$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: uypjGX/sSrI4hXyrUWAAm+QvmWvUxPq7xqvwjSFKyNY= Subject key identifier: 3F:8A:14:D0:D8:61:2D:B9:28:B5:FC:0D:E5:CF:CF:B3:C1:56:A5:64 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0C82 Signing time: Sun 24 Aug 2025 18:23:45 +0000 Manifest this update: Sun 24 Aug 2025 18:23:45 +0000 Manifest next update: Sun 31 Aug 2025 18:23:45 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: uXKTm/wXB6ZzOGiPOxB4zDGQKSFPFhWhphvjlHsvqXI=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: 1cMybGIbvpxyTUqlwMM8pDEltG6qbjXuctF+adjG4sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Aug 24 18:23:45 2025 GMT Not After : Aug 31 18:23:45 2025 GMT Subject: CN=68ab58b1-1c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:7a:aa:28:69:85:ec:54:b6:52:63:34:4a: ff:9d:bc:48:4b:a6:bc:87:14:41:ff:72:19:25:a8: e6:f3:99:a7:cc:2b:14:73:7c:fa:0e:a1:6a:d9:e9: 05:60:5a:91:7a:7f:64:d0:c2:de:0d:06:0c:fd:8f: fc:0d:2a:14:e5:da:36:d7:21:1b:3a:f6:b3:c8:4e: 46:dd:44:9b:4e:52:1a:e6:42:7d:57:a4:13:09:5e: bd:1f:8b:90:45:2e:64:4d:f6:09:85:39:4d:80:12: 92:d5:05:93:19:be:36:f5:73:0e:62:bf:6d:d9:f3: 01:8f:60:de:b1:81:6f:fa:cf:aa:08:fd:6d:e0:e9: cc:76:16:e8:9e:9e:16:e1:1b:7e:60:47:22:fb:6c: 90:67:40:bd:5f:0f:7b:79:46:b3:db:44:8a:d3:33: b0:3e:9e:36:ae:0a:a4:92:fc:53:88:04:cc:97:78: ea:2d:41:7c:8d:64:85:a4:f6:0b:ab:b4:2a:3d:fc: 8e:b4:e9:98:b1:31:7e:d7:96:9d:09:d9:3d:ae:96: 80:09:fd:43:ad:cc:e2:97:9d:c1:9b:07:6a:cd:63: 0a:be:40:87:88:24:2b:77:be:ff:f8:df:14:f3:39: c2:f5:dc:33:92:39:52:15:f8:7d:f5:a3:f2:8e:ac: fd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8A:14:D0:D8:61:2D:B9:28:B5:FC:0D:E5:CF:CF:B3:C1:56:A5:64 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ff:15:cf:e3:6f:29:d5:04:6e:c0:47:84:52:d0:af:ce:d1: 88:d9:e3:e7:97:ae:6c:94:c3:81:36:cc:5b:6b:b6:30:04:52: 10:20:cc:98:63:ed:c2:ab:92:c0:6a:7e:a9:60:ac:b0:cf:16: f0:66:90:92:c1:af:b9:84:5c:ad:e3:0c:e6:cf:f4:51:be:d9: 76:5b:05:10:e5:7e:cb:61:75:39:75:45:0a:91:97:3b:ec:07: 23:5f:5d:e4:bb:72:88:21:10:b8:a1:7c:53:88:61:d4:ea:eb: 79:1b:c7:20:68:9e:b3:b4:a2:4a:fa:69:56:e3:32:b3:41:70: 11:f9:14:4f:58:e4:95:d4:53:4d:15:b4:fb:ba:06:b1:e3:66: 92:b5:60:d9:d9:6b:4f:0a:94:a9:5a:bc:08:14:2b:f1:78:83: f5:84:0e:c3:e3:c7:50:e1:b5:6f:dc:1a:c6:22:cf:a7:1b:9f: a0:7a:11:9b:f7:f2:1c:c2:d3:cd:12:c2:c2:bf:25:bc:d4:b1: 9a:ae:3e:e2:51:28:30:2a:7f:2f:0c:f9:54:d0:69:4c:27:74: 6e:c2:48:d6:6b:92:fe:7f:84:ac:32:86:e1:77:bb:4a:1c:28: a8:33:73:08:fd:1b:2e:65:ce:ab:c1:48:53:ff:6b:b1:5d:33: 69:c6:93:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUwODI0MTgyMzQ1WhcNMjUwODMxMTgyMzQ1WjAYMRYwFAYD VQQDEw02OGFiNThiMS0xYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoJ6qihphexUtlJjNEr/nbxIS6a8hxRB/3IZJajm85mnzCsUc3z6DqFq2ekF YFqRen9k0MLeDQYM/Y/8DSoU5do21yEbOvazyE5G3USbTlIa5kJ9V6QTCV69H4uQ RS5kTfYJhTlNgBKS1QWTGb429XMOYr9t2fMBj2DesYFv+s+qCP1t4OnMdhbonp4W 4Rt+YEci+2yQZ0C9Xw97eUaz20SK0zOwPp42rgqkkvxTiATMl3jqLUF8jWSFpPYL q7QqPfyOtOmYsTF+15adCdk9rpaACf1Drczil53BmwdqzWMKvkCHiCQrd77/+N8U 8znC9dwzkjlSFfh99aPyjqz9xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+KFNDY YS25KLX8DeXPz7PBVqVkMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK/xXP428p1QRuwEeEUtCvztGI2ePnl65slMOBNsxba7YwBFIQIMyY Y+3Cq5LAan6pYKywzxbwZpCSwa+5hFyt4wzmz/RRvtl2WwUQ5X7LYXU5dUUKkZc7 7AcjX13ku3KIIRC4oXxTiGHU6ut5G8cgaJ6ztKJK+mlW4zKzQXAR+RRPWOSV1FNN FbT7ugax42aStWDZ2WtPCpSpWrwIFCvxeIP1hA7D48dQ4bVv3BrGIs+nG5+gehGb 9/IcwtPNEsLCvyW81LGarj7iUSgwKn8vDPlU0GlMJ3RuwkjWa5L+f4SsMobhd7tK HCioM3MI/RsuZc6rwUhT/2uxXTNpxpN3 -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:39 2025 by rpki-client