$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: IOsDdqi7pDWEfTK6g76q+uiKYk0x2NSoKZSQyHUEqNQ= Subject key identifier: BA:4B:78:3D:97:D8:34:B4:24:B4:10:5E:1A:7E:28:69:07:FC:E9:C1 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 061B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 05F6 Signing time: Fri 08 Aug 2025 23:30:41 +0000 Manifest this update: Fri 08 Aug 2025 23:30:41 +0000 Manifest next update: Fri 15 Aug 2025 23:30:41 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: ajpU6aWjCVpm/5gSHxmEiTrmL6e3o/hBgmdBYXs9mgs=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: V45gxxPbP3gB5dgB3aRdYWLo9/HOqXLXWjCDGDuIpeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Aug 8 23:30:41 2025 GMT Not After : Aug 15 23:30:41 2025 GMT Subject: CN=689688a1-1890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:de:b2:55:ae:b6:8a:92:b1:85:7f:b1:13:1c: c6:21:c9:20:03:87:da:2e:0a:32:e3:08:e1:aa:c7: 8e:0b:fc:f9:89:42:d1:27:99:41:98:c2:c7:fc:04: 7d:00:4d:59:ee:d7:9c:5a:67:e6:02:cd:50:30:80: b8:83:97:1d:d4:e5:7f:13:9f:31:4c:98:05:8f:c0: e3:4d:7a:db:d6:24:58:f4:78:18:f0:f7:cd:d3:f4: d4:16:c5:4e:0c:da:55:0b:9f:d5:b3:06:0e:ae:4e: 61:e8:3e:ef:93:50:0f:31:69:82:42:cc:44:3b:b8: ee:b0:45:7f:c8:c4:0a:f5:21:44:c8:e0:3d:4a:60: 84:cb:df:94:cc:05:5c:fb:83:30:6c:44:15:02:31: 38:01:15:21:7e:83:cc:17:c4:9c:5b:2b:44:8c:0c: 96:f7:24:0f:40:d2:59:1f:fd:26:67:d2:36:6b:3f: 1a:ef:37:be:4f:82:cb:a9:6a:be:96:43:db:3a:fa: 7a:d3:28:8f:7b:06:94:cf:9f:20:00:1a:ef:42:42: 9d:3b:50:b1:b8:d9:3e:d9:ae:f6:0d:3c:35:29:46: 24:da:72:d9:0d:87:d6:6a:b6:83:e1:d1:0e:28:dd: 92:bc:4a:9c:9b:d6:10:37:78:f1:66:ca:27:6e:17: d9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4B:78:3D:97:D8:34:B4:24:B4:10:5E:1A:7E:28:69:07:FC:E9:C1 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:d9:cb:88:d4:d8:19:7d:8f:31:e4:80:16:97:c9:40:f5:5b: e7:ee:16:e6:ca:d1:94:b2:6c:1f:60:d7:0e:f1:71:b3:cf:8c: 59:92:5c:b0:e2:2f:d5:13:23:18:5f:45:5e:f2:a1:99:e2:c5: 48:86:d4:1e:7a:0a:e4:50:e3:c3:30:a4:1e:3a:d8:71:da:3b: 58:56:63:80:ac:ae:6b:58:db:0b:b8:fc:fa:c4:4d:c4:88:ea: 5f:99:a7:ae:17:0b:3f:74:3e:f0:7b:d9:e2:3d:f9:f3:f8:d1: 19:7d:32:d9:17:54:d8:3e:49:a5:f1:f8:54:b9:39:2e:5d:72: 0e:85:b9:18:5d:8c:fe:9a:17:9f:bd:80:34:0b:29:9c:87:9c: 86:bd:65:f4:30:09:35:8e:f8:77:4c:46:ce:ba:ec:5c:74:4a: d0:ad:ab:7a:55:79:fd:53:0f:e5:df:2a:76:da:cc:c2:66:cb: 51:5a:76:64:c7:e8:cb:4a:2e:9c:23:1c:20:44:ff:28:fc:7b: f8:17:97:50:b8:2b:a0:8a:35:dd:e3:8e:d1:4c:85:30:73:4d: 81:8d:72:d8:5d:45:f3:10:d9:69:af:eb:e8:a3:96:99:85:fc: 8f:44:46:d4:7f:0e:15:68:8a:c7:05:7c:d4:4c:5c:09:c9:d4: 97:8f:99:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwODA4MjMzMDQxWhcNMjUwODE1MjMzMDQxWjAYMRYwFAYD VQQDEw02ODk2ODhhMS0xODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA896yVa62ipKxhX+xExzGIckgA4faLgoy4wjhqseOC/z5iULRJ5lBmMLH/AR9 AE1Z7tecWmfmAs1QMIC4g5cd1OV/E58xTJgFj8DjTXrb1iRY9HgY8PfN0/TUFsVO DNpVC5/VswYOrk5h6D7vk1APMWmCQsxEO7jusEV/yMQK9SFEyOA9SmCEy9+UzAVc +4MwbEQVAjE4ARUhfoPMF8ScWytEjAyW9yQPQNJZH/0mZ9I2az8a7ze+T4LLqWq+ lkPbOvp60yiPewaUz58gABrvQkKdO1CxuNk+2a72DTw1KUYk2nLZDYfWaraD4dEO KN2SvEqcm9YQN3jxZsonbhfZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpLeD2X 2DS0JLQQXhp+KGkH/OnBMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK2cuI1NgZfY8x5IAWl8lA9Vvn7hbmytGUsmwfYNcO8XGzz4xZklyw 4i/VEyMYX0Ve8qGZ4sVIhtQeegrkUOPDMKQeOthx2jtYVmOArK5rWNsLuPz6xE3E iOpfmaeuFws/dD7we9niPfnz+NEZfTLZF1TYPkml8fhUuTkuXXIOhbkYXYz+mhef vYA0Cymch5yGvWX0MAk1jvh3TEbOuuxcdErQrat6VXn9Uw/l3yp22szCZstRWnZk x+jLSi6cIxwgRP8o/Hv4F5dQuCugijXd447RTIUwc02BjXLYXUXzENlpr+voo5aZ hfyPREbUfw4VaIrHBXzUTFwJydSXj5md -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:30 2025 by rpki-client