$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: vDW2jkB1231cbkM/9NoovRcFmES0o4Ob/j7FhyuEOP8= Subject key identifier: 9D:A2:07:0D:23:2A:B4:EB:97:3E:FE:66:05:FA:22:6D:3F:E8:1B:37 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0959 Signing time: Fri 30 May 2025 20:59:00 +0000 Manifest this update: Fri 30 May 2025 20:59:00 +0000 Manifest next update: Fri 06 Jun 2025 20:59:00 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: vvRtqlDMWLJ3PkZSZUa81wggCcuCf+61gjiqlrP75V0=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 30 20:59:00 2025 GMT Not After : Jun 6 20:59:00 2025 GMT Subject: CN=683a1c14-1b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:74:00:be:7a:f1:b1:ef:0d:ef:1f:73:ca: b8:07:6a:d9:33:33:5b:60:5e:23:f6:81:0e:da:e0: 02:29:21:52:b3:46:39:38:50:85:b7:c2:8f:80:8f: e8:28:29:4c:49:b1:d9:87:68:d1:e5:90:90:29:cd: 12:e0:04:f5:a9:69:25:b0:d5:0c:34:a4:a0:1b:1b: fc:15:97:f0:c4:48:f9:2a:2a:32:85:9e:10:a2:e5: 18:46:f7:b2:db:ad:4f:14:d3:15:fa:8e:0a:97:f9: b9:51:16:f2:44:54:c7:39:33:f5:09:d4:c9:f7:6a: 17:ca:43:29:30:b5:b0:bf:b1:98:48:4f:22:f2:3c: ee:9e:2b:47:bf:3e:09:ea:ce:23:aa:5f:7a:15:11: c6:e7:89:15:90:39:3f:3c:21:d0:7b:8b:8f:f6:3b: 86:4c:86:ea:a7:2f:6c:ec:e0:f2:80:ab:fe:26:68: 14:01:a5:84:a0:30:fb:69:b3:88:26:d2:af:93:af: 56:42:b5:2c:20:dc:51:0c:42:0f:f0:1a:d6:0b:8e: f5:4a:03:9d:5b:9a:61:44:28:f3:bd:e3:38:f9:db: 2d:76:b9:cc:a3:63:bd:a6:5d:bc:01:5a:d7:a7:42: c0:82:7f:3f:9a:f6:91:e6:84:09:d1:6b:d5:4d:5f: 20:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A2:07:0D:23:2A:B4:EB:97:3E:FE:66:05:FA:22:6D:3F:E8:1B:37 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:fe:3e:dc:6a:64:fb:82:27:93:28:1c:86:82:2d:1e:ad:ed: 81:0e:18:31:ba:ed:62:9d:16:d3:c3:1b:e6:6d:ab:e3:de:d4: b7:76:a7:53:d8:74:e1:71:5f:32:aa:ff:62:b6:48:34:4b:e6: 97:a3:ae:98:24:4e:87:5f:2d:22:7b:37:3e:c2:39:34:03:9a: 1f:df:87:af:a5:a6:41:06:ee:51:59:e9:7f:ab:c6:1e:6d:7c: 83:ec:3c:62:d9:33:b0:c1:b5:d2:01:df:7e:27:f5:da:6c:1b: 76:29:6d:09:92:0a:81:cf:3c:49:39:52:b3:d3:7d:eb:80:b3: 3f:63:99:b0:6e:c6:fc:29:90:b4:53:d3:58:a9:cf:37:2d:da: 3e:00:e1:37:7e:87:5f:f2:f0:0c:41:70:38:6d:17:80:63:7d: 76:e9:05:b1:9f:0f:4d:67:7e:3d:7b:11:c5:c0:bd:6c:49:5c: f0:64:f5:d2:de:31:cd:59:62:8d:aa:68:f5:5c:94:9f:7f:4d: 9c:c6:f9:f4:b6:ef:3d:70:17:e7:f3:30:b0:c4:07:93:a8:15: d8:5f:f6:6a:25:ed:8d:9d:42:9e:fe:2d:49:7d:05:3a:0a:04: 7e:01:b9:c3:a6:76:ff:0f:6b:eb:87:10:64:c5:b0:ad:86:d7: fb:af:73:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNTMwMjA1OTAwWhcNMjUwNjA2MjA1OTAwWjAYMRYwFAYD VQQDEw02ODNhMWMxNC0xYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkp0AL568bHvDe8fc8q4B2rZMzNbYF4j9oEO2uACKSFSs0Y5OFCFt8KPgI/o KClMSbHZh2jR5ZCQKc0S4AT1qWklsNUMNKSgGxv8FZfwxEj5KioyhZ4QouUYRvey 261PFNMV+o4Kl/m5URbyRFTHOTP1CdTJ92oXykMpMLWwv7GYSE8i8jzunitHvz4J 6s4jql96FRHG54kVkDk/PCHQe4uP9juGTIbqpy9s7ODygKv+JmgUAaWEoDD7abOI JtKvk69WQrUsINxRDEIP8BrWC471SgOdW5phRCjzveM4+dstdrnMo2O9pl28AVrX p0LAgn8/mvaR5oQJ0WvVTV8glQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2iBw0j KrTrlz7+ZgX6Im0/6Bs3MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+/j7camT7gieTKByGgi0ere2BDhgxuu1inRbTwxvmbavj3tS3dqdT 2HThcV8yqv9itkg0S+aXo66YJE6HXy0iezc+wjk0A5of34evpaZBBu5RWel/q8Ye bXyD7Dxi2TOwwbXSAd9+J/XabBt2KW0JkgqBzzxJOVKz033rgLM/Y5mwbsb8KZC0 U9NYqc83Ldo+AOE3fodf8vAMQXA4bReAY3126QWxnw9NZ349exHFwL1sSVzwZPXS 3jHNWWKNqmj1XJSff02cxvn0tu89cBfn8zCwxAeTqBXYX/ZqJe2NnUKe/i1JfQU6 CgR+AbnDpnb/D2vrhxBkxbCthtf7r3NW -----END CERTIFICATE-----Generated at Sat May 31 17:27:59 2025 by rpki-client