$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: bbvwMLNm5qW/EJ0qo8Z3Gkq0mb6WCgcLNVueJVo8cQY= Subject key identifier: FE:37:C7:6F:7F:78:D1:1C:8A:D8:EA:4E:E6:03:58:0E:6C:F6:45:50 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 81 Signing time: Sun 19 Oct 2025 10:00:16 +0000 Manifest this update: Sun 19 Oct 2025 10:00:15 +0000 Manifest next update: Sun 26 Oct 2025 10:00:15 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: loac9ofUHfkw2KVk3Iz30ldkYTt5huLlL84R2xX2ZWQ=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Oct 19 10:00:15 2025 GMT Not After : Oct 26 10:00:15 2025 GMT Subject: CN=68f4b6af-60f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:e4:60:67:9d:d6:0c:af:ab:e5:6b:b8:ef: 59:65:5b:38:30:32:77:76:ed:36:a3:58:07:a5:51: 52:41:08:37:2e:c2:d7:7b:cf:b0:34:97:d2:0b:c8: b7:f7:b5:b4:32:c8:96:a1:f4:2c:a6:a8:b9:61:62: 4a:b6:e8:4e:0a:54:8c:ba:6c:24:15:34:d4:59:1e: 46:11:72:ea:56:d8:a0:40:c0:5e:68:2b:f4:55:6e: 9d:13:96:4b:2b:c6:7b:f9:f6:68:d3:c6:de:ba:6a: 2b:6c:17:73:fe:3e:d6:6f:bc:ad:82:48:b6:d9:6f: ee:75:ce:f0:88:3c:41:68:14:17:af:6e:92:d7:04: ae:19:e1:40:cd:80:29:cc:00:8f:5b:15:ad:16:a6: 48:46:ea:c4:9d:f9:99:7d:cb:1c:3b:80:7a:a8:b2: cd:ed:72:40:07:cc:c0:6c:7f:11:00:1d:ee:76:94: 83:f5:96:c8:c4:91:a0:a8:f4:ef:56:22:bc:4f:9e: 43:3a:e4:77:8f:a9:7e:13:18:3e:9a:4b:6e:5d:a5: 79:a3:4e:ac:df:80:70:47:d7:be:93:ad:e3:20:04: ba:13:ae:bc:f4:84:a2:5a:3d:4f:98:5b:72:ba:a7: cf:14:b1:f5:3d:13:5d:cd:62:01:88:1f:1a:72:55: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:37:C7:6F:7F:78:D1:1C:8A:D8:EA:4E:E6:03:58:0E:6C:F6:45:50 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a1:c6:7a:d3:52:7a:39:67:eb:f8:63:61:c5:9e:ec:74:df: 17:96:af:d9:cc:ed:7f:b4:e6:6c:75:33:72:13:d3:82:cc:68: 3b:27:2c:d7:38:68:28:cf:ab:13:ba:f3:17:ac:16:e6:e4:41: 38:df:72:99:6e:8e:bc:2b:fe:b9:17:44:fd:77:e8:82:3a:b0: b7:b1:21:f9:05:f6:6f:18:cb:41:b9:c5:7a:6d:24:a5:5f:1c: 00:f3:4f:da:83:ea:15:12:92:ed:53:3d:df:7c:3b:5b:68:b6: fd:49:92:57:46:ef:9f:d1:8b:d9:96:9c:25:0e:f2:23:40:2c: 79:a6:7d:cd:5d:5b:61:6a:8d:4c:c4:dd:f2:51:c5:25:87:3e: 99:d6:e4:74:8d:5e:f4:17:ad:7c:1d:87:79:80:a1:1b:29:73: 99:eb:e9:d9:f0:79:3b:c9:8f:31:0a:d7:e3:b1:22:16:c1:97: cd:8a:ae:04:ad:1c:9c:22:ca:a1:52:8c:a5:e7:ce:cc:c4:b7: 16:85:ed:28:7d:c0:bf:09:1d:b4:d1:87:49:8f:9a:f7:7b:39: f2:33:88:b7:d5:63:af:a3:27:a8:e6:9c:61:f5:19:1a:45:b0: 97:27:c7:c0:1d:2e:cc:5f:b1:14:94:31:6e:39:42:dd:84:ae: df:1e:da:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjUxMDE5MTAwMDE1WhcNMjUxMDI2MTAwMDE1WjAYMRYwFAYD VQQDEw02OGY0YjZhZi02MGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNnkYGed1gyvq+VruO9ZZVs4MDJ3du02o1gHpVFSQQg3LsLXe8+wNJfSC8i3 97W0MsiWofQspqi5YWJKtuhOClSMumwkFTTUWR5GEXLqVtigQMBeaCv0VW6dE5ZL K8Z7+fZo08beumorbBdz/j7Wb7ytgki22W/udc7wiDxBaBQXr26S1wSuGeFAzYAp zACPWxWtFqZIRurEnfmZfcscO4B6qLLN7XJAB8zAbH8RAB3udpSD9ZbIxJGgqPTv ViK8T55DOuR3j6l+Exg+mktuXaV5o06s34BwR9e+k63jIAS6E6689ISiWj1PmFty uqfPFLH1PRNdzWIBiB8aclU80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP43x29/ eNEcitjqTuYDWA5s9kVQMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdocZ601J6OWfr+GNhxZ7sdN8Xlq/ZzO1/tOZsdTNyE9OCzGg7JyzX OGgoz6sTuvMXrBbm5EE433KZbo68K/65F0T9d+iCOrC3sSH5BfZvGMtBucV6bSSl XxwA80/ag+oVEpLtUz3ffDtbaLb9SZJXRu+f0YvZlpwlDvIjQCx5pn3NXVthao1M xN3yUcUlhz6Z1uR0jV70F618HYd5gKEbKXOZ6+nZ8Hk7yY8xCtfjsSIWwZfNiq4E rRycIsqhUoyl587MxLcWhe0ofcC/CR200YdJj5r3eznyM4i31WOvoyeo5pxh9Rka RbCXJ8fAHS7MX7EUlDFuOULdhK7fHtpk -----END CERTIFICATE-----Generated at Mon Oct 20 10:48:02 2025 by rpki-client