$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: o5TmqxzEddinTwsJMgRX2+YwCg6Hy0DIyoDUxMIcXms= Subject key identifier: D1:32:B0:28:84:A4:59:35:52:03:0A:5D:CC:E8:81:56:2A:15:9F:B2 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 90 Signing time: Sun 19 Oct 2025 08:55:53 +0000 Manifest this update: Sun 19 Oct 2025 08:55:53 +0000 Manifest next update: Sun 26 Oct 2025 08:55:52 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: xvabqMtAybtlBL9cXvrDjL+1Rh/8BjOMZULbGQyPX9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Oct 19 08:55:53 2025 GMT Not After : Oct 26 08:55:52 2025 GMT Subject: CN=68f4a799-b296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:dd:56:ef:0b:07:28:5d:2e:bc:39:39:18: 2c:03:b3:f6:f0:5b:a0:55:7a:5b:76:75:2c:aa:25: 5b:75:cb:5f:29:00:50:fd:9a:91:23:6c:a5:d1:4d: 75:71:72:ac:9e:28:15:d7:a4:8a:c9:13:fb:88:da: 33:19:74:20:14:cf:1f:64:86:03:65:0f:e2:91:b1: 71:f8:46:e8:0d:a4:f7:86:10:b7:09:55:ce:5d:ab: 6a:06:f3:a2:65:e8:d2:84:91:25:7a:3e:5f:28:58: 60:bc:d7:80:14:eb:bd:66:b9:1b:c9:b1:4e:9c:08: e6:cf:9f:d0:25:2b:43:c8:e5:de:e6:34:ae:4d:7d: 1f:d4:be:a6:5b:54:6b:dc:8a:c1:62:17:aa:26:2f: 94:21:f7:c9:09:16:27:d4:69:17:62:b1:63:71:37: c7:88:e8:35:06:3c:a3:55:55:91:c7:1b:9e:f1:43: 07:cd:02:4b:6a:44:7f:2a:a2:93:e2:13:f0:b5:d9: c6:66:8f:de:93:4d:e9:54:c5:42:e5:14:f6:06:7a: 4a:a4:32:9b:45:ef:1c:1f:bc:12:56:ce:a5:26:43: 70:31:9f:40:5a:75:52:50:cd:a9:a2:34:1e:13:e9: 0a:2b:6e:c3:e4:99:b2:ec:38:66:10:4c:12:b8:8e: fc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:32:B0:28:84:A4:59:35:52:03:0A:5D:CC:E8:81:56:2A:15:9F:B2 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:15:60:67:b1:84:60:2a:7c:23:8d:c9:95:1e:7f:7d:99:14: 84:c7:79:c8:46:83:da:42:a7:df:79:79:ac:50:b6:2e:8b:53: ac:1f:99:13:5b:e2:5e:0b:6e:16:33:26:09:ef:64:a5:61:14: 30:af:74:cb:9a:bf:5b:fc:e6:4b:d9:93:57:e0:51:80:ff:85: b6:9c:53:77:f7:1d:22:90:06:02:f7:83:5b:6d:9e:b8:88:fb: 1f:42:5d:66:14:c5:ea:98:94:59:ca:db:35:f5:5d:af:a0:e1: d0:1e:b5:e6:f5:10:56:ad:52:f2:d1:48:41:ec:bd:47:fa:9a: 52:49:4e:81:80:01:b4:40:12:9d:03:04:7d:55:7e:de:30:d6: 88:29:88:7a:af:38:1c:f9:2f:35:82:5d:cd:51:16:b7:36:c7: e0:1b:6f:75:17:98:07:b0:31:d6:8d:97:95:fa:0a:c8:88:37: 62:93:8f:06:e8:d8:4e:92:86:a2:6a:b0:44:c8:6a:dc:dd:2d: cc:d5:05:eb:2c:ed:6b:a9:ef:ae:df:be:21:1c:d7:35:74:32: fe:d1:27:c5:8c:83:b9:fa:d0:fe:97:61:df:50:a4:75:40:91: f4:e1:32:4d:da:91:24:2a:c1:f1:41:32:05:a9:19:94:31:68: d9:16:90:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDI4RURBN0I5NUQ1RThENDU2MkE3NTk3NEM2REQ3REE2 NEMyQTJBODYwHhcNMjUxMDE5MDg1NTUzWhcNMjUxMDI2MDg1NTUyWjAYMRYwFAYD VQQDEw02OGY0YTc5OS1iMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhLdVu8LByhdLrw5ORgsA7P28FugVXpbdnUsqiVbdctfKQBQ/ZqRI2yl0U11 cXKsnigV16SKyRP7iNozGXQgFM8fZIYDZQ/ikbFx+EboDaT3hhC3CVXOXatqBvOi ZejShJElej5fKFhgvNeAFOu9ZrkbybFOnAjmz5/QJStDyOXe5jSuTX0f1L6mW1Rr 3IrBYheqJi+UIffJCRYn1GkXYrFjcTfHiOg1BjyjVVWRxxue8UMHzQJLakR/KqKT 4hPwtdnGZo/ek03pVMVC5RT2BnpKpDKbRe8cH7wSVs6lJkNwMZ9AWnVSUM2pojQe E+kKK27D5Jmy7DhmEEwSuI78+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEysCiE pFk1UgMKXczogVYqFZ+yMB8GA1UdIwQYMBaAFCjtp7ldXo1FYqdZdMbdfaZMKiqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS9ENDA5RjgyQUQx NjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpVVmlwMWwweHQxOXBrd3FL b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS9ENDA5RjgyQUQxNjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpV VmlwMWwweHQxOXBrd3FLb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEFWBnsYRgKnwjjcmVHn99mRSEx3nIRoPaQqffeXmsULYui1OsH5kT W+JeC24WMyYJ72SlYRQwr3TLmr9b/OZL2ZNX4FGA/4W2nFN39x0ikAYC94NbbZ64 iPsfQl1mFMXqmJRZyts19V2voOHQHrXm9RBWrVLy0UhB7L1H+ppSSU6BgAG0QBKd AwR9VX7eMNaIKYh6rzgc+S81gl3NURa3NsfgG291F5gHsDHWjZeV+grIiDdik48G 6NhOkoaiarBEyGrc3S3M1QXrLO1rqe+u374hHNc1dDL+0SfFjIO5+tD+l2HfUKR1 QJH04TJN2pEkKsHxQTIFqRmUMWjZFpDZ -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:30 2025 by rpki-client