$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: hFTuBH5LztN8ZCMnnZZELlniAOPQQmyFhpqoNTEWOYM= Subject key identifier: B2:95:C2:96:B1:18:C7:24:E1:76:FF:2F:61:BD:AA:20:10:D3:57:63 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 73 Signing time: Sat 23 Aug 2025 06:24:03 +0000 Manifest this update: Sat 23 Aug 2025 06:24:02 +0000 Manifest next update: Sat 30 Aug 2025 06:24:02 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: q76gVSriuP5KvuY3dkO/pqLd5kEm+/SZIm0Mf46x8ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Aug 23 06:24:02 2025 GMT Not After : Aug 30 06:24:02 2025 GMT Subject: CN=68a95e82-3a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e5:3b:8f:7d:34:76:0a:ed:69:8c:1c:4d:5e: 4d:af:27:d7:da:eb:21:cf:0c:18:a7:70:04:54:de: 0a:cf:09:6c:fa:ef:a4:d0:34:51:21:f7:3d:23:d5: 9b:38:c2:bf:56:8a:d7:b3:c7:2a:68:3a:03:53:fd: d4:01:a1:28:40:e1:2f:78:df:e9:f3:98:c5:f4:5c: 0b:5e:1a:54:55:c3:1e:52:a9:d8:80:22:8b:fd:73: 78:24:1c:eb:80:2c:e9:86:20:f7:26:2f:e6:1c:8b: 84:76:ba:fc:d0:f1:46:df:27:2d:98:30:a0:f8:c4: 0c:30:9b:f1:b5:13:a5:78:d9:d9:bf:f8:fa:3e:7f: e3:c1:16:70:38:04:76:9f:00:5e:f5:1b:2e:dc:9f: 7c:fe:c9:35:53:0b:ce:f8:31:37:17:64:b4:cd:0a: 0a:7c:45:3c:5f:d1:fe:b4:ac:4f:9b:17:c6:81:8f: 64:a3:38:2e:da:18:df:db:79:94:66:d0:a9:fc:47: 32:76:03:8f:c9:70:6f:3f:b5:33:01:f2:7a:c4:19: 88:2b:34:24:b2:16:b2:8b:85:3d:23:51:79:cd:b8: e2:53:ea:10:07:a5:ce:51:ca:f2:d0:db:fc:b2:2a: 0e:c0:f7:39:f4:72:4e:5d:9a:b2:dd:db:ba:c5:49: 8d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:95:C2:96:B1:18:C7:24:E1:76:FF:2F:61:BD:AA:20:10:D3:57:63 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:1e:45:68:be:d9:9f:34:fe:60:27:fd:f3:8b:ea:48:44:dd: f6:2a:ae:07:13:d8:e3:b6:72:4d:78:c9:2c:f7:36:a4:e6:72: 03:ab:ba:c5:7f:38:3c:7c:34:db:10:4d:98:95:44:c9:c3:a4: fc:1a:30:20:43:a5:6b:e0:53:30:57:b1:d0:0e:98:44:85:1f: 80:9d:76:70:34:a5:35:89:11:e7:a5:ae:aa:e5:49:9e:4d:aa: ee:32:19:b4:18:d9:e1:14:55:68:19:82:a8:f6:01:e7:98:d2: 1c:d0:ae:b7:96:7e:d9:12:36:11:80:19:f6:6b:f8:06:14:7f: 8c:6a:ca:bf:5a:3b:87:5c:6e:de:86:e4:ec:9c:9d:50:ce:24: b0:e1:7a:2d:40:33:a5:d6:d0:5e:d7:68:28:04:97:84:fd:41: 56:5c:49:07:8f:ae:4b:e8:c5:a9:01:f6:31:63:05:7c:c1:ce: 05:96:db:5d:a2:66:fc:74:f5:15:44:cd:10:2c:8b:7f:8a:c4: fe:36:c2:0c:15:fc:da:71:0b:9f:cf:4e:d1:c8:9c:8e:f7:bf: 7d:30:1f:46:46:71:de:e2:5e:f8:d2:46:1c:af:2a:89:10:21: 22:a7:47:04:aa:1d:e1:98:1e:6e:df:0a:19:b1:f0:12:4f:2f: 4f:f1:16:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTA4MjMwNjI0MDJaFw0yNTA4MzAwNjI0MDJaMBgxFjAUBgNV BAMTDTY4YTk1ZTgyLTNhNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP5TuPfTR2Cu1pjBxNXk2vJ9fa6yHPDBincARU3grPCWz676TQNFEh9z0j1Zs4 wr9WitezxypoOgNT/dQBoShA4S943+nzmMX0XAteGlRVwx5SqdiAIov9c3gkHOuA LOmGIPcmL+Yci4R2uvzQ8UbfJy2YMKD4xAwwm/G1E6V42dm/+Po+f+PBFnA4BHaf AF71Gy7cn3z+yTVTC874MTcXZLTNCgp8RTxf0f60rE+bF8aBj2SjOC7aGN/beZRm 0Kn8RzJ2A4/JcG8/tTMB8nrEGYgrNCSyFrKLhT0jUXnNuOJT6hAHpc5RyvLQ2/yy Kg7A9zn0ck5dmrLd27rFSY1jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUspXClrEY xyThdv8vYb2qIBDTV2MwHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKceRWi+2Z80/mAn/fOL6khE3fYqrgcT2OO2ck14ySz3NqTmcgOrusV/ ODx8NNsQTZiVRMnDpPwaMCBDpWvgUzBXsdAOmESFH4CddnA0pTWJEeelrqrlSZ5N qu4yGbQY2eEUVWgZgqj2AeeY0hzQrreWftkSNhGAGfZr+AYUf4xqyr9aO4dcbt6G 5OycnVDOJLDhei1AM6XW0F7XaCgEl4T9QVZcSQePrkvoxakB9jFjBXzBzgWW212i Zvx09RVEzRAsi3+KxP42wgwV/NpxC5/PTtHInI73v30wH0ZGcd7iXvjSRhyvKokQ ISKnRwSqHeGYHm7fChmx8BJPL0/xFk4= -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:08 2025 by rpki-client