$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: Bk/yUTHaD93naCfO/OJidUh5M6GSSMMO8R0oLg2cGkw= Subject key identifier: 7B:A3:63:66:38:8C:EB:EE:19:9B:A2:FD:E6:D6:FA:10:8D:A9:74:7E Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 098D Signing time: Mon 08 Sep 2025 20:07:46 +0000 Manifest this update: Mon 08 Sep 2025 20:07:45 +0000 Manifest next update: Mon 15 Sep 2025 20:07:45 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: gEddI+RizUQAefaf6MYS2qIRjwBFlcjEnXGnpvBGSmg=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Sep 8 20:07:45 2025 GMT Not After : Sep 15 20:07:45 2025 GMT Subject: CN=68bf3791-635c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:66:0f:5d:0b:76:df:26:c6:ec:04:1a:dd:1b: ed:3a:8b:92:2a:58:3d:9f:f3:e8:5d:64:82:e3:60: 50:f7:0e:ed:b1:be:1f:5e:09:f6:71:8b:87:cc:22: 06:4a:30:02:ab:71:21:02:04:d5:f9:21:89:fe:fb: 2f:fd:bf:df:c5:58:34:1c:86:74:8c:ed:1d:6b:14: 9c:3d:ba:b9:64:72:9e:25:49:c5:bd:77:82:bd:60: 80:81:12:1c:19:04:1d:af:27:6f:b4:9a:57:72:c7: 70:04:da:12:40:e2:f8:87:5c:6d:38:98:c7:24:0e: 57:ec:be:a3:92:a8:71:3e:1a:c7:38:cd:c7:38:e2: 62:cd:86:58:e0:59:3b:20:7f:c4:ea:32:b1:77:80: 21:d4:37:0f:32:39:51:da:57:75:bf:4d:1d:65:a0: 4e:f6:3e:74:a1:15:55:f1:2b:49:b3:21:b7:b2:09: 16:89:e9:51:92:b4:a9:e3:55:74:b0:35:02:c1:c8: cf:12:6b:a7:61:af:ea:7e:cb:97:82:f8:82:1a:94: 61:47:09:83:1f:71:a8:2e:8c:77:73:40:38:c5:4f: 34:ab:93:65:1b:9c:c9:9b:9f:f3:97:51:cf:8d:da: 8a:c3:29:7b:43:1c:48:9c:50:67:20:9a:72:46:2c: ec:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A3:63:66:38:8C:EB:EE:19:9B:A2:FD:E6:D6:FA:10:8D:A9:74:7E X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2f:fc:3c:1e:6b:00:86:c1:3d:da:38:98:ec:5d:5b:0b:7a: a5:d1:b1:32:d4:a9:30:10:f0:63:c0:d6:54:ab:92:5c:23:f2: 0f:82:56:e8:bc:d6:0f:93:bc:a6:43:b7:1a:25:08:3f:14:36: c5:62:3e:3a:b0:c7:ba:91:5f:82:e9:a0:22:bb:69:86:ff:23: 37:0c:be:96:47:b3:24:4a:25:35:d5:5a:33:55:18:7b:90:e4: 8b:6e:f0:7a:04:77:46:10:a2:36:82:22:10:14:de:24:bd:2f: bb:f9:29:50:d7:1e:de:6c:d8:cd:ec:6b:e6:2c:80:02:b6:48: c2:b0:57:7b:23:c4:70:8a:c8:fe:70:90:7b:c4:c0:50:48:86: 46:e2:65:14:7f:28:fe:ee:0a:db:60:e9:8d:19:90:3e:5b:8e: 58:29:3e:44:98:cf:db:41:c7:99:68:d0:3d:c5:4e:b6:0c:24: f7:29:9a:b9:62:97:52:01:25:d1:c8:7f:28:2e:77:05:a8:65: c5:fa:cd:34:94:2d:dc:d5:a3:08:3b:81:9e:6d:e3:6d:1c:6c: 29:1f:34:b4:dc:99:9b:66:af:b2:69:92:cf:65:af:f2:ef:f8: a9:71:4f:c1:58:ac:76:b9:d6:a4:25:00:57:db:60:d5:f3:83: 3d:69:42:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwOTA4MjAwNzQ1WhcNMjUwOTE1MjAwNzQ1WjAYMRYwFAYD VQQDEw02OGJmMzc5MS02MzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmYPXQt23ybG7AQa3RvtOouSKlg9n/PoXWSC42BQ9w7tsb4fXgn2cYuHzCIG SjACq3EhAgTV+SGJ/vsv/b/fxVg0HIZ0jO0daxScPbq5ZHKeJUnFvXeCvWCAgRIc GQQdrydvtJpXcsdwBNoSQOL4h1xtOJjHJA5X7L6jkqhxPhrHOM3HOOJizYZY4Fk7 IH/E6jKxd4Ah1DcPMjlR2ld1v00dZaBO9j50oRVV8StJsyG3sgkWielRkrSp41V0 sDUCwcjPEmunYa/qfsuXgviCGpRhRwmDH3GoLox3c0A4xU80q5NlG5zJm5/zl1HP jdqKwyl7QxxInFBnIJpyRizsPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHujY2Y4 jOvuGZui/ebW+hCNqXR+MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKL/w8HmsAhsE92jiY7F1bC3ql0bEy1KkwEPBjwNZUq5JcI/IPglbo vNYPk7ymQ7caJQg/FDbFYj46sMe6kV+C6aAiu2mG/yM3DL6WR7MkSiU11VozVRh7 kOSLbvB6BHdGEKI2giIQFN4kvS+7+SlQ1x7ebNjN7GvmLIACtkjCsFd7I8Rwisj+ cJB7xMBQSIZG4mUUfyj+7grbYOmNGZA+W45YKT5EmM/bQceZaNA9xU62DCT3KZq5 YpdSASXRyH8oLncFqGXF+s00lC3c1aMIO4GebeNtHGwpHzS03JmbZq+yaZLPZa/y 7/ipcU/BWKx2udakJQBX22DV84M9aUKs -----END CERTIFICATE-----Generated at Tue Sep 9 08:03:04 2025 by rpki-client