$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: 3P3bx1e+jP4GAnhrH7y97JsZgI+j4w7z1o5keun/4nQ= Subject key identifier: 8A:FD:82:30:9A:A2:EB:92:82:EF:3A:95:25:2A:9E:F0:3E:03:AF:AF Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0C78 Signing time: Mon 04 Aug 2025 18:39:34 +0000 Manifest this update: Mon 04 Aug 2025 18:39:34 +0000 Manifest next update: Mon 11 Aug 2025 18:39:34 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: ityIeylnf1o6g5eJnl5GOOYlqtfnhPbwVBK8wtH3Kes=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: 1cMybGIbvpxyTUqlwMM8pDEltG6qbjXuctF+adjG4sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Aug 4 18:39:34 2025 GMT Not After : Aug 11 18:39:34 2025 GMT Subject: CN=6890fe66-cdf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:43:9b:ec:2c:fa:a6:4d:b4:aa:38:b2:10:df: 38:b2:d9:ab:a9:16:c3:29:f5:d1:08:db:41:fe:0a: e1:ea:0b:e0:79:e0:50:56:db:ec:3b:d6:f9:82:c4: 5d:e4:10:c4:8e:41:6f:f9:e8:c4:78:24:55:35:76: 26:ac:ed:ae:04:ad:db:19:13:0b:32:6c:fb:cd:fa: 34:03:b3:be:70:14:3a:7f:40:8b:71:44:66:1a:80: 28:dc:10:3f:f1:c8:1f:ac:8a:57:0b:41:3f:51:5b: ed:8e:8a:78:88:9c:f6:11:f4:3d:2f:1c:31:05:84: ba:d0:f7:66:f4:75:aa:02:41:ba:40:3a:3e:e4:01: a6:7e:44:ec:af:8a:60:a4:27:7a:fa:0b:b4:02:f8: 79:fd:67:cf:17:e6:32:e8:29:4c:46:54:a8:bf:b1: d8:4f:93:a7:f0:51:66:bf:dd:bd:25:e1:49:8f:52: 80:39:70:1f:56:89:a1:d8:08:82:d6:d3:0f:04:98: bd:32:52:f0:6f:49:ad:b5:d7:1f:55:28:c1:13:17: c1:99:ed:1e:ed:ed:da:0e:7c:bc:16:65:16:3b:86: cd:9a:86:49:f3:66:a4:51:0a:21:1f:ca:8f:01:02: a3:82:40:af:18:83:2c:34:b0:9e:48:da:bc:b5:3d: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FD:82:30:9A:A2:EB:92:82:EF:3A:95:25:2A:9E:F0:3E:03:AF:AF X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:c3:93:93:84:23:58:9f:8d:19:7c:9f:9b:58:ad:0e:46:39: 67:53:36:69:09:c3:50:bb:70:fe:4e:ca:b2:d2:2f:06:ff:42: ea:e2:bd:ee:93:a9:ab:41:6d:2d:b5:9f:cc:dc:e6:9a:bd:7b: 0c:5e:9f:36:0d:5d:e7:84:80:37:43:56:ba:56:c6:ef:16:f4: 12:ac:9e:4a:59:2e:68:32:d8:1f:a3:b7:4d:ae:ee:1e:44:94: 64:fc:61:b8:5b:eb:9d:ac:bb:64:58:ab:44:1d:01:31:e6:26: 79:41:63:3d:4e:42:25:b4:12:e3:fe:57:88:fb:97:8b:c7:25: bf:ce:9e:e5:b7:05:69:c2:fe:dd:9d:2c:63:dc:c3:3a:9c:02: 77:7c:56:40:60:86:16:7d:89:5d:76:f8:4b:82:c1:a1:ff:ce: ab:c6:06:18:f8:34:cb:db:ad:b0:5c:15:21:c3:a4:12:2d:57: ff:e8:ab:4b:ea:8c:bf:8e:5d:63:36:08:91:7c:22:be:29:bc: 40:6c:ca:23:4a:82:fd:f7:fb:98:86:b4:a6:28:ed:17:53:97: 52:f6:b6:00:cd:e9:46:56:50:b6:d1:6f:9f:56:20:62:45:a9: 60:42:f3:3a:ed:2b:35:fd:c6:24:af:44:c2:7b:e8:0f:4d:fb: c7:56:4f:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUwODA0MTgzOTM0WhcNMjUwODExMTgzOTM0WjAYMRYwFAYD VQQDEw02ODkwZmU2Ni1jZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0Ob7Cz6pk20qjiyEN84stmrqRbDKfXRCNtB/grh6gvgeeBQVtvsO9b5gsRd 5BDEjkFv+ejEeCRVNXYmrO2uBK3bGRMLMmz7zfo0A7O+cBQ6f0CLcURmGoAo3BA/ 8cgfrIpXC0E/UVvtjop4iJz2EfQ9LxwxBYS60Pdm9HWqAkG6QDo+5AGmfkTsr4pg pCd6+gu0Avh5/WfPF+Yy6ClMRlSov7HYT5On8FFmv929JeFJj1KAOXAfVomh2AiC 1tMPBJi9MlLwb0mttdcfVSjBExfBme0e7e3aDny8FmUWO4bNmoZJ82akUQohH8qP AQKjgkCvGIMsNLCeSNq8tT3KqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr9gjCa ouuSgu86lSUqnvA+A6+vMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvw5OThCNYn40ZfJ+bWK0ORjlnUzZpCcNQu3D+Tsqy0i8G/0Lq4r3u k6mrQW0ttZ/M3OaavXsMXp82DV3nhIA3Q1a6VsbvFvQSrJ5KWS5oMtgfo7dNru4e RJRk/GG4W+udrLtkWKtEHQEx5iZ5QWM9TkIltBLj/leI+5eLxyW/zp7ltwVpwv7d nSxj3MM6nAJ3fFZAYIYWfYlddvhLgsGh/86rxgYY+DTL262wXBUhw6QSLVf/6KtL 6oy/jl1jNgiRfCK+KbxAbMojSoL99/uYhrSmKO0XU5dS9rYAzelGVlC20W+fViBi RalgQvM67Ss1/cYkr0TCe+gPTfvHVk9F -----END CERTIFICATE-----Generated at Wed Aug 6 11:01:12 2025 by rpki-client