$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: R2DuqaRKKL4Lx0gIc46MWfit4SFmEM74C22L4s0vBQw= Subject key identifier: F5:9B:A0:62:D4:F7:5F:94:B3:97:15:38:6D:DC:0F:3D:BA:50:EB:8F Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 05FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 05EE Signing time: Mon 04 Aug 2025 23:25:30 +0000 Manifest this update: Mon 04 Aug 2025 23:25:30 +0000 Manifest next update: Mon 11 Aug 2025 23:25:29 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: lz/Qi3gN9UK0TdSkCQOQdXZ9zzWZj0QeP0bUsx5CTV4=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: D/6BYkGqlNOLOYOgY8KQs7LafMiP8Rro2RlyCrKrnhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Aug 4 23:25:30 2025 GMT Not After : Aug 11 23:25:29 2025 GMT Subject: CN=6891416a-0523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:bc:71:87:78:be:cb:d1:36:fc:67:11:f6: fc:2a:35:8d:72:91:39:f0:36:80:60:e4:14:90:b3: 88:de:33:de:b7:a9:63:5f:8c:d5:b8:d0:65:c2:6d: 16:f3:df:d9:74:9d:b3:31:d3:89:32:ff:4d:c6:f0: fd:31:bf:26:e1:6b:01:6c:5d:43:6c:b1:09:ed:89: 3e:1b:b8:bd:93:f4:fe:2b:62:8a:09:f4:c9:38:60: 5b:6e:80:e6:50:46:f3:03:09:a6:71:09:73:5e:4c: 44:c5:d0:e6:75:07:a7:81:fd:bf:2a:82:3c:f2:4d: 17:aa:21:5e:54:50:b0:cc:bf:87:64:a9:32:0c:cf: 0c:e4:11:3f:4c:8a:26:2c:1f:52:3e:3a:ed:91:ff: 06:c2:28:29:75:0b:7e:2d:a2:42:ff:c9:ec:d5:92: 0c:ab:24:01:e8:43:21:25:fb:36:49:65:b9:b3:2b: 02:38:c9:92:23:f5:3f:10:64:8a:29:89:80:a2:96: b6:55:cc:db:16:fb:fa:45:d9:1b:83:4e:d9:20:9f: 8c:d9:5b:e2:3e:6c:99:c4:18:f6:26:8d:80:94:87: eb:97:52:98:c1:d0:38:08:20:00:c0:b9:a7:f6:8d: 64:a6:49:98:0e:0e:c9:e5:44:e8:54:82:b9:fc:22: ed:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9B:A0:62:D4:F7:5F:94:B3:97:15:38:6D:DC:0F:3D:BA:50:EB:8F X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6a:f2:ec:f8:7a:68:cb:f9:f0:51:f5:61:5a:b4:95:32:27: ba:2c:6b:a3:33:05:5f:f8:f8:02:70:69:54:b6:6f:79:c6:a1: ad:fc:43:db:2a:ba:2c:69:45:b5:fd:53:33:04:9c:db:bc:f3: a5:50:3e:7d:13:0b:d2:45:00:f3:66:c1:18:d5:80:f4:4c:d4: 4d:3f:8b:38:77:60:93:53:2b:6a:75:8e:80:ee:73:9c:dc:f1: 1e:5e:7b:49:2a:b8:1d:d3:ac:c6:b6:63:d4:18:6e:73:15:fb: 6b:54:7a:22:b6:f9:e4:7b:68:89:ad:89:79:46:0d:e1:b1:b7: 1f:ec:22:82:b9:79:b2:be:6d:fe:5d:50:75:c9:bd:af:f6:68: 77:53:b3:f3:0c:4c:e3:8c:81:05:93:73:dd:88:cf:e2:db:b0: 0e:51:c1:ce:87:6b:b5:38:43:d0:15:0a:b3:96:ad:42:f6:e1: 6b:bd:2a:16:9c:2d:5f:c3:16:cd:0d:d2:b5:e2:65:09:5d:10: f9:62:b9:cd:e3:64:ee:24:79:b6:06:5e:44:0a:a0:ff:28:c3: d1:c7:42:47:15:99:f5:4a:74:03:2e:41:0e:8e:2b:32:5a:d8: 6b:bf:c6:ac:bf:54:9c:5d:8c:2c:57:14:2f:77:54:d8:a9:88: 8e:15:8b:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjUwODA0MjMyNTMwWhcNMjUwODExMjMyNTI5WjAYMRYwFAYD VQQDEw02ODkxNDE2YS0wNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1m8cYd4vsvRNvxnEfb8KjWNcpE58DaAYOQUkLOI3jPet6ljX4zVuNBlwm0W 89/ZdJ2zMdOJMv9NxvD9Mb8m4WsBbF1DbLEJ7Yk+G7i9k/T+K2KKCfTJOGBbboDm UEbzAwmmcQlzXkxExdDmdQengf2/KoI88k0XqiFeVFCwzL+HZKkyDM8M5BE/TIom LB9SPjrtkf8GwigpdQt+LaJC/8ns1ZIMqyQB6EMhJfs2SWW5sysCOMmSI/U/EGSK KYmAopa2VczbFvv6Rdkbg07ZIJ+M2VviPmyZxBj2Jo2AlIfrl1KYwdA4CCAAwLmn 9o1kpkmYDg7J5UToVIK5/CLtrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWboGLU 91+Us5cVOG3cDz26UOuPMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOavLs+Hpoy/nwUfVhWrSVMie6LGujMwVf+PgCcGlUtm95xqGt/EPb KrosaUW1/VMzBJzbvPOlUD59EwvSRQDzZsEY1YD0TNRNP4s4d2CTUytqdY6A7nOc 3PEeXntJKrgd06zGtmPUGG5zFftrVHoitvnke2iJrYl5Rg3hsbcf7CKCuXmyvm3+ XVB1yb2v9mh3U7PzDEzjjIEFk3PdiM/i27AOUcHOh2u1OEPQFQqzlq1C9uFrvSoW nC1fwxbNDdK14mUJXRD5YrnN42TuJHm2Bl5ECqD/KMPRx0JHFZn1SnQDLkEOjisy Wthrv8asv1ScXYwsVxQvd1TYqYiOFYsx -----END CERTIFICATE-----Generated at Wed Aug 6 14:20:06 2025 by rpki-client