$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: UrO0wNDds86/EkLftFvlT42Tj74Q5qFUKyYD80ZR9rY= Subject key identifier: 84:82:C5:69:CC:D0:9F:DA:4F:10:F3:F3:B4:C3:CD:57:39:D8:35:D3 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 05C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 05B9 Signing time: Thu 24 Apr 2025 22:56:55 +0000 Manifest this update: Thu 24 Apr 2025 22:56:54 +0000 Manifest next update: Thu 01 May 2025 22:56:54 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: qVNv001y9SeAuJxJARBt5mLrQ0GZWrbnCDRnc8424pM=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: JIQ3Z5Vql3trgih29wB+iKDBgbYVi7iH8FQ6aCEf6sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1479 (0x5c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Apr 24 22:56:54 2025 GMT Not After : May 1 22:56:54 2025 GMT Subject: CN=680ac1b6-eff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ca:f4:28:fe:ed:68:f0:1a:a0:15:05:13:39: 93:0b:e1:38:de:bd:2d:c7:ad:14:91:96:19:d9:8d: 45:8a:aa:dc:3e:4b:58:fd:59:5d:72:f7:79:78:5d: 9c:52:5c:20:c4:41:16:ab:58:7f:7f:99:08:97:04: c9:7a:73:a5:27:b2:54:02:70:75:c1:20:f0:8e:e3: 72:8f:3b:4d:a4:7d:9f:f6:05:8e:19:41:af:73:14: 27:6f:91:fd:79:71:1a:d0:c0:10:c2:1a:b6:db:9a: da:cf:f7:ca:5d:10:77:e8:0f:07:00:3b:68:c6:9d: 5d:15:d7:4c:2a:cc:16:ae:48:de:0b:ce:3c:55:d1: 51:2d:c8:b7:35:41:46:b0:4a:52:f2:64:a8:3e:6f: 6e:1d:ae:06:36:cb:00:57:05:73:29:3a:3f:ef:77: 99:50:bb:42:b1:15:b7:5e:89:9b:12:3b:f3:d2:09: 45:8a:95:f8:bc:ef:e6:4f:f7:61:4b:0c:05:f2:d0: 87:07:0c:7a:9f:c2:e3:e5:62:6f:fb:56:5d:5f:74: e0:67:d3:f5:78:ef:40:db:fd:e1:bc:af:4a:1e:d6: 7b:c3:ae:18:c5:9e:19:68:e1:9b:81:29:fc:3d:8f: d0:da:5f:c3:38:e3:10:f8:b7:a0:f6:bd:d9:19:5f: f3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:82:C5:69:CC:D0:9F:DA:4F:10:F3:F3:B4:C3:CD:57:39:D8:35:D3 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:6a:2c:64:74:d2:21:78:de:8f:e6:ec:0d:fd:12:7d:85:6b: 1d:40:4d:8c:e2:4d:08:5e:80:13:08:2b:af:08:fc:cb:c0:55: 8a:0e:f1:b8:c4:50:69:2e:d7:d1:45:3a:0b:3a:20:fc:8b:9b: 02:0f:ab:29:87:dc:09:c9:0d:6d:98:c5:16:56:4d:63:ab:10: 31:95:a9:35:67:ee:a4:73:e7:59:5f:a4:0d:1c:73:cd:d4:cb: 10:bf:67:0d:3f:d1:05:f3:f4:a4:5e:79:33:25:72:09:e3:33: 68:7d:8d:17:f0:d9:14:fa:4c:4d:e2:6d:9a:42:ee:2e:3f:40: 3d:d9:5e:95:ec:6d:ef:32:9f:71:70:5f:3d:ff:37:42:71:34: 88:a9:db:66:0c:32:46:da:ca:8e:e1:7b:c6:43:24:7f:7e:ad: 7c:4b:89:3e:d0:d5:03:6d:1a:8a:04:9e:0c:34:34:81:c0:39: 75:f9:4c:2d:f9:cf:21:3f:48:8b:29:8c:e2:5d:00:06:06:6c: 80:6b:b4:c9:86:89:81:84:66:c5:a2:27:3c:75:6a:47:96:21: 77:67:f1:9f:a4:17:90:df:69:e7:c8:a5:1d:1e:69:5a:9e:a1: dc:c0:cb:db:cf:47:de:51:d0:eb:1b:22:e3:e9:92:a1:ce:55: 4d:05:a1:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjUwNDI0MjI1NjU0WhcNMjUwNTAxMjI1NjU0WjAYMRYwFAYD VQQDEw02ODBhYzFiNi1lZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscr0KP7taPAaoBUFEzmTC+E43r0tx60UkZYZ2Y1FiqrcPktY/Vldcvd5eF2c UlwgxEEWq1h/f5kIlwTJenOlJ7JUAnB1wSDwjuNyjztNpH2f9gWOGUGvcxQnb5H9 eXEa0MAQwhq225raz/fKXRB36A8HADtoxp1dFddMKswWrkjeC848VdFRLci3NUFG sEpS8mSoPm9uHa4GNssAVwVzKTo/73eZULtCsRW3XombEjvz0glFipX4vO/mT/dh SwwF8tCHBwx6n8Lj5WJv+1ZdX3TgZ9P1eO9A2/3hvK9KHtZ7w64YxZ4ZaOGbgSn8 PY/Q2l/DOOMQ+Leg9r3ZGV/zMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISCxWnM 0J/aTxDz87TDzVc52DXTMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4aixkdNIheN6P5uwN/RJ9hWsdQE2M4k0IXoATCCuvCPzLwFWKDvG4 xFBpLtfRRToLOiD8i5sCD6sph9wJyQ1tmMUWVk1jqxAxlak1Z+6kc+dZX6QNHHPN 1MsQv2cNP9EF8/SkXnkzJXIJ4zNofY0X8NkU+kxN4m2aQu4uP0A92V6V7G3vMp9x cF89/zdCcTSIqdtmDDJG2sqO4XvGQyR/fq18S4k+0NUDbRqKBJ4MNDSBwDl1+Uwt +c8hP0iLKYziXQAGBmyAa7TJhomBhGbFoic8dWpHliF3Z/GfpBeQ32nnyKUdHmla nqHcwMvbz0feUdDrGyLj6ZKhzlVNBaEF -----END CERTIFICATE-----Generated at Sat Apr 26 05:13:00 2025 by rpki-client