbNu8TaaQvVBgUuG4t67JG8kcska3KR3ORgMEUJIIl9SzIHO2d tdSqX3LwZ/kcXliguzXdOA4XA/npPFzui7zuRA3vgf3LjTJJ3yE07UI6cDWGTJqf EmE2lBMT+5FbIE5J+hlxOYBsAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZUOc6u qZcv1KdXfEJlFuXE4v7TMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvhxLD4gtKGTh47FY4uLdLBQuNeXa9VXEbHARalmahgKzOVBkyvP8r Hl5SVucojbiweF6wtq5F5VJW2CU/DGKfCsVRWMJeCPMBZi+VZgsCqa46bZYOIMO1 WjOYJAYL6aEt4H8bTwcwOPi3JK2jJRDKvjSOatP+fKp12Cn/6WmluReaIcNcws4w TwdEwCMEZJsh4ENnDOnHuNLKQ76wM/iagAe42L1lAyFwZr2xLpl/1Oopd/x0jI6T 5NIu/g5kX+reX4PJVoyo5eEAZL2sJZ+fXJvS6CDNQoNxGGQ5JvPZOKDgrZGPu23C eUKraAjwBK9gFW/XGAY0g7j0tXif9e+w -----END CERTIFICATE-----Generated at Sat Aug 9 01:06:49 2025 by rpki-client