$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: QpUZlz9M9irDavJ54n3Wl0s7S37mVmiOzQ+FOHYVqNQ= Subject key identifier: 61:CA:64:01:1C:9A:E8:5E:26:A3:A3:D0:81:9C:DC:AC:12:0D:8E:D1 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 097D Signing time: Fri 08 Aug 2025 20:28:33 +0000 Manifest this update: Fri 08 Aug 2025 20:28:33 +0000 Manifest next update: Fri 15 Aug 2025 20:28:33 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: qkmhHxTkbZVb5NMSKhvUrGMJBEnnhLbJx4D2uyOE0uQ=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Aug 8 20:28:33 2025 GMT Not After : Aug 15 20:28:33 2025 GMT Subject: CN=68965df1-01de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:77:d1:e4:7b:f8:13:9c:f5:fe:e1:75:6f:23: 1b:85:79:7b:84:55:f3:65:6f:41:df:48:d3:09:89: e9:3b:dd:45:a2:fc:75:3c:00:67:04:1f:bc:ce:17: 5c:c0:c9:01:cc:53:78:b1:03:7a:b8:90:97:5e:e9: 0b:c9:13:95:e5:71:ca:bc:2a:9f:ec:6c:2b:86:a8: 9a:f8:ad:35:47:a5:16:03:14:21:c0:46:25:07:4e: 6d:b0:ba:af:86:df:ee:e4:ca:4c:76:c9:67:b2:a0: 67:bd:0a:78:5a:73:6b:aa:87:81:03:e5:9c:62:8e: d3:5c:c7:3c:a1:a6:89:90:8f:d0:0e:c9:b5:8e:19: 2c:4c:cd:68:21:de:db:e9:43:2f:48:2d:74:53:20: 3c:65:6e:41:7f:16:11:da:a3:71:da:93:54:d7:45: ad:b6:18:35:1b:ec:05:39:61:5c:eb:99:d1:fb:01: 2e:e6:66:9b:24:a4:e0:66:de:e8:ed:12:b1:bd:b3: c8:61:d4:fc:9f:f2:a8:0f:ed:8a:2d:78:76:c5:4e: 9d:14:d7:eb:40:27:86:a5:f4:3c:85:52:ba:14:c0: 8b:bd:8c:70:05:9b:c5:69:72:c7:70:8f:aa:62:98: 49:cc:fa:92:c3:eb:a1:03:cb:b9:af:4b:08:86:a1: 96:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:CA:64:01:1C:9A:E8:5E:26:A3:A3:D0:81:9C:DC:AC:12:0D:8E:D1 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:cb:de:46:28:ee:70:98:d6:d9:5d:6a:dd:19:37:90:de:70: ce:b7:9f:b7:58:21:fd:f1:9b:d2:4b:b8:8d:88:b2:9a:05:b4: d2:23:36:33:02:62:56:f9:32:b5:69:4b:5d:38:b6:33:80:7e: 08:c3:fd:7b:7d:b6:5c:5a:d5:82:c3:37:e4:2a:a1:05:ef:e4: 52:e7:1d:01:39:34:21:ff:0c:02:b1:66:8b:e9:a1:c7:ae:47: 09:80:31:ce:f5:43:e4:84:e3:89:67:05:8e:49:76:e2:82:21: 74:d6:9f:77:63:b6:fb:c3:2f:44:65:48:95:dc:c2:ce:99:85: da:80:27:ee:51:ce:8a:74:6d:af:ae:91:1c:fd:f5:d9:fa:01: 0c:e1:0b:4d:3d:ff:5a:bc:38:6c:9e:b0:36:44:06:b5:61:8b: 28:a3:da:24:cb:de:08:7f:58:8b:06:37:28:36:f4:75:77:2e: a1:bf:22:54:21:c0:12:2d:2c:0c:eb:81:b5:c1:19:8f:93:3b: 30:bb:71:64:5a:91:21:8d:14:50:05:e1:38:9c:0d:0a:fb:59: 5d:b9:89:1c:d2:a1:ea:c2:09:b5:34:11:a9:2d:85:08:02:8d: 53:c4:34:79:5c:20:69:3a:46:73:0f:c0:b2:d9:ba:9e:90:1d: 42:84:61:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwODA4MjAyODMzWhcNMjUwODE1MjAyODMzWjAYMRYwFAYD VQQDEw02ODk2NWRmMS0wMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73fR5Hv4E5z1/uF1byMbhXl7hFXzZW9B30jTCYnpO91Fovx1PABnBB+8zhdc wMkBzFN4sQN6uJCXXukLyROV5XHKvCqf7Gwrhqia+K01R6UWAxQhwEYlB05tsLqv ht/u5MpMdslnsqBnvQp4WnNrqoeBA+WcYo7TXMc8oaaJkI/QDsm1jhksTM1oId7b 6UMvSC10UyA8ZW5BfxYR2qNx2pNU10Wtthg1G+wFOWFc65nR+wEu5mabJKTgZt7o 7RKxvbPIYdT8n/KoD+2KLXh2xU6dFNfrQCeGpfQ8hVK6FMCLvYxwBZvFaXLHcI+q YphJzPqSw+uhA8u5r0sIhqGWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHKZAEc muheJqOj0IGc3KwSDY7RMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCay95GKO5wmNbZXWrdGTeQ3nDOt5+3WCH98ZvSS7iNiLKaBbTSIzYz AmJW+TK1aUtdOLYzgH4Iw/17fbZcWtWCwzfkKqEF7+RS5x0BOTQh/wwCsWaL6aHH rkcJgDHO9UPkhOOJZwWOSXbigiF01p93Y7b7wy9EZUiV3MLOmYXagCfuUc6KdG2v rpEc/fXZ+gEM4QtNPf9avDhsnrA2RAa1YYsoo9oky94If1iLBjcoNvR1dy6hvyJU IcASLSwM64G1wRmPkzswu3FkWpEhjRRQBeE4nA0K+1lduYkc0qHqwgm1NBGpLYUI Ao1TxDR5XCBpOkZzD8Cy2bqekB1ChGEw -----END CERTIFICATE-----Generated at Sun Aug 10 18:20:45 2025 by rpki-client