$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: wTOM9qpKtpM7cSyQXEZskvzfYPGc2/s01zM4TtMpjc0= Subject key identifier: 1B:E3:E4:5F:C4:60:A0:C3:8E:81:87:E5:65:48:D9:E5:EC:C6:F6:26 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0980 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0960 Signing time: Thu 12 Jun 2025 19:59:15 +0000 Manifest this update: Thu 12 Jun 2025 19:59:14 +0000 Manifest next update: Thu 19 Jun 2025 19:59:14 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: 371Bb7rBrfwzxu3NUq++MGLNheetWzET1a5gQW9HJgU=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2432 (0x980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Jun 12 19:59:14 2025 GMT Not After : Jun 19 19:59:14 2025 GMT Subject: CN=684b3193-5e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ad:57:02:30:22:9c:17:8e:82:e4:8e:d9:e7: 31:b2:85:79:58:63:13:41:be:95:23:b6:9a:98:fb: f9:f6:72:25:a3:26:04:39:e6:15:c8:6e:be:da:10: db:16:f9:bf:bc:b2:fb:92:81:4d:2d:3b:44:d3:8d: 74:87:1c:f3:7c:4a:a8:4e:d9:45:26:7f:e4:6b:0a: 4c:d6:15:11:b8:d1:77:80:b9:21:ec:4f:fe:b8:1c: 32:7b:0a:16:18:1a:e5:01:63:80:eb:fd:35:c6:b3: f9:29:8d:ee:33:c2:64:9d:a0:0d:3a:6b:5a:4b:72: 6c:66:17:fc:b4:92:55:8e:45:b0:65:01:bc:47:05: 2b:be:a4:0e:1a:ce:83:b2:60:46:ef:47:c4:20:e4: 5b:f2:2e:f7:d4:77:e1:65:3f:cb:f7:66:d8:78:bf: 46:51:f4:af:9a:0e:a5:0b:0c:9b:a8:88:fd:4c:c7: f7:b3:09:32:b2:0c:03:19:f7:c9:f8:82:22:b6:b9: 2e:3b:d5:9c:ad:7a:ac:38:a1:ed:54:1c:a0:34:30: 39:21:cd:5b:6f:81:97:83:f7:e9:b5:9a:19:ce:c5: 1c:aa:e4:b0:02:ad:06:ad:4c:6f:9c:d2:a6:c6:28: a9:aa:0e:e7:71:c3:b1:9b:cf:dc:0e:8e:fa:c9:43: 2e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E3:E4:5F:C4:60:A0:C3:8E:81:87:E5:65:48:D9:E5:EC:C6:F6:26 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:73:af:16:45:34:0e:08:76:a4:53:24:b8:4f:e5:9e:e4:1b: b3:8f:65:9f:09:bc:8e:3e:ea:f2:06:7e:27:be:41:e6:60:30: 5b:91:88:ba:f4:89:ec:58:07:94:34:a9:61:dd:1a:5b:42:49: 38:0e:f4:c7:e8:e4:75:af:32:75:55:51:65:a4:c2:88:4a:bf: 12:cb:6e:5a:d3:b8:1d:8d:f5:03:77:70:9f:52:ce:5a:42:3e: 35:7b:a8:10:cc:a3:11:32:4e:33:ef:36:4f:12:70:09:b2:c1: fa:79:df:7d:84:22:e9:31:44:b1:53:2d:3f:1a:f9:ce:e3:f5: b4:1c:94:49:ac:36:98:2c:1e:85:34:3e:74:69:69:3e:39:1d: 1c:16:c7:26:d4:8c:e6:58:dc:95:ed:fb:65:cf:ed:5d:cb:ee: 17:39:40:c7:91:ca:92:2c:e7:d9:81:7c:ee:42:f8:34:a2:c9: 3c:ca:b6:b2:2e:3f:46:85:a4:d1:3c:ae:f5:5e:8e:26:9b:cd: cb:9c:01:93:47:b1:86:14:86:87:a1:e3:18:46:11:9d:3e:0b: 05:1f:37:06:d2:ce:50:9f:90:b8:8f:e4:68:ca:f2:95:4a:2a: 32:a4:60:1d:8b:5b:58:05:84:ef:ba:91:54:e1:4f:b5:4a:fd: f5:d5:3c:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNjEyMTk1OTE0WhcNMjUwNjE5MTk1OTE0WjAYMRYwFAYD VQQDEw02ODRiMzE5My01ZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0q1XAjAinBeOguSO2ecxsoV5WGMTQb6VI7aamPv59nIloyYEOeYVyG6+2hDb Fvm/vLL7koFNLTtE0410hxzzfEqoTtlFJn/kawpM1hURuNF3gLkh7E/+uBwyewoW GBrlAWOA6/01xrP5KY3uM8JknaANOmtaS3JsZhf8tJJVjkWwZQG8RwUrvqQOGs6D smBG70fEIORb8i731HfhZT/L92bYeL9GUfSvmg6lCwybqIj9TMf3swkysgwDGffJ +IIitrkuO9WcrXqsOKHtVBygNDA5Ic1bb4GXg/fptZoZzsUcquSwAq0GrUxvnNKm xiipqg7nccOxm8/cDo76yUMu7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvj5F/E YKDDjoGH5WVI2eXsxvYmMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdc68WRTQOCHakUyS4T+We5Buzj2WfCbyOPuryBn4nvkHmYDBbkYi6 9InsWAeUNKlh3RpbQkk4DvTH6OR1rzJ1VVFlpMKISr8Sy25a07gdjfUDd3CfUs5a Qj41e6gQzKMRMk4z7zZPEnAJssH6ed99hCLpMUSxUy0/GvnO4/W0HJRJrDaYLB6F ND50aWk+OR0cFscm1IzmWNyV7ftlz+1dy+4XOUDHkcqSLOfZgXzuQvg0osk8yray Lj9GhaTRPK71Xo4mm83LnAGTR7GGFIaHoeMYRhGdPgsFHzcG0s5Qn5C4j+RoyvKV SioypGAdi1tYBYTvupFU4U+1Sv311Tzt -----END CERTIFICATE-----Generated at Sat Jun 14 19:23:31 2025 by rpki-client