$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: Pd7GO7PHG1phNHziFhY4iWQJkDP8CmQj77P0vwkrA64= Subject key identifier: 6B:F5:B6:7D:3C:CD:BC:48:F4:3E:AF:FA:61:2B:EB:B5:50:AB:90:27 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0992 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0972 Signing time: Fri 18 Jul 2025 20:24:23 +0000 Manifest this update: Fri 18 Jul 2025 20:24:23 +0000 Manifest next update: Fri 25 Jul 2025 20:24:23 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: neRE6ThkJ/CmT43icH/A8AtFeKu1GvgLNuapsQ2LX5Q=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2450 (0x992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Jul 18 20:24:23 2025 GMT Not After : Jul 25 20:24:23 2025 GMT Subject: CN=687aad77-77d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:5e:71:94:34:73:d9:16:bd:e8:d1:ec:0e: 7d:4d:05:92:60:67:83:00:3a:97:eb:8d:21:9e:3a: 23:c9:dc:58:4c:70:ad:29:02:17:08:78:9b:eb:1d: 96:81:10:9e:22:a5:cf:d2:a0:cd:e8:f8:33:22:dd: 3b:5d:e0:57:88:84:4f:df:4d:6a:d4:d7:6a:6a:df: d9:04:3d:47:18:b2:2a:3b:d4:41:f1:69:53:00:5a: 3d:28:b6:0b:2c:9a:d9:fa:eb:32:83:13:41:8f:71: 6f:3a:8d:2a:12:de:7f:cf:05:04:a1:1a:ab:5e:83: 56:b4:88:b6:d9:c6:85:00:ee:77:59:3d:be:3e:fb: 86:07:47:08:2d:a1:0c:26:e6:2b:93:29:02:8e:e7: 6d:0d:17:0c:8c:0c:b9:08:22:9f:8a:bb:3c:1d:75: 35:b4:3f:c3:78:ae:e0:06:6f:4b:ba:f4:b5:a2:d8: 33:07:5d:36:34:80:c9:28:dd:8c:0d:c9:3c:0d:3a: 95:3a:33:3f:be:18:cc:8c:5f:14:2c:45:b2:66:61: 73:14:f4:fc:9e:e2:ca:cc:4e:56:fc:3c:b1:cb:10: a4:bd:8e:81:3f:99:91:e7:e4:1a:52:be:82:6c:bb: d0:e2:86:e9:ce:80:13:a3:51:e7:52:54:1c:da:78: 52:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F5:B6:7D:3C:CD:BC:48:F4:3E:AF:FA:61:2B:EB:B5:50:AB:90:27 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c2:72:60:97:7c:53:54:04:cc:32:5c:be:6a:f0:dc:b4:43: 50:8d:15:a5:70:d8:9a:b6:aa:76:7f:c9:ef:77:c7:a5:66:9a: bd:a1:0a:43:2a:18:8c:7f:a7:f9:0c:2d:1f:82:64:56:e8:f1: d3:0b:15:25:ae:c5:67:47:68:a9:85:e9:c9:b8:6c:e9:1c:0d: 12:cc:a7:79:56:53:a5:95:2a:0b:73:25:bf:1f:af:32:58:78: 65:0b:19:fe:c3:8f:ca:67:65:3f:14:e8:37:72:12:40:3f:eb: 3c:02:6f:6f:f4:df:4c:d6:64:5c:d8:b0:55:57:59:8e:72:67: 25:e5:60:4a:c2:c0:97:79:7e:d9:e4:bc:4a:5e:b6:09:a8:30: 66:62:fc:e5:06:ee:2b:78:1a:16:ae:c1:5b:dd:21:ff:8a:e8: 3e:b6:50:14:bd:12:4e:9d:00:14:7c:c9:0a:15:cc:9b:6e:51: 18:af:78:52:57:79:1e:5d:ac:90:0d:f0:b3:be:fa:3f:a3:37: e6:ff:ee:bb:46:e6:8f:e4:75:91:fc:d4:35:e6:dd:f6:28:d4: 5a:66:4d:c1:17:95:67:41:80:38:e4:a5:a9:00:e2:b5:37:e8: b5:9f:40:95:71:0e:17:cb:21:14:4c:1a:12:3a:cc:d7:e9:7a: 91:2b:80:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNzE4MjAyNDIzWhcNMjUwNzI1MjAyNDIzWjAYMRYwFAYD VQQDEw02ODdhYWQ3Ny03N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5v9ecZQ0c9kWvejR7A59TQWSYGeDADqX640hnjojydxYTHCtKQIXCHib6x2W gRCeIqXP0qDN6PgzIt07XeBXiIRP301q1Ndqat/ZBD1HGLIqO9RB8WlTAFo9KLYL LJrZ+usygxNBj3FvOo0qEt5/zwUEoRqrXoNWtIi22caFAO53WT2+PvuGB0cILaEM JuYrkykCjudtDRcMjAy5CCKfirs8HXU1tD/DeK7gBm9LuvS1otgzB102NIDJKN2M Dck8DTqVOjM/vhjMjF8ULEWyZmFzFPT8nuLKzE5W/DyxyxCkvY6BP5mR5+QaUr6C bLvQ4obpzoATo1HnUlQc2nhSHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv1tn08 zbxI9D6v+mEr67VQq5AnMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiwnJgl3xTVATMMly+avDctENQjRWlcNiatqp2f8nvd8elZpq9oQpD KhiMf6f5DC0fgmRW6PHTCxUlrsVnR2iphenJuGzpHA0SzKd5VlOllSoLcyW/H68y WHhlCxn+w4/KZ2U/FOg3chJAP+s8Am9v9N9M1mRc2LBVV1mOcmcl5WBKwsCXeX7Z 5LxKXrYJqDBmYvzlBu4reBoWrsFb3SH/iug+tlAUvRJOnQAUfMkKFcybblEYr3hS V3keXayQDfCzvvo/ozfm/+67RuaP5HWR/NQ15t32KNRaZk3BF5VnQYA45KWpAOK1 N+i1n0CVcQ4XyyEUTBoSOszX6XqRK4Bt -----END CERTIFICATE-----Generated at Sun Jul 20 13:13:10 2025 by rpki-client