$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: 5BkKeoosHz5osqU17Sc5jZvjjwREZeBTnSxhP/emtsc= Subject key identifier: 69:A8:9F:16:D9:E0:41:3D:E4:00:0B:B2:49:42:E1:69:14:84:70:71 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 88 Signing time: Mon 03 Nov 2025 06:37:34 +0000 Manifest this update: Mon 03 Nov 2025 06:37:34 +0000 Manifest next update: Mon 10 Nov 2025 06:37:34 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: jK2C2LkjMtSUHoJI+6qHiZc4kFCMkhqBNJ2P5/cyloM=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Nov 3 06:37:34 2025 GMT Not After : Nov 10 06:37:34 2025 GMT Subject: CN=69084dae-684e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bc:c0:95:ec:dd:be:4d:b6:c0:e2:c6:b9:a7: f6:e0:38:7a:23:b6:74:3c:cc:bc:80:7c:2d:20:f5: a1:a7:f3:01:96:c9:85:3b:de:63:ba:c5:ff:a0:b9: 09:86:bb:38:c6:b6:55:0c:21:00:d9:e0:3f:15:11: 8c:40:01:dc:7c:59:2d:27:06:b7:9a:fd:1a:77:fc: 0b:12:52:9b:1e:e4:75:ef:da:bd:bc:6b:b7:aa:b5: 29:a1:e7:1f:23:5f:fb:cf:e2:1d:df:ac:86:f1:ba: 1e:ea:b1:1e:0c:79:15:2c:e9:62:5a:cd:2f:e5:50: 5e:70:d7:a3:93:cb:48:f8:8c:e7:e8:08:d7:36:b4: 62:25:52:02:b9:43:1f:48:c2:d8:07:c0:32:ea:76: 12:40:69:3e:83:e9:1a:1c:29:05:fd:9b:f4:ef:ff: c8:9f:be:68:ca:08:58:63:ef:ab:c6:a9:8f:44:6c: f2:ff:5e:41:44:ff:23:87:03:eb:51:e2:f0:33:e3: 50:44:61:28:96:1f:f6:26:f5:a6:5e:82:0c:15:fb: e2:e6:c7:65:b9:e0:60:42:00:02:f9:b4:46:13:4d: f7:75:aa:f9:d4:80:60:bb:86:1c:63:34:9f:03:ab: a3:34:71:ae:4e:1b:35:bc:fe:f1:d5:89:c3:8e:2b: 25:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A8:9F:16:D9:E0:41:3D:E4:00:0B:B2:49:42:E1:69:14:84:70:71 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:52:4c:63:5d:ad:47:56:c4:29:b9:8f:ab:97:c6:ab:46:7a: 15:aa:5c:f6:d7:e5:68:0e:7e:c2:6a:8f:9d:e5:e1:6c:ec:fa: b5:e9:a4:f3:39:53:d9:83:f3:8c:9e:06:be:d8:0e:0c:6e:b1: a9:9c:da:43:79:dc:f8:51:28:a7:01:ee:5e:43:81:5f:89:a0: c8:4e:66:d8:08:b5:5a:fb:ae:a9:0d:d5:0c:5f:da:4e:d2:fe: 75:5a:1b:4a:7a:b7:35:14:59:07:f2:12:92:1c:f7:16:40:df: c4:f6:db:52:b4:67:df:12:ef:c5:32:da:64:db:21:54:6e:9a: 64:98:42:1b:b9:26:a5:63:bd:e0:e7:84:89:92:e7:70:45:76: d8:a7:be:59:18:c1:41:82:18:23:94:67:b1:5f:e1:62:76:6c: de:f9:6e:5a:28:7b:1b:f6:04:9f:81:2d:4c:dc:ba:99:01:38: f8:d1:91:8c:d7:19:de:92:cb:b0:6e:0f:1b:d0:23:ec:9c:6c: 07:27:e7:5f:25:65:48:3d:ef:99:f1:c2:ac:a9:8b:f8:ae:c6: 01:96:66:15:ff:98:71:4a:d0:da:f3:c7:84:d5:08:0c:8c:76: fd:7e:fe:c0:11:2f:07:27:c9:99:3d:87:e0:e4:ab:f0:c1:72: de:81:bd:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjUxMTAzMDYzNzM0WhcNMjUxMTEwMDYzNzM0WjAYMRYwFAYD VQQDEw02OTA4NGRhZS02ODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LzAlezdvk22wOLGuaf24Dh6I7Z0PMy8gHwtIPWhp/MBlsmFO95jusX/oLkJ hrs4xrZVDCEA2eA/FRGMQAHcfFktJwa3mv0ad/wLElKbHuR179q9vGu3qrUpoecf I1/7z+Id36yG8boe6rEeDHkVLOliWs0v5VBecNejk8tI+Izn6AjXNrRiJVICuUMf SMLYB8Ay6nYSQGk+g+kaHCkF/Zv07//In75oyghYY++rxqmPRGzy/15BRP8jhwPr UeLwM+NQRGEolh/2JvWmXoIMFfvi5sdlueBgQgAC+bRGE033dar51IBgu4YcYzSf A6ujNHGuThs1vP7x1YnDjisllwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmonxbZ 4EE95AALsklC4WkUhHBxMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYUkxjXa1HVsQpuY+rl8arRnoVqlz21+VoDn7Cao+d5eFs7Pq16aTz OVPZg/OMnga+2A4MbrGpnNpDedz4USinAe5eQ4FfiaDITmbYCLVa+66pDdUMX9pO 0v51WhtKerc1FFkH8hKSHPcWQN/E9ttStGffEu/FMtpk2yFUbppkmEIbuSalY73g 54SJkudwRXbYp75ZGMFBghgjlGexX+Fidmze+W5aKHsb9gSfgS1M3LqZATj40ZGM 1xneksuwbg8b0CPsnGwHJ+dfJWVIPe+Z8cKsqYv4rsYBlmYV/5hxStDa88eE1QgM jHb9fv7AES8HJ8mZPYfg5KvwwXLegb1f -----END CERTIFICATE-----Generated at Tue Nov 4 12:42:11 2025 by rpki-client