$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: 2SfC0JFhoaBZM4QC2NyObfvXy2AMkgJnYeCkz2ItalE= Subject key identifier: 16:F3:CB:76:EE:B7:68:26:8A:5C:82:20:F4:6A:6B:4B:6C:13:D9:4E Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 05DA Signing time: Sat 14 Jun 2025 22:53:54 +0000 Manifest this update: Sat 14 Jun 2025 22:53:54 +0000 Manifest next update: Sat 21 Jun 2025 22:53:54 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: R1MutXczoKkL2F5KcfELrXhXFNZV5hv0+Ss0dgM6Axw=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: V45gxxPbP3gB5dgB3aRdYWLo9/HOqXLXWjCDGDuIpeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Jun 14 22:53:54 2025 GMT Not After : Jun 21 22:53:54 2025 GMT Subject: CN=684dfd82-7f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c9:61:2a:63:93:b2:56:83:0f:a7:1a:0d:98: 6b:f5:10:e4:93:31:49:a4:7c:12:24:99:74:61:e3: ec:b9:bb:f9:96:ae:69:52:10:27:ef:ac:84:d2:91: 43:bd:b7:f0:2a:91:1f:2b:33:7d:f7:d5:ca:52:8f: 2a:2b:48:a4:38:07:b9:9e:cb:90:c2:59:88:b9:66: 21:40:d8:c2:f5:39:8a:77:8c:b3:63:81:0b:fa:a4: 4f:87:14:f4:92:e7:ee:dc:84:bf:c4:1f:6b:f7:46: 4c:a4:ec:f5:1b:99:72:f1:ab:20:09:4c:bb:57:32: 85:67:4f:66:97:1f:ed:15:f3:f6:28:74:f2:dd:d2: 48:54:7a:fb:36:10:96:0f:09:22:e9:7e:5c:93:3c: db:a9:f7:7b:9a:77:34:a3:64:57:7e:27:98:9a:27: ab:bc:4e:4c:71:b7:50:94:c6:6d:ce:f6:e4:a8:21: 12:9e:7c:c2:3b:21:91:47:e5:e5:a0:94:24:b8:47: a1:90:68:ca:77:eb:9f:de:8d:95:28:5c:03:41:a9: eb:28:09:c1:41:31:03:d1:6f:a8:b4:68:a6:d0:81: fc:fc:82:7f:fe:d2:54:b1:3d:66:e7:0a:db:14:4a: ee:7c:1a:09:3f:b9:b4:51:d8:66:12:ac:bc:e5:0d: 81:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F3:CB:76:EE:B7:68:26:8A:5C:82:20:F4:6A:6B:4B:6C:13:D9:4E X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c2:b8:b9:de:1a:fc:3d:d0:e4:f8:d3:90:8b:25:ba:e4:b6: 7e:ae:b1:c8:8e:34:3f:d8:1e:e6:c0:bf:7c:88:85:70:d3:47: e2:3d:f6:89:df:c3:6a:38:ea:df:da:b7:3b:dc:00:e1:b3:29: 9e:61:c1:3e:6a:fc:8b:ba:01:c9:b8:f4:58:93:b9:d0:a8:80: 51:b7:e9:b6:d6:71:8c:f3:58:61:42:4b:1b:7f:77:10:1a:e7: 72:61:cf:c7:6a:0f:63:02:cd:12:0b:96:51:de:a7:05:80:8a: ef:f7:38:72:77:16:f9:77:99:e5:c3:d7:21:a1:f7:c6:b5:d5: 54:be:2f:8b:16:9d:f0:80:7b:67:61:49:1b:fa:40:ee:60:20: f5:15:a0:e0:49:2f:d1:24:fb:4e:bc:60:b5:ce:d1:9b:cf:71: a1:b1:3e:6e:21:75:2e:ed:cd:af:aa:1f:85:f0:ad:61:1b:84: 64:ac:cc:c8:0b:68:05:29:2d:f7:df:9a:ed:d9:57:23:9d:83: 26:0e:66:14:01:4f:05:ad:db:b8:72:ef:b8:28:18:f0:50:a2: 30:6c:bf:c1:bf:fa:21:e0:60:36:93:12:25:4e:18:6b:0e:f7: 0c:42:c6:33:b8:69:0e:7f:5f:a8:13:50:2b:b6:79:f5:a8:66: a6:dd:be:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwNjE0MjI1MzU0WhcNMjUwNjIxMjI1MzU0WjAYMRYwFAYD VQQDEw02ODRkZmQ4Mi03ZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMlhKmOTslaDD6caDZhr9RDkkzFJpHwSJJl0YePsubv5lq5pUhAn76yE0pFD vbfwKpEfKzN999XKUo8qK0ikOAe5nsuQwlmIuWYhQNjC9TmKd4yzY4EL+qRPhxT0 kufu3IS/xB9r90ZMpOz1G5ly8asgCUy7VzKFZ09mlx/tFfP2KHTy3dJIVHr7NhCW Dwki6X5ckzzbqfd7mnc0o2RXfieYmiervE5McbdQlMZtzvbkqCESnnzCOyGRR+Xl oJQkuEehkGjKd+uf3o2VKFwDQanrKAnBQTED0W+otGim0IH8/IJ//tJUsT1m5wrb FErufBoJP7m0UdhmEqy85Q2B+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbzy3bu t2gmilyCIPRqa0tsE9lOMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDwri53hr8PdDk+NOQiyW65LZ+rrHIjjQ/2B7mwL98iIVw00fiPfaJ 38NqOOrf2rc73ADhsymeYcE+avyLugHJuPRYk7nQqIBRt+m21nGM81hhQksbf3cQ GudyYc/Hag9jAs0SC5ZR3qcFgIrv9zhydxb5d5nlw9choffGtdVUvi+LFp3wgHtn YUkb+kDuYCD1FaDgSS/RJPtOvGC1ztGbz3GhsT5uIXUu7c2vqh+F8K1hG4RkrMzI C2gFKS3335rt2VcjnYMmDmYUAU8Frdu4cu+4KBjwUKIwbL/Bv/oh4GA2kxIlThhr DvcMQsYzuGkOf1+oE1Artnn1qGam3b7X -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:28 2025 by rpki-client