$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft File: P9OJWVL9hJqXvBEkdJUChMaGhkU.mft (raw, json) Hash identifier: Qj88pVBTQwBZE0GZ2hoXrthbBEEuEYmVHR1UgR48xM0= Subject key identifier: B7:FF:CA:87:D5:77:1E:6B:48:21:0C:6B:C4:19:AE:61:2D:AE:D7:8B Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 07E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft Manifest number: 07DE Signing time: Wed 06 Aug 2025 21:24:22 +0000 Manifest this update: Wed 06 Aug 2025 21:24:22 +0000 Manifest next update: Wed 13 Aug 2025 21:24:22 +0000 Files and hashes: 1: P9OJWVL9hJqXvBEkdJUChMaGhkU.crl (hash: XH9ZXEsc4OPkqnhjBSnSe6XmmmCBvWCkKsO0F3SzHoI=) 2: A84FB264FD7011EAA1DF3534C4F9AE02.roa (hash: ipH52NvI6j7Qm3VJ3UEcq9yvGVo2LC48K1opbVhCFvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2024 (0x7e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Aug 6 21:24:22 2025 GMT Not After : Aug 13 21:24:22 2025 GMT Subject: CN=6893c806-b3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:21:29:bc:93:1a:63:9c:25:b5:7d:31:5b: a5:8d:47:0c:00:0f:b5:73:d0:cf:64:0f:d0:2a:53: 90:28:71:08:69:6d:35:fa:f1:e4:57:c3:12:97:50: 6f:e0:68:21:ec:e2:af:ac:5e:42:18:9e:73:cc:a1: 4a:13:91:95:df:66:f0:30:0a:16:c2:a0:34:10:60: c8:e9:b6:0f:fe:ba:eb:c1:da:29:d3:2c:73:1b:3c: 2a:96:65:78:45:f2:c9:a4:17:1a:e0:10:8a:ac:59: 12:a9:b2:a8:13:f3:b8:48:1e:00:40:ab:f9:e9:6b: 39:26:67:49:78:99:ec:74:92:e3:9c:b0:d1:d6:b2: 84:bf:ca:24:a8:fd:8f:94:65:66:f1:e1:f5:cd:7f: 54:bb:e1:41:3f:37:1c:b6:43:65:97:1f:a5:6c:6b: db:b8:49:c1:cb:8f:93:21:43:1a:26:72:ec:8e:ec: 21:01:6a:38:b7:2c:10:5a:63:40:8c:01:6f:04:65: 4e:bf:71:d1:5f:69:61:19:e9:45:e4:89:ae:0c:42: 11:fd:81:20:78:6d:f7:d6:7c:f5:5c:9d:4e:f9:bc: 88:c9:5b:dd:d3:8f:31:53:09:cb:4f:3e:62:57:9a: af:6c:fa:11:33:3d:35:96:7f:79:71:06:81:f4:47: 21:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:FF:CA:87:D5:77:1E:6B:48:21:0C:6B:C4:19:AE:61:2D:AE:D7:8B X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:37:d5:3e:8a:bc:02:4a:2f:43:13:ee:ff:0d:5b:16:e5:be: 81:cd:3b:53:86:02:f3:7d:60:7e:c9:50:be:6b:33:c9:26:fd: 30:b8:b5:3d:91:2b:06:8e:db:6e:b1:1f:43:f2:6a:96:a0:50: 71:a0:d6:a1:55:d6:12:20:36:86:43:b7:c8:38:b6:81:5f:4d: b4:30:c7:a2:64:57:de:18:92:22:a5:2c:b4:fd:6a:bf:68:6d: ed:bc:9f:db:2f:2e:19:a4:2e:2f:6e:34:52:3b:0f:a6:3f:ed: f8:20:08:ff:41:fb:4c:ab:9b:9f:38:22:62:45:ea:e8:8c:e4: 90:5c:55:14:8a:f4:5b:e2:24:da:99:26:79:21:72:cd:cf:d8: 11:2e:71:f0:d8:19:98:86:ce:e7:89:c4:b2:18:43:53:cd:d8: 45:85:1b:c1:81:bd:1b:bc:c7:6c:d6:fc:87:4f:a4:3e:f4:53: b6:f2:5e:82:cf:86:6d:5d:e4:36:f6:04:ed:8a:8d:41:7d:d3: dc:0b:61:37:0f:fc:3e:6c:e2:80:13:a7:51:56:12:1a:93:6d: 0d:24:a3:d4:eb:9b:cb:49:e3:a4:17:d3:e3:5f:07:e9:a5:0a: 78:d4:e3:a3:e2:e7:16:e0:92:33:2b:ba:96:ee:4f:9d:eb:0b: 29:c5:de:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjUwODA2MjEyNDIyWhcNMjUwODEzMjEyNDIyWjAYMRYwFAYD VQQDEw02ODkzYzgwNi1iM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeIhKbyTGmOcJbV9MVuljUcMAA+1c9DPZA/QKlOQKHEIaW01+vHkV8MSl1Bv 4Ggh7OKvrF5CGJ5zzKFKE5GV32bwMAoWwqA0EGDI6bYP/rrrwdop0yxzGzwqlmV4 RfLJpBca4BCKrFkSqbKoE/O4SB4AQKv56Ws5JmdJeJnsdJLjnLDR1rKEv8okqP2P lGVm8eH1zX9Uu+FBPzcctkNllx+lbGvbuEnBy4+TIUMaJnLsjuwhAWo4tywQWmNA jAFvBGVOv3HRX2lhGelF5ImuDEIR/YEgeG331nz1XJ1O+byIyVvd048xUwnLTz5i V5qvbPoRMz01ln95cQaB9EchzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf/yofV dx5rSCEMa8QZrmEtrteLMB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjA5QS9BMzdBRTkyNkZENkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhK cVh2QkVrZEpVQ2hNYUdoa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdN9U+irwCSi9DE+7/DVsW5b6BzTtThgLzfWB+yVC+azPJJv0wuLU9 kSsGjttusR9D8mqWoFBxoNahVdYSIDaGQ7fIOLaBX020MMeiZFfeGJIipSy0/Wq/ aG3tvJ/bLy4ZpC4vbjRSOw+mP+34IAj/QftMq5ufOCJiRerojOSQXFUUivRb4iTa mSZ5IXLNz9gRLnHw2BmYhs7nicSyGENTzdhFhRvBgb0bvMds1vyHT6Q+9FO28l6C z4ZtXeQ29gTtio1BfdPcC2E3D/w+bOKAE6dRVhIak20NJKPU65vLSeOkF9PjXwfp pQp41OOj4ucW4JIzK7qW7k+d6wspxd4t -----END CERTIFICATE-----Generated at Fri Aug 8 21:01:49 2025 by rpki-client