$ rpki-client -vvf rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft File: 9yY4deggn7olR_uOOH2AP3WAvtY.mft (raw, json) Hash identifier: HUaP7pTe54p6N0/lPgRGHEZSD1swnI1pe3FYd6V4fB4= Subject key identifier: 5A:D0:52:97:5A:54:F6:72:09:E7:B2:2F:0A:79:90:4C:3F:5B:D9:DC Authority key identifier: F7:26:38:75:E8:20:9F:BA:25:47:FB:8E:38:7D:80:3F:75:80:BE:D6 Certificate issuer: /CN=A9126AFE/serialNumber=F7263875E8209FBA2547FB8E387D803F7580BED6 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft Manifest number: 0641 Signing time: Sun 20 Jul 2025 22:49:52 +0000 Manifest this update: Sun 20 Jul 2025 22:49:51 +0000 Manifest next update: Sun 27 Jul 2025 22:49:51 +0000 Files and hashes: 1: 9yY4deggn7olR_uOOH2AP3WAvtY.crl (hash: WCxQo0HDgGtAPFr+K2p1/cenhlFze/gdyukH0lWiesA=) 2: B46F501C994D11EBB61C0C71C4F9AE02.roa (hash: j/GF9Fp/8A3iAGqlLey+nPmFjem1hKBzyG3C/3FfPBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.crl rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126AFE, serialNumber=F7263875E8209FBA2547FB8E387D803F7580BED6 Validity Not Before: Jul 20 22:49:51 2025 GMT Not After : Jul 27 22:49:51 2025 GMT Subject: CN=687d7290-a83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:63:7c:1d:69:93:22:85:3f:8d:c2:8b:83:5b: c7:84:87:af:21:00:24:88:94:ef:22:14:c7:1a:da: 19:d9:f7:7b:29:28:4a:0d:c4:6d:ab:1b:4c:c3:97: 0c:ad:9d:a4:8b:75:f2:a7:58:ff:82:45:f0:d1:cf: b6:05:4c:0a:4b:62:a0:0e:8f:f3:d2:1b:ae:d1:ae: 42:43:e5:3b:4a:22:c5:ea:30:29:43:b0:25:1d:4c: 9a:c3:52:63:03:82:56:ed:66:c9:96:6e:96:61:c3: a5:59:45:99:f2:53:dd:3c:42:1c:22:cb:25:c8:45: e0:b4:da:6a:d1:e3:d3:10:f1:e6:b1:b2:1e:bd:ee: 97:9d:42:0a:6d:51:b9:4b:63:30:00:03:73:c3:32: 00:13:78:c4:36:b6:8d:da:ce:95:c2:8f:57:ac:8a: 50:17:85:d4:11:2f:7d:ce:f8:30:c9:ff:6b:5c:9e: da:d9:07:ef:d2:d8:82:c1:81:d0:7d:31:54:c9:dd: 4e:a8:a0:de:51:2b:73:c9:79:3b:18:f1:04:60:78: c2:4b:64:f9:90:ef:c4:22:f5:9a:cb:9a:1f:a4:ed: e0:9d:97:cd:84:db:b1:c5:ef:93:18:50:6a:f9:7e: b7:f6:60:5e:91:86:37:b5:cc:a1:c7:19:1b:be:f6: 69:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D0:52:97:5A:54:F6:72:09:E7:B2:2F:0A:79:90:4C:3F:5B:D9:DC X509v3 Authority Key Identifier: keyid:F7:26:38:75:E8:20:9F:BA:25:47:FB:8E:38:7D:80:3F:75:80:BE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:32:6c:5d:3e:db:19:85:90:2b:e4:70:41:62:10:af:11:16: f2:6a:38:71:b9:ec:86:95:4a:7c:a5:d8:20:38:a1:1e:bc:25: 81:6b:b5:dc:49:be:b8:8b:cc:e7:6c:8c:bf:0d:7e:51:10:32: bc:b0:a8:f7:ed:5d:0b:12:7a:04:41:04:27:fb:5d:fa:55:bc: 85:ea:1b:38:d6:45:10:6b:a9:97:ac:01:6c:03:fd:01:50:df: 8a:5c:2c:80:65:0a:40:a4:74:ac:0e:f5:af:62:9d:90:de:22: 28:77:cd:59:04:fd:73:de:c3:e7:05:79:f1:0e:b0:8f:2e:6c: e8:b9:9d:39:c3:74:3a:7a:d3:63:ea:fc:5e:af:34:96:05:c8: 2a:8a:fb:87:d5:5e:b5:a9:86:4d:43:f8:1c:a9:1d:23:1d:8e: ac:6b:30:66:1b:90:b8:b6:d1:b3:07:be:44:1f:59:e8:9b:3a: cd:f5:03:09:61:a4:86:4e:fb:4f:68:31:c0:d3:43:99:17:a6: 7a:4d:0e:89:16:72:54:48:f7:9c:65:c9:20:f0:02:60:03:ba: 2a:70:ab:2b:f8:f1:00:00:fc:c2:28:72:ce:c8:f4:58:66:03: 1e:3a:dd:29:16:ac:2f:c8:98:41:dc:3f:02:8b:0b:d8:e8:e5: e6:22:1e:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZBRkUxMTAvBgNVBAUTKEY3MjYzODc1RTgyMDlGQkEyNTQ3RkI4RTM4N0Q4MDNG NzU4MEJFRDYwHhcNMjUwNzIwMjI0OTUxWhcNMjUwNzI3MjI0OTUxWjAYMRYwFAYD VQQDEw02ODdkNzI5MC1hODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGN8HWmTIoU/jcKLg1vHhIevIQAkiJTvIhTHGtoZ2fd7KShKDcRtqxtMw5cM rZ2ki3Xyp1j/gkXw0c+2BUwKS2KgDo/z0huu0a5CQ+U7SiLF6jApQ7AlHUyaw1Jj A4JW7WbJlm6WYcOlWUWZ8lPdPEIcIsslyEXgtNpq0ePTEPHmsbIeve6XnUIKbVG5 S2MwAANzwzIAE3jENraN2s6Vwo9XrIpQF4XUES99zvgwyf9rXJ7a2Qfv0tiCwYHQ fTFUyd1OqKDeUStzyXk7GPEEYHjCS2T5kO/EIvWay5ofpO3gnZfNhNuxxe+TGFBq +X639mBekYY3tcyhxxkbvvZpcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrQUpda VPZyCeeyLwp5kEw/W9ncMB8GA1UdIwQYMBaAFPcmOHXoIJ+6JUf7jjh9gD91gL7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkFGRS81ODI3MjkzQTk5 NEIxMUVCQkYxRDY5NkFDNEY5QUUwMi85eVk0ZGVnZ243b2xSX3VPT0gyQVAzV0F2 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5WTRkZWdnbjdvbFJfdU9PSDJBUDNXQXZ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkFGRS81ODI3MjkzQTk5NEIxMUVCQkYxRDY5NkFDNEY5QUUwMi85eVk0ZGVnZ243 b2xSX3VPT0gyQVAzV0F2dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUMmxdPtsZhZAr5HBBYhCvERbyajhxueyGlUp8pdggOKEevCWBa7Xc Sb64i8znbIy/DX5REDK8sKj37V0LEnoEQQQn+136VbyF6hs41kUQa6mXrAFsA/0B UN+KXCyAZQpApHSsDvWvYp2Q3iIod81ZBP1z3sPnBXnxDrCPLmzouZ05w3Q6etNj 6vxerzSWBcgqivuH1V61qYZNQ/gcqR0jHY6sazBmG5C4ttGzB75EH1nomzrN9QMJ YaSGTvtPaDHA00OZF6Z6TQ6JFnJUSPecZckg8AJgA7oqcKsr+PEAAPzCKHLOyPRY ZgMeOt0pFqwvyJhB3D8CiwvY6OXmIh7h -----END CERTIFICATE-----Generated at Mon Jul 21 07:04:26 2025 by rpki-client