$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: /BNDppe0qX1W3YktnPRI7s/67yD3fD7P1Pq3zHiwYUY= Subject key identifier: 2A:B9:50:E7:E2:93:9E:2D:B6:6E:B9:8B:97:E2:84:B0:FE:BE:EC:54 Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 092F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0929 Signing time: Fri 18 Jul 2025 20:29:01 +0000 Manifest this update: Fri 18 Jul 2025 20:29:00 +0000 Manifest next update: Fri 25 Jul 2025 20:29:00 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: s4zvyFqx6bL1JVJH1akIiCo3n675M/DIU3QOLChCAVg=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2351 (0x92f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Jul 18 20:29:00 2025 GMT Not After : Jul 25 20:29:00 2025 GMT Subject: CN=687aae8c-1a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:6c:c3:4b:df:18:21:fd:d3:7a:75:60:81: a9:02:71:1a:cc:9c:79:fb:b6:a9:04:c9:ac:bc:15: 6e:32:00:1b:21:f1:2b:e7:cc:f9:43:cf:26:7f:3f: 2a:9e:c6:bf:af:f0:8d:d3:74:b3:df:9d:83:14:ba: e8:fe:05:53:fc:28:f4:fb:90:a6:72:a0:df:29:87: ec:9b:37:04:58:2d:cc:8b:25:25:86:63:ca:65:1b: 4f:86:d5:bd:1e:5c:22:42:d6:2d:10:19:ca:12:3e: 18:3e:14:06:5d:40:16:0d:4b:17:86:7e:db:b2:de: be:bb:b1:d9:a0:94:92:4d:d3:91:57:7e:a1:99:a9: e3:2e:34:a8:d9:44:da:8e:ed:87:cb:25:86:f7:9b: 72:cc:1f:12:e1:8d:00:89:71:6a:62:11:53:68:21: f3:80:90:01:9c:30:0f:de:35:da:99:d5:ce:90:4a: c6:7d:42:e4:8a:7c:7f:0f:ea:bb:ef:21:84:41:78: 62:f2:6f:20:9e:61:48:64:d8:6b:a1:86:0a:b6:8e: bb:d3:79:3a:49:5d:0a:86:b1:97:88:18:09:9f:cd: 30:37:5e:ed:29:63:67:9f:ee:00:6c:ff:8b:68:7b: 0d:1d:c8:81:e9:d3:75:1d:73:9e:64:a1:ac:de:63: d2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B9:50:E7:E2:93:9E:2D:B6:6E:B9:8B:97:E2:84:B0:FE:BE:EC:54 X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:77:ad:ee:f4:13:75:84:1b:16:a9:77:37:a1:8c:21:b7:44: 49:01:7b:c0:f9:11:34:bf:91:12:21:c3:0a:3d:6a:ef:8e:d5: f4:dc:5e:0f:dd:c3:de:94:1a:a3:54:9e:75:03:7d:c4:e5:b5: 66:0f:3c:34:a7:50:62:37:83:f3:65:fd:9f:d2:b7:b9:77:e5: af:8a:38:62:45:fb:e9:9d:f8:94:09:91:2f:8f:f0:35:6c:c6: e0:f8:f2:51:5f:8e:8d:43:8e:3f:59:46:a9:a8:e0:47:2d:8a: 93:4d:96:1d:c3:6c:ab:e4:b8:38:dd:da:fd:d9:15:33:8a:ba: 82:20:a6:10:03:2f:bb:d4:be:72:02:a0:7b:bb:82:17:30:9d: ff:88:59:fc:ce:11:fe:8e:0b:a0:f3:de:77:4c:7a:22:cb:ca: 1e:5f:8a:5b:42:c6:ee:37:49:d4:fb:6b:e0:58:98:0b:5a:ea: 6b:3e:15:03:d3:40:86:4a:2d:76:a1:76:87:2a:06:3c:ab:89: 9b:3b:db:f9:3c:fe:3c:b6:e8:7b:ee:06:43:60:09:66:35:2a: ba:4c:90:89:17:e1:2d:ae:d7:10:90:45:2e:fd:c1:d3:33:1f: 2b:97:f2:74:c7:ec:25:9d:ae:c8:63:c6:f3:50:f6:22:9b:8b: 96:6c:de:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUwNzE4MjAyOTAwWhcNMjUwNzI1MjAyOTAwWjAYMRYwFAYD VQQDEw02ODdhYWU4Yy0xYTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvARsw0vfGCH903p1YIGpAnEazJx5+7apBMmsvBVuMgAbIfEr58z5Q88mfz8q nsa/r/CN03Sz352DFLro/gVT/Cj0+5CmcqDfKYfsmzcEWC3MiyUlhmPKZRtPhtW9 HlwiQtYtEBnKEj4YPhQGXUAWDUsXhn7bst6+u7HZoJSSTdORV36hmanjLjSo2UTa ju2HyyWG95tyzB8S4Y0AiXFqYhFTaCHzgJABnDAP3jXamdXOkErGfULkinx/D+q7 7yGEQXhi8m8gnmFIZNhroYYKto6703k6SV0KhrGXiBgJn80wN17tKWNnn+4AbP+L aHsNHciB6dN1HXOeZKGs3mPSLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCq5UOfi k54ttm65i5fihLD+vuxUMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJd63u9BN1hBsWqXc3oYwht0RJAXvA+RE0v5ESIcMKPWrvjtX03F4P 3cPelBqjVJ51A33E5bVmDzw0p1BiN4PzZf2f0re5d+WvijhiRfvpnfiUCZEvj/A1 bMbg+PJRX46NQ44/WUapqOBHLYqTTZYdw2yr5Lg43dr92RUzirqCIKYQAy+71L5y AqB7u4IXMJ3/iFn8zhH+jgug8953THoiy8oeX4pbQsbuN0nU+2vgWJgLWuprPhUD 00CGSi12oXaHKgY8q4mbO9v5PP48tuh77gZDYAlmNSq6TJCJF+EtrtcQkEUu/cHT Mx8rl/J0x+wlna7IY8bzUPYim4uWbN7E -----END CERTIFICATE-----Generated at Sun Jul 20 15:08:53 2025 by rpki-client