$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: OBCe0ti4FOeuphUStcV9125/NGBFXq0eLgaTWxIzU54= Subject key identifier: A6:8B:E6:39:DE:75:0A:C7:D1:4D:90:B9:60:12:15:80:B0:C6:6A:7D Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:33:41 +0000 Manifest this update: Sat 23 Aug 2025 07:33:40 +0000 Manifest next update: Sat 30 Aug 2025 07:33:40 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: /s+B34DPHArG+QW060mfe+TyiAlDLnt3le/zKHI/6zc=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Aug 23 07:33:40 2025 GMT Not After : Aug 30 07:33:40 2025 GMT Subject: CN=68a96ed4-8e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e4:1a:c0:61:48:bb:5a:79:aa:2c:61:34:5f: b9:b3:e4:f5:1e:0a:03:2e:57:13:67:a7:46:46:33: c0:13:6f:97:7a:fc:e8:62:50:63:74:83:ac:d0:23: a9:49:71:e2:ff:ea:eb:3b:23:50:e1:bf:e8:5c:d2: e9:1b:d7:5a:8a:63:4a:96:75:e8:ce:6e:8c:d7:f4: db:0f:4a:c2:18:20:b8:0c:7a:36:0c:05:80:69:45: bf:13:6e:b6:ae:a7:84:d8:6b:ad:5e:22:cf:ae:bd: 1d:64:05:d3:04:81:e4:ee:3a:0f:f6:d3:90:f6:32: 46:c3:2a:55:9a:e0:1f:86:6a:61:c1:80:17:41:1a: 43:41:57:d6:8d:ad:c5:19:11:72:e8:a3:d2:ba:54: 45:38:ce:16:5c:c0:e3:b6:56:3b:fa:85:62:92:e3: ff:8a:65:dc:08:86:06:84:bc:f0:91:95:d7:45:1c: 48:eb:06:b3:73:92:f0:87:e6:8e:93:de:62:05:07: 26:f7:f2:53:87:cc:46:9d:a6:3b:ff:5c:74:98:75: 21:70:90:7b:9b:6e:d2:70:ec:45:e3:94:bc:26:f5: e6:3f:b1:2b:7e:d6:6b:8a:60:0b:a2:34:ce:fa:b6: f5:78:0a:10:4e:ac:2e:21:21:48:72:4b:a0:ad:7c: c7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8B:E6:39:DE:75:0A:C7:D1:4D:90:B9:60:12:15:80:B0:C6:6A:7D X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:58:93:d4:89:42:17:ea:f9:ba:ea:5a:bb:a5:11:1f:fc:8c: bc:1a:5d:c7:fc:1c:d0:9f:03:32:e9:f4:5d:22:0b:ea:63:56: 57:85:82:ee:03:39:71:96:7a:a7:c0:7a:47:04:2b:c1:42:b3: f0:9c:52:e7:6b:d4:00:d6:f3:4f:dd:95:4b:15:79:38:38:4b: ff:00:68:5f:d1:eb:e0:0a:69:8b:c0:80:1e:23:ef:c8:26:d4: 9f:75:ad:4a:bf:50:36:14:56:95:5d:19:d7:6e:06:d8:5a:f3: 22:bb:29:5d:f0:ad:f4:25:ae:a7:fc:f2:43:39:ef:69:32:c6: 15:b8:00:61:3c:7a:4d:25:ec:8c:31:db:de:90:5f:1d:4b:b4: 6e:f6:a4:b4:ad:3d:13:79:75:d4:3c:d9:3a:3f:25:03:a9:f0: 72:c6:19:f8:2f:26:1a:f4:f7:f4:49:f1:31:ff:00:c7:73:ce: f9:b8:72:df:3a:8a:20:48:dc:30:7f:ca:c9:53:7d:52:ba:0a: 78:12:18:93:9c:a2:1b:ea:bb:25:55:60:98:87:9f:a7:11:31: b6:47:46:0c:04:82:9a:1d:7e:6c:5f:37:df:64:d4:48:38:2c: c0:07:47:7c:3d:57:56:0a:46:66:5a:3e:9b:a8:69:95:fe:8b: f0:55:60:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTA4MjMwNzMzNDBaFw0yNTA4MzAwNzMzNDBaMBgxFjAUBgNV BAMTDTY4YTk2ZWQ0LThlNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/5BrAYUi7WnmqLGE0X7mz5PUeCgMuVxNnp0ZGM8ATb5d6/OhiUGN0g6zQI6lJ ceL/6us7I1Dhv+hc0ukb11qKY0qWdejObozX9NsPSsIYILgMejYMBYBpRb8Tbrau p4TYa61eIs+uvR1kBdMEgeTuOg/205D2MkbDKlWa4B+GamHBgBdBGkNBV9aNrcUZ EXLoo9K6VEU4zhZcwOO2Vjv6hWKS4/+KZdwIhgaEvPCRlddFHEjrBrNzkvCH5o6T 3mIFByb38lOHzEadpjv/XHSYdSFwkHubbtJw7EXjlLwm9eY/sSt+1muKYAuiNM76 tvV4ChBOrC4hIUhyS6CtfMcvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpovmOd51 CsfRTZC5YBIVgLDGan0wHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtYk9SJQhfq+brqWrulER/8jLwaXcf8HNCfAzLp9F0iC+pjVleFgu4D OXGWeqfAekcEK8FCs/CcUudr1ADW80/dlUsVeTg4S/8AaF/R6+AKaYvAgB4j78gm 1J91rUq/UDYUVpVdGdduBtha8yK7KV3wrfQlrqf88kM572kyxhW4AGE8ek0l7Iwx 296QXx1LtG72pLStPRN5ddQ82To/JQOp8HLGGfgvJhr09/RJ8TH/AMdzzvm4ct86 iiBI3DB/yslTfVK6CngSGJOcohvquyVVYJiHn6cRMbZHRgwEgpodfmxfN99k1Eg4 LMAHR3w9V1YKRmZaPpuoaZX+i/BVYDo= -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:23 2025 by rpki-client