$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: Bw7r0lJ6rN1IswuOHeL35ULmYwkMOQ2VSR0WmnmD2Ck= Subject key identifier: DB:A2:A6:BC:3E:27:8A:DC:55:79:C3:06:AC:33:AB:B5:77:AD:74:5B Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 6B Signing time: Sun 19 Oct 2025 10:18:52 +0000 Manifest this update: Sun 19 Oct 2025 10:18:51 +0000 Manifest next update: Sun 26 Oct 2025 10:18:51 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 8fgPO9y6pwWpKL1SQ8KcQz8ZX8f+YyJnqAj9WuQs9fo=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Oct 19 10:18:51 2025 GMT Not After : Oct 26 10:18:51 2025 GMT Subject: CN=68f4bb0c-f027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:d8:e4:4f:84:5b:d1:02:75:92:0a:fb:09: 51:88:08:4f:9a:ad:0b:e4:ec:bc:ad:2d:fb:c7:f0: d8:47:e2:33:7c:2c:73:1b:b1:97:6c:ce:f7:88:3c: 33:6e:65:a6:61:c5:ce:5d:1e:10:e5:35:ae:be:e7: a1:7e:a7:eb:45:fc:7e:e8:ca:b2:c2:65:44:88:64: 2a:2f:70:18:d2:69:7c:b1:bb:26:97:f3:9f:ff:bf: b4:c7:1a:ba:f7:a7:a2:b6:ca:c3:77:07:73:b1:5f: ba:f1:ba:6f:fe:51:7b:e4:1d:a0:a6:72:13:f9:9c: 3b:9e:fd:16:df:3e:68:d1:bf:e3:11:b9:90:cc:7c: d2:2c:0a:48:a7:67:a4:c6:74:42:ae:68:0d:06:f0: 5f:1e:3c:90:9f:b4:be:3d:3b:42:cc:28:66:74:bc: fe:f0:fe:c8:f1:4e:19:b8:67:ba:91:58:54:b9:83: 2c:4a:d3:e5:9c:b9:32:03:cb:44:57:01:b2:aa:32: 3f:e2:ec:aa:c7:6e:c1:9b:9e:b5:e5:82:5c:63:aa: d0:c6:62:ad:1d:43:9a:b1:4c:4a:15:59:40:21:33: c3:e1:d0:e0:a2:4e:f9:06:2a:7f:2e:f2:b2:14:00: 99:18:54:7d:43:e7:b2:28:4c:d6:32:b5:56:18:9b: 3a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A2:A6:BC:3E:27:8A:DC:55:79:C3:06:AC:33:AB:B5:77:AD:74:5B X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0c:1d:1a:ae:56:a9:77:08:d5:22:7d:b8:62:02:45:92:34: 68:3f:17:72:2d:d6:fa:78:66:a2:c1:48:ad:88:05:4f:9f:f5: e6:47:25:83:a3:4c:72:fb:1b:10:2d:b6:80:0f:91:d9:bc:ac: b7:25:2e:8b:df:8e:b1:71:c3:6c:53:a2:f1:35:61:c2:6c:52: 4d:4f:ee:f5:6c:c9:a3:d1:56:6a:3e:44:94:42:bf:95:2e:e1: 1f:d8:7c:f4:b6:a9:71:80:b4:0b:ae:5b:8b:20:cb:37:6a:05: ba:34:c7:2d:03:03:c4:ad:c9:a4:a8:fa:78:fe:81:2c:b0:8e: 98:11:15:c7:a7:77:0e:6d:fa:8d:a5:a0:ed:8f:b3:1e:fa:b6: b9:4a:1a:02:97:29:2d:2f:03:f7:22:45:6e:31:25:a9:6a:9a: a4:75:e2:7f:99:b5:59:71:b0:5a:58:09:64:56:de:75:ef:d6: c9:f5:e5:b9:f2:9b:21:e6:c7:d4:c3:f6:e7:d9:69:6d:df:21: 1e:cb:da:fc:68:2d:d6:4b:a5:75:9c:67:92:75:b7:e9:22:b2: 3c:6e:6f:2a:18:a5:bd:3a:ac:0f:bb:9f:78:7d:9e:25:49:48: a0:8b:18:10:3f:43:63:fc:b8:74:9a:ee:2c:f7:2d:69:4d:8c: ae:9a:85:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTEwMTkxMDE4NTFaFw0yNTEwMjYxMDE4NTFaMBgxFjAUBgNV BAMTDTY4ZjRiYjBjLWYwMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHeNjkT4Rb0QJ1kgr7CVGICE+arQvk7LytLfvH8NhH4jN8LHMbsZdszveIPDNu ZaZhxc5dHhDlNa6+56F+p+tF/H7oyrLCZUSIZCovcBjSaXyxuyaX85//v7THGrr3 p6K2ysN3B3OxX7rxum/+UXvkHaCmchP5nDue/RbfPmjRv+MRuZDMfNIsCkinZ6TG dEKuaA0G8F8ePJCftL49O0LMKGZ0vP7w/sjxThm4Z7qRWFS5gyxK0+WcuTIDy0RX AbKqMj/i7KrHbsGbnrXlglxjqtDGYq0dQ5qxTEoVWUAhM8Ph0OCiTvkGKn8u8rIU AJkYVH1D57IoTNYytVYYmzp3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU26KmvD4n itxVecMGrDOrtXetdFswHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4MHRquVql3CNUifbhiAkWSNGg/F3It1vp4ZqLBSK2IBU+f9eZHJYOj THL7GxAttoAPkdm8rLclLovfjrFxw2xTovE1YcJsUk1P7vVsyaPRVmo+RJRCv5Uu 4R/YfPS2qXGAtAuuW4sgyzdqBbo0xy0DA8StyaSo+nj+gSywjpgRFcendw5t+o2l oO2Psx76trlKGgKXKS0vA/ciRW4xJalqmqR14n+ZtVlxsFpYCWRW3nXv1sn15bny myHmx9TD9ufZaW3fIR7L2vxoLdZLpXWcZ5J1t+kisjxubyoYpb06rA+7n3h9niVJ SKCLGBA/Q2P8uHSa7iz3LWlNjK6ahUE= -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:03 2025 by rpki-client