$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft File: P9OJWVL9hJqXvBEkdJUChMaGhkU.mft (raw, json) Hash identifier: 48Pcukl1rIYCyOydM6KAzmecwYc0CNJwjsGijSMJHLI= Subject key identifier: B4:7B:6D:5A:4F:05:97:CA:05:42:46:3E:9B:66:68:53:3C:47:62:D3 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 07CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft Manifest number: 07C2 Signing time: Thu 12 Jun 2025 20:52:24 +0000 Manifest this update: Thu 12 Jun 2025 20:52:23 +0000 Manifest next update: Thu 19 Jun 2025 20:52:23 +0000 Files and hashes: 1: P9OJWVL9hJqXvBEkdJUChMaGhkU.crl (hash: KdkPb/E1j2ZbMLDEiTfnvDGnixI97gQJ7w87PqngtCI=) 2: A84FB264FD7011EAA1DF3534C4F9AE02.roa (hash: ipH52NvI6j7Qm3VJ3UEcq9yvGVo2LC48K1opbVhCFvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Jun 12 20:52:23 2025 GMT Not After : Jun 19 20:52:23 2025 GMT Subject: CN=684b3e08-6076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6c:a0:ec:32:7a:b3:ed:10:a1:54:33:fb:60: 9f:d0:ef:31:10:bc:2d:d1:5b:14:0c:32:91:08:1c: 87:05:da:51:75:7b:ed:85:21:60:80:1a:7d:76:2f: dd:a9:d4:3f:1a:18:85:ce:97:4f:82:ef:72:ea:97: ce:39:89:57:5a:d3:6f:4d:44:d8:73:31:4c:67:03: 9e:f9:ee:de:0b:89:93:18:65:b5:0f:89:3a:58:31: 2f:c0:c6:50:a5:ff:3c:58:0c:26:27:1e:60:3b:e7: 44:57:84:03:0b:9f:e7:66:a8:d4:52:38:57:ab:1b: 29:de:aa:39:7b:dd:de:5a:a0:15:e1:79:12:ae:ed: 79:68:bd:6b:3d:15:9b:c6:6a:61:9e:8c:b3:d0:1b: 47:05:ce:e1:fd:dd:5e:38:4d:3d:f4:a1:0a:81:36: cf:b1:e0:6c:a1:d4:62:68:e3:b2:ac:9b:13:9e:c7: 5f:ea:11:f5:6e:65:31:e5:bb:0d:6f:ab:89:93:bc: 26:a5:d9:96:a8:13:2e:04:cf:9d:10:98:b0:4b:0d: 76:fd:49:bf:99:a3:9b:9e:bd:78:cc:4f:9f:ec:a1: 9b:20:43:ba:6c:bc:3f:6d:e6:61:28:f8:e4:00:d3: c8:79:bd:ed:3b:2f:5d:81:51:11:11:0d:9e:47:9d: dd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7B:6D:5A:4F:05:97:CA:05:42:46:3E:9B:66:68:53:3C:47:62:D3 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:27:c8:c2:85:29:ef:f4:9d:3e:d0:41:7a:76:e2:ed:13:26: 4c:a1:db:6d:a8:6c:68:8b:63:6d:0e:18:1f:c5:ce:4f:f8:4e: 27:e6:00:cc:4f:8d:41:54:e8:8a:3e:33:27:80:7e:5a:04:69: 04:50:92:f6:c1:41:cd:0f:5d:9c:21:e9:c7:99:9c:4c:53:62: c4:e7:0b:50:48:61:dc:d8:6d:26:c1:c3:5e:b7:e7:53:ea:16: be:8f:23:81:29:df:4d:a1:79:b2:50:54:77:97:5c:42:41:e8: e2:03:47:39:de:b4:5a:d6:81:66:75:fb:52:8b:8a:db:a7:77: 0c:d7:e4:b4:b9:2d:cb:8f:c3:51:c1:06:d2:eb:a2:14:76:00: 38:48:ac:8c:66:80:57:d3:1d:6f:41:f2:36:24:94:19:30:c2: 3a:06:f2:91:99:d8:fb:cd:f0:bd:8e:e7:0d:c9:94:a8:b5:b2: 8b:c2:0a:43:98:f7:d1:d6:4c:c6:46:9e:e7:f7:e8:98:91:64: c9:56:5f:56:27:99:06:41:7b:40:ca:6d:60:9a:67:1b:f3:a8: e2:e8:3a:b6:e2:e3:36:16:7c:0e:21:73:d0:76:4b:6d:37:a1: 6e:9f:b2:56:17:a1:8b:05:4f:5d:bc:ae:3a:c9:1b:09:b4:d5: 5c:a2:1c:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjUwNjEyMjA1MjIzWhcNMjUwNjE5MjA1MjIzWjAYMRYwFAYD VQQDEw02ODRiM2UwOC02MDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6myg7DJ6s+0QoVQz+2Cf0O8xELwt0VsUDDKRCByHBdpRdXvthSFggBp9di/d qdQ/GhiFzpdPgu9y6pfOOYlXWtNvTUTYczFMZwOe+e7eC4mTGGW1D4k6WDEvwMZQ pf88WAwmJx5gO+dEV4QDC5/nZqjUUjhXqxsp3qo5e93eWqAV4XkSru15aL1rPRWb xmphnoyz0BtHBc7h/d1eOE099KEKgTbPseBsodRiaOOyrJsTnsdf6hH1bmUx5bsN b6uJk7wmpdmWqBMuBM+dEJiwSw12/Um/maObnr14zE+f7KGbIEO6bLw/beZhKPjk ANPIeb3tOy9dgVEREQ2eR53d6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLR7bVpP BZfKBUJGPptmaFM8R2LTMB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjA5QS9BMzdBRTkyNkZENkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhK cVh2QkVrZEpVQ2hNYUdoa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClJ8jChSnv9J0+0EF6duLtEyZModttqGxoi2NtDhgfxc5P+E4n5gDM T41BVOiKPjMngH5aBGkEUJL2wUHND12cIenHmZxMU2LE5wtQSGHc2G0mwcNet+dT 6ha+jyOBKd9NoXmyUFR3l1xCQejiA0c53rRa1oFmdftSi4rbp3cM1+S0uS3Lj8NR wQbS66IUdgA4SKyMZoBX0x1vQfI2JJQZMMI6BvKRmdj7zfC9jucNyZSotbKLwgpD mPfR1kzGRp7n9+iYkWTJVl9WJ5kGQXtAym1gmmcb86ji6Dq24uM2FnwOIXPQdktt N6Fun7JWF6GLBU9dvK46yRsJtNVcohyu -----END CERTIFICATE-----Generated at Sat Jun 14 18:03:14 2025 by rpki-client