$ rpki-client -vvf rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft File: V09tVmTqm98xXPZMjl5n0mODwgU.mft (raw, json) Hash identifier: iFUsRgaowxRe0Ln+VSfly8VWVDP5t5933BPXq2sKkwA= Subject key identifier: 76:61:EC:E6:1D:62:4C:16:8A:97:BD:82:4D:4A:4B:60:F1:FD:93:C4 Authority key identifier: 57:4F:6D:56:64:EA:9B:DF:31:5C:F6:4C:8E:5E:67:D2:63:83:C2:05 Certificate issuer: /CN=A91B85FC/serialNumber=574F6D5664EA9BDF315CF64C8E5E67D26383C205 Certificate serial: 0B00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft Manifest number: 0AFA Signing time: Fri 18 Jul 2025 19:35:46 +0000 Manifest this update: Fri 18 Jul 2025 19:35:45 +0000 Manifest next update: Fri 25 Jul 2025 19:35:45 +0000 Files and hashes: 1: V09tVmTqm98xXPZMjl5n0mODwgU.crl (hash: GO5djn2wgw7lJ3VamlsTJCyvMDDvvJqA+5sp8Ay32WI=) 2: 52216250493611EAA0968624C4F9AE02.roa (hash: XjkXLtL5CTFLl3MU4C1ptKiUasRS1cFai/QK6ioOeWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.crl rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B85FC, serialNumber=574F6D5664EA9BDF315CF64C8E5E67D26383C205 Validity Not Before: Jul 18 19:35:45 2025 GMT Not After : Jul 25 19:35:45 2025 GMT Subject: CN=687aa212-ebb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b4:83:91:2a:12:82:d3:2e:a3:53:ed:48:fc: 88:04:c8:fb:7c:6f:75:c2:68:01:fd:ba:35:dc:03: 3d:bb:cd:bb:1f:e4:50:3d:7c:f7:4c:a0:06:6f:be: ae:0d:d5:1a:96:00:62:04:71:e8:af:ed:a9:cf:09: 20:70:1a:6f:4f:c4:ad:35:ce:cf:a8:6c:a6:1b:52: ae:18:95:05:f2:e5:77:25:de:e5:9d:f4:bd:25:e7: b1:ae:73:a6:92:4c:69:cb:50:34:27:d6:8b:77:90: 7a:1a:e9:75:3d:8d:89:0b:4e:64:25:0f:65:b1:69: 28:1e:87:13:65:d1:5e:a5:23:a5:7e:a0:d0:da:fd: a7:dc:64:4b:fa:4a:a8:a1:7e:05:2e:8a:01:14:69: 95:c1:9f:75:6f:3e:ad:ce:43:5b:f9:ed:de:06:39: 6d:f1:c7:54:e9:79:ac:bc:5c:3e:ac:c9:4d:5a:98: 32:a6:f8:6d:09:de:01:8e:9f:cb:4c:b7:cc:20:80: c0:d4:79:33:24:91:73:50:ce:34:b2:36:e8:36:ec: 7f:09:ca:e3:ef:96:b3:a4:fc:ba:cd:8b:1d:ad:76: 3b:e6:99:fa:dd:18:47:76:1d:0f:3b:75:65:0d:8f: f1:f3:40:2c:fe:9c:d7:53:ab:8d:8b:ce:21:fa:8e: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:61:EC:E6:1D:62:4C:16:8A:97:BD:82:4D:4A:4B:60:F1:FD:93:C4 X509v3 Authority Key Identifier: keyid:57:4F:6D:56:64:EA:9B:DF:31:5C:F6:4C:8E:5E:67:D2:63:83:C2:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:08:46:6a:4f:62:4a:56:7b:d7:ba:4f:6c:eb:8d:00:51:01: af:76:a0:12:90:b1:02:71:4f:55:9b:e5:23:65:a9:51:3c:46: 58:51:36:18:ba:44:93:2a:da:5a:15:b1:c9:2e:55:87:d9:3e: 89:c9:51:13:5b:f9:be:a9:9e:23:a9:51:25:08:35:9d:61:1a: f7:fb:82:35:bd:76:64:0c:8d:59:bb:62:78:18:b6:04:3d:68: 9f:eb:fb:f2:3d:47:5f:03:42:c6:67:68:84:43:ed:7e:0d:b5: 5a:cd:cc:f5:55:e9:ff:dc:71:c8:7e:0f:6c:ab:d5:74:15:05: c2:8f:cf:55:fb:52:96:fd:60:b0:69:b1:5f:05:0c:1f:11:e2: f6:ea:e6:72:d0:c1:8d:f1:6b:1c:23:85:c6:aa:a7:57:09:12: 8d:e2:8b:a9:5e:2b:7d:55:55:3a:c5:05:8b:20:6d:cf:d5:2b: 7a:ba:4b:21:56:7c:6e:d8:48:69:bc:41:4e:f2:ca:85:da:eb: a7:9f:26:5c:9a:a4:6c:a8:cf:8e:ea:12:95:73:cb:04:59:53: 61:3e:14:6a:11:87:38:30:ae:91:22:0b:c6:74:c7:9a:86:03: df:f5:0e:e4:cd:1f:6f:f4:85:26:eb:bc:c3:ea:57:c3:f9:ca: 25:cb:a8:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg1RkMxMTAvBgNVBAUTKDU3NEY2RDU2NjRFQTlCREYzMTVDRjY0QzhFNUU2N0Qy NjM4M0MyMDUwHhcNMjUwNzE4MTkzNTQ1WhcNMjUwNzI1MTkzNTQ1WjAYMRYwFAYD VQQDEw02ODdhYTIxMi1lYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbSDkSoSgtMuo1PtSPyIBMj7fG91wmgB/bo13AM9u827H+RQPXz3TKAGb76u DdUalgBiBHHor+2pzwkgcBpvT8StNc7PqGymG1KuGJUF8uV3Jd7lnfS9JeexrnOm kkxpy1A0J9aLd5B6Gul1PY2JC05kJQ9lsWkoHocTZdFepSOlfqDQ2v2n3GRL+kqo oX4FLooBFGmVwZ91bz6tzkNb+e3eBjlt8cdU6XmsvFw+rMlNWpgypvhtCd4Bjp/L TLfMIIDA1HkzJJFzUM40sjboNux/Ccrj75azpPy6zYsdrXY75pn63RhHdh0PO3Vl DY/x80As/pzXU6uNi84h+o7PZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZh7OYd YkwWipe9gk1KS2Dx/ZPEMB8GA1UdIwQYMBaAFFdPbVZk6pvfMVz2TI5eZ9Jjg8IF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODVGQy84ODE2RUZGODQ5 MzQxMUVBQUQ4NEJGMUVDNEY5QUUwMi9WMDl0Vm1UcW05OHhYUFpNamw1bjBtT0R3 Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1YwOXRWbVRxbTk4eFhQWk1qbDVuMG1PRHdnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODVGQy84ODE2RUZGODQ5MzQxMUVBQUQ4NEJGMUVDNEY5QUUwMi9WMDl0Vm1UcW05 OHhYUFpNamw1bjBtT0R3Z1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdCEZqT2JKVnvXuk9s640AUQGvdqASkLECcU9Vm+UjZalRPEZYUTYY ukSTKtpaFbHJLlWH2T6JyVETW/m+qZ4jqVElCDWdYRr3+4I1vXZkDI1Zu2J4GLYE PWif6/vyPUdfA0LGZ2iEQ+1+DbVazcz1Ven/3HHIfg9sq9V0FQXCj89V+1KW/WCw abFfBQwfEeL26uZy0MGN8WscI4XGqqdXCRKN4oupXit9VVU6xQWLIG3P1St6uksh Vnxu2EhpvEFO8sqF2uunnyZcmqRsqM+O6hKVc8sEWVNhPhRqEYc4MK6RIgvGdMea hgPf9Q7kzR9v9IUm67zD6lfD+coly6gO -----END CERTIFICATE-----Generated at Sun Jul 20 07:55:35 2025 by rpki-client