$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: lgNkuhj6CqTj4xzi4U3Sx69tBL4WgHEfPh8pU/p3eVc= Subject key identifier: ED:2D:08:2D:98:FD:DF:EB:96:E5:CF:0F:66:D9:51:FA:09:F2:BC:05 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 0612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 05ED Signing time: Tue 22 Jul 2025 23:28:15 +0000 Manifest this update: Tue 22 Jul 2025 23:28:15 +0000 Manifest next update: Tue 29 Jul 2025 23:28:15 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: viERusFdtkLNWaVhU2VgDGM7z+hlkB8+4qAAAQ94qMI=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: V45gxxPbP3gB5dgB3aRdYWLo9/HOqXLXWjCDGDuIpeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1554 (0x612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Jul 22 23:28:15 2025 GMT Not After : Jul 29 23:28:15 2025 GMT Subject: CN=68801e8f-8607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:8c:b9:09:c4:6d:3d:08:d7:b3:f2:4d:bd: b1:1f:f2:a2:d9:c0:38:5a:c0:e2:37:2d:78:5e:4f: e3:41:e0:b6:8f:56:a4:ad:bc:e3:e8:bb:04:b6:80: a9:d0:34:c1:59:0b:07:40:d9:28:5f:ab:f0:90:ee: a1:50:d8:f7:84:f2:53:43:2d:fa:1d:1a:6a:b8:9e: 67:0a:5e:2c:11:54:72:31:bc:aa:dc:ac:9e:e5:57: 8b:13:79:80:de:15:87:45:d7:b1:d6:5e:21:32:35: a0:a6:2b:0d:62:cf:c6:a7:62:5b:5e:d3:58:08:73: 39:de:d9:03:e6:c9:ad:0d:ec:a7:4c:c7:79:28:b1: 32:e3:cf:e3:4f:6a:54:4b:f2:ca:64:66:0a:15:b6: e4:e1:1d:40:79:01:b4:37:c2:e3:89:d6:84:2e:c7: 12:b9:fc:40:3c:e7:61:5e:80:1a:05:cd:c4:25:15: cc:89:32:7e:17:89:82:cd:9f:e7:1f:23:a3:c3:50: 84:73:2f:f0:a0:64:8c:18:93:92:5a:f6:1c:5d:98: 43:12:ed:d6:ae:ff:6b:6c:35:97:fe:73:f4:89:06: 7d:2b:0b:98:ab:65:dc:d9:df:66:63:c0:40:f6:29: ba:90:66:1d:66:c2:0e:b9:be:c6:ae:24:47:fb:f1: 72:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2D:08:2D:98:FD:DF:EB:96:E5:CF:0F:66:D9:51:FA:09:F2:BC:05 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:55:13:b3:9f:58:42:b8:f7:01:98:05:5a:ec:32:84:cc:ac: 8f:4d:2c:6a:aa:39:72:4c:7e:24:e5:e4:fd:7c:44:b8:0a:87: c3:0d:2f:7e:46:24:9f:47:29:18:5f:9d:d0:55:20:f6:8e:a9: c0:a1:54:06:b5:c0:85:e2:e1:a0:6b:9a:af:36:dc:22:f7:13: fa:f5:fb:e7:e8:9f:64:9b:63:0b:74:11:98:4f:90:b1:2e:17: 9d:7e:b6:cd:5a:e8:96:3a:68:91:97:4b:7c:60:bf:ea:c7:70: 7b:7a:df:01:45:f1:3d:ca:b9:69:a7:d3:ef:c8:03:5b:1b:85: d2:62:ec:df:2c:ea:ca:d0:6c:f4:1f:aa:ff:6e:c6:0d:93:a2: ca:86:b5:f0:07:7c:1b:3e:6a:37:2c:34:05:78:80:50:b9:b6: 62:3a:3f:35:08:53:ee:01:4e:46:f3:5e:a8:c2:85:b7:13:aa: af:0c:b3:39:b8:fe:9f:25:c3:9c:2b:5f:ed:cb:ad:dd:98:2b: f4:73:b2:5f:1a:63:2e:10:a3:5a:ac:a0:22:6d:40:50:40:41: 9f:35:86:4e:dc:e6:bf:a7:e9:70:68:4f:79:6e:f7:2c:92:53: 62:39:6c:7b:c7:ff:51:27:4d:ac:8c:77:33:d7:57:3f:f5:e0: a0:71:70:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwNzIyMjMyODE1WhcNMjUwNzI5MjMyODE1WjAYMRYwFAYD VQQDEw02ODgwMWU4Zi04NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSSMuQnEbT0I17PyTb2xH/Ki2cA4WsDiNy14Xk/jQeC2j1akrbzj6LsEtoCp 0DTBWQsHQNkoX6vwkO6hUNj3hPJTQy36HRpquJ5nCl4sEVRyMbyq3Kye5VeLE3mA 3hWHRdex1l4hMjWgpisNYs/Gp2JbXtNYCHM53tkD5smtDeynTMd5KLEy48/jT2pU S/LKZGYKFbbk4R1AeQG0N8LjidaELscSufxAPOdhXoAaBc3EJRXMiTJ+F4mCzZ/n HyOjw1CEcy/woGSMGJOSWvYcXZhDEu3Wrv9rbDWX/nP0iQZ9KwuYq2Xc2d9mY8BA 9im6kGYdZsIOub7GriRH+/FyZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0tCC2Y /d/rluXPD2bZUfoJ8rwFMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoVROzn1hCuPcBmAVa7DKEzKyPTSxqqjlyTH4k5eT9fES4CofDDS9+ RiSfRykYX53QVSD2jqnAoVQGtcCF4uGga5qvNtwi9xP69fvn6J9km2MLdBGYT5Cx LhedfrbNWuiWOmiRl0t8YL/qx3B7et8BRfE9yrlpp9PvyANbG4XSYuzfLOrK0Gz0 H6r/bsYNk6LKhrXwB3wbPmo3LDQFeIBQubZiOj81CFPuAU5G816owoW3E6qvDLM5 uP6fJcOcK1/ty63dmCv0c7JfGmMuEKNarKAibUBQQEGfNYZO3Oa/p+lwaE95bvcs klNiOWx7x/9RJ02sjHcz11c/9eCgcXD8 -----END CERTIFICATE-----Generated at Wed Jul 23 02:17:28 2025 by rpki-client