$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: BlUBNbvDbSynFplz+7oFjCGYB5BLGXaGbY81aCPKeus= Subject key identifier: 63:9C:F1:DE:1F:89:F3:B2:77:C2:40:DE:FD:86:FB:BE:03:97:FC:E1 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 05D1 Signing time: Thu 12 Jun 2025 22:42:20 +0000 Manifest this update: Thu 12 Jun 2025 22:42:19 +0000 Manifest next update: Thu 19 Jun 2025 22:42:19 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: SSv91HV6M6opBkpTbeFsx0zxZoIcT2QnnWhnAf96kGA=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: JIQ3Z5Vql3trgih29wB+iKDBgbYVi7iH8FQ6aCEf6sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Jun 12 22:42:19 2025 GMT Not After : Jun 19 22:42:19 2025 GMT Subject: CN=684b57cc-1376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:28:04:5e:e5:4e:3b:60:41:4d:c8:bf:c5:61: 17:cc:3e:44:72:3e:e6:5f:44:89:69:a0:73:86:e3: 1c:e0:14:ab:46:01:02:d1:59:35:48:9f:a0:57:d7: 75:c6:01:ba:74:70:e0:2b:83:df:58:65:1f:e4:84: ba:5e:e1:76:c3:c7:31:c2:1a:09:9f:06:a8:3f:1c: 57:2b:02:cf:a2:4d:cd:56:7e:d2:9a:0b:d5:67:0d: b8:98:49:1d:28:15:7f:0a:86:9e:81:f3:b4:50:e1: 39:be:9f:ef:df:44:34:1e:4c:22:f7:c5:0a:bc:51: a7:0f:fc:13:83:6e:4c:ff:1d:18:b4:6d:90:88:4f: cf:4b:fa:87:89:23:98:66:e3:7a:13:8f:43:80:50: b1:d1:a7:cd:4f:fa:ba:85:31:06:64:29:95:80:30: 4f:47:be:36:8d:9c:7a:6e:b8:57:9a:7e:4e:6a:2d: c9:f1:a6:37:ab:b4:38:2d:81:4c:cb:f3:49:e2:79: db:5a:8f:73:94:1d:18:63:d3:0b:08:f1:72:18:ce: 5d:df:a6:24:54:15:0b:1b:52:77:9c:27:13:3c:43: 55:db:d9:e1:5d:c2:27:81:5e:71:ff:b0:d8:7d:9b: a7:29:a2:b4:db:7c:60:47:fe:06:2a:8e:52:ab:b8: c7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9C:F1:DE:1F:89:F3:B2:77:C2:40:DE:FD:86:FB:BE:03:97:FC:E1 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:cf:dd:cd:48:06:22:de:4e:ef:39:da:2e:40:a4:bc:62:a9: a7:7e:63:d4:ee:b3:d7:78:42:c2:9a:d9:7d:3b:91:a0:3b:d4: 69:50:13:c1:4d:2e:24:31:60:a7:c8:8c:57:bb:cc:15:90:11: 27:30:2b:f5:59:5d:34:4f:8a:c0:75:5f:69:a6:d8:bc:b7:91: 22:e8:34:e4:bb:97:60:bb:8c:dd:7b:38:cd:21:66:46:52:b1: 5c:27:0f:99:78:b6:a9:48:a2:79:c2:51:56:a3:07:84:4a:cc: 4d:e3:82:19:8c:42:c9:36:d8:47:ed:11:6f:14:0d:34:fb:25: b5:69:12:b0:48:a1:76:3c:1a:43:8c:82:ae:a8:9a:a5:6d:73: 8f:30:bd:e9:e7:e0:eb:86:4e:7a:f5:68:b8:5c:8a:3b:5e:ea: 6c:ad:6f:8c:65:04:04:11:13:5e:aa:2b:13:39:54:0d:f5:81: 66:33:99:32:4e:ff:85:b3:0c:5e:36:60:27:d6:6c:3a:da:11: 9f:8d:e1:c4:2e:79:67:f3:fa:8a:16:d9:fd:ad:04:da:bb:0c: fd:81:9d:20:9e:ae:1e:19:17:93:6c:63:47:99:04:8f:19:d6: 35:70:63:ef:d7:40:b9:dd:ef:35:01:06:dd:09:d6:3f:f1:c3: bc:4b:88:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjUwNjEyMjI0MjE5WhcNMjUwNjE5MjI0MjE5WjAYMRYwFAYD VQQDEw02ODRiNTdjYy0xMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuygEXuVOO2BBTci/xWEXzD5Ecj7mX0SJaaBzhuMc4BSrRgEC0Vk1SJ+gV9d1 xgG6dHDgK4PfWGUf5IS6XuF2w8cxwhoJnwaoPxxXKwLPok3NVn7SmgvVZw24mEkd KBV/CoaegfO0UOE5vp/v30Q0Hkwi98UKvFGnD/wTg25M/x0YtG2QiE/PS/qHiSOY ZuN6E49DgFCx0afNT/q6hTEGZCmVgDBPR742jZx6brhXmn5Oai3J8aY3q7Q4LYFM y/NJ4nnbWo9zlB0YY9MLCPFyGM5d36YkVBULG1J3nCcTPENV29nhXcIngV5x/7DY fZunKaK023xgR/4GKo5Sq7jHTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOc8d4f ifOyd8JA3v2G+74Dl/zhMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAz93NSAYi3k7vOdouQKS8YqmnfmPU7rPXeELCmtl9O5GgO9RpUBPB TS4kMWCnyIxXu8wVkBEnMCv1WV00T4rAdV9ppti8t5Ei6DTku5dgu4zdezjNIWZG UrFcJw+ZeLapSKJ5wlFWoweESsxN44IZjELJNthH7RFvFA00+yW1aRKwSKF2PBpD jIKuqJqlbXOPML3p5+Drhk569Wi4XIo7XupsrW+MZQQEERNeqisTOVQN9YFmM5ky Tv+FswxeNmAn1mw62hGfjeHELnln8/qKFtn9rQTauwz9gZ0gnq4eGReTbGNHmQSP GdY1cGPv10C53e81AQbdCdY/8cO8S4ih -----END CERTIFICATE-----Generated at Sat Jun 14 17:46:44 2025 by rpki-client