$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: mK6rDypX+q0nZStPPYwGniSoXyK4X0Qru2FLg0Y1vsc= Subject key identifier: 78:01:A1:7C:EA:C1:A2:F7:40:ED:82:E1:D6:BD:AF:FB:C9:AA:CC:E2 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 062E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 0608 Signing time: Mon 08 Sep 2025 23:04:51 +0000 Manifest this update: Mon 08 Sep 2025 23:04:51 +0000 Manifest next update: Mon 15 Sep 2025 23:04:51 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: 0jgAbCKyHuUnorgwwrweROlnB/PkPIjgAdx4Xy0o/V4=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: HhWutos5vK2k7U1Y6D/GqMl0klIP1xZEoSAwh8yepqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Sep 8 23:04:51 2025 GMT Not After : Sep 15 23:04:51 2025 GMT Subject: CN=68bf6113-793c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:03:4c:e4:65:27:d4:d2:aa:1d:af:64:e3:88: 8f:a4:f5:c8:1f:70:ec:99:32:32:d3:9f:3c:ef:23: bb:f2:0a:71:aa:b0:f1:8e:b8:4e:96:ca:7c:8d:46: 7c:60:ad:d8:ea:a1:59:9a:30:a8:3d:32:2d:bd:dd: bf:10:41:ec:11:66:d1:08:ce:5c:68:bb:fe:be:08: c1:9e:b5:47:23:ae:8a:9f:31:d1:06:f5:ce:b4:f8: b4:ca:50:76:ad:bb:f7:29:2c:7b:55:c4:45:c4:d3: b5:e5:cb:89:c1:51:e7:f0:30:39:7b:8d:0d:60:0b: f0:1d:39:8f:66:49:2a:74:23:a0:36:82:37:7b:da: 0d:9b:57:d4:c0:1d:1a:38:cd:8c:4d:01:4e:77:d2: 3b:15:13:8e:2a:2e:66:86:5a:da:90:fa:99:df:42: ae:0a:79:71:eb:36:3e:05:68:a8:4d:8b:8a:32:78: 4b:cc:26:52:25:05:5e:fc:06:4c:d5:41:bc:6f:35: b1:67:42:5b:ab:7a:a0:c5:ea:bf:e1:5c:79:10:01: 5c:16:5c:2d:3b:0c:81:a0:2b:a3:eb:b6:02:e6:31: 6b:8c:5f:0c:9d:88:87:e2:0a:70:d2:1a:cb:b1:35: bb:92:88:ae:26:39:1f:58:18:ab:d1:44:1e:df:5b: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:01:A1:7C:EA:C1:A2:F7:40:ED:82:E1:D6:BD:AF:FB:C9:AA:CC:E2 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:7a:a1:87:13:42:58:cd:5f:b7:5a:8c:f3:2f:b8:f3:a5:3a: 8a:56:93:c7:a1:21:61:65:cc:17:04:af:6c:2b:8b:89:81:da: 82:ea:9a:94:ee:75:d4:a0:84:d0:d5:23:02:65:f1:98:f0:c1: 00:83:c9:d9:5d:fa:e9:a6:a9:25:45:dd:24:ea:b8:dc:60:14: cf:85:18:7e:da:a9:c3:7d:ac:2b:0f:11:c5:df:09:d7:83:41: 2c:69:4c:d6:72:ce:22:f7:67:90:13:78:5f:74:84:4e:39:e6: 28:a5:9e:4b:80:06:7b:6b:37:f3:ef:a5:62:00:70:ca:55:15: 51:45:57:f3:66:46:47:e8:3a:2a:94:19:b5:68:bf:80:60:b5: 5f:fb:56:6f:e8:4d:2d:86:4d:98:3a:88:21:b2:8b:02:fe:b1: f4:b1:16:d7:1e:b3:2c:0c:44:30:39:c7:c9:cf:5b:79:c8:5c: c7:2c:5d:da:5f:36:c4:4a:67:ca:f7:57:c3:c1:26:b4:8b:57: 08:b1:3b:e6:16:b7:e7:fe:5b:13:da:fb:9a:0c:68:d9:91:2b: a9:3a:19:05:38:93:98:1a:9e:c3:59:69:f2:69:56:96:1c:7b: 2a:3c:1b:73:ab:1d:0b:07:50:37:a8:80:b6:37:c2:cc:dd:3c: 40:f8:3c:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwOTA4MjMwNDUxWhcNMjUwOTE1MjMwNDUxWjAYMRYwFAYD VQQDEw02OGJmNjExMy03OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyANM5GUn1NKqHa9k44iPpPXIH3DsmTIy05887yO78gpxqrDxjrhOlsp8jUZ8 YK3Y6qFZmjCoPTItvd2/EEHsEWbRCM5caLv+vgjBnrVHI66KnzHRBvXOtPi0ylB2 rbv3KSx7VcRFxNO15cuJwVHn8DA5e40NYAvwHTmPZkkqdCOgNoI3e9oNm1fUwB0a OM2MTQFOd9I7FROOKi5mhlrakPqZ30KuCnlx6zY+BWioTYuKMnhLzCZSJQVe/AZM 1UG8bzWxZ0Jbq3qgxeq/4Vx5EAFcFlwtOwyBoCuj67YC5jFrjF8MnYiH4gpw0hrL sTW7koiuJjkfWBir0UQe31uPAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgBoXzq waL3QO2C4da9r/vJqsziMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZeqGHE0JYzV+3WozzL7jzpTqKVpPHoSFhZcwXBK9sK4uJgdqC6pqU 7nXUoITQ1SMCZfGY8MEAg8nZXfrppqklRd0k6rjcYBTPhRh+2qnDfawrDxHF3wnX g0EsaUzWcs4i92eQE3hfdIROOeYopZ5LgAZ7azfz76ViAHDKVRVRRVfzZkZH6Doq lBm1aL+AYLVf+1Zv6E0thk2YOoghsosC/rH0sRbXHrMsDEQwOcfJz1t5yFzHLF3a XzbESmfK91fDwSa0i1cIsTvmFrfn/lsT2vuaDGjZkSupOhkFOJOYGp7DWWnyaVaW HHsqPBtzqx0LB1A3qIC2N8LM3TxA+DzN -----END CERTIFICATE-----Generated at Wed Sep 10 05:57:45 2025 by rpki-client