$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: JQcuJkbuuab+BeNX1/+8mmbp270EpXKg5f4MmaYKY+c= Subject key identifier: 16:A9:BC:AB:69:19:CD:7A:EB:E6:52:06:9B:85:5F:F6:FE:4A:3D:71 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 5C Signing time: Thu 07 Aug 2025 07:45:55 +0000 Manifest this update: Thu 07 Aug 2025 07:45:54 +0000 Manifest next update: Thu 14 Aug 2025 07:45:54 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: s+6WxGDcx5S+xxm2maEYEa1cqV7dUfz4Rhx/hoXC7K0=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Aug 7 07:45:54 2025 GMT Not After : Aug 14 07:45:54 2025 GMT Subject: CN=689459b2-89f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ba:59:82:08:5f:b5:e1:27:b2:ed:c4:63:02: c8:3c:4f:81:a5:19:64:9e:0f:47:05:df:a4:59:8f: 92:47:4a:56:40:e2:d6:0d:32:b5:91:87:44:f8:ef: 5c:b4:65:23:69:12:c2:8c:32:71:45:2b:b9:ed:63: 7f:88:61:53:65:31:f5:a5:5f:01:46:b1:c8:82:88: 2b:bf:81:cb:4f:e5:ea:7b:36:ff:12:22:af:65:37: fa:5b:11:71:49:08:4c:e7:13:6b:8a:cd:10:eb:c1: 60:50:5f:51:eb:c4:be:a7:67:89:73:7e:a5:19:22: b9:19:f2:0e:1d:7d:d2:d7:16:e3:46:58:a5:a7:30: 78:6b:5e:54:51:73:04:ec:fc:b1:38:4d:5e:64:db: d2:a5:d2:79:09:29:4a:54:e1:3a:da:76:1e:ff:c8: f6:aa:c5:8a:49:7e:30:5e:1e:22:0c:73:55:27:0d: 3b:d8:d5:ef:59:72:65:e3:40:a7:29:a0:2b:d2:ce: 93:43:b3:0c:69:aa:4b:4f:f4:51:6c:6c:54:e3:a9: 3d:36:1d:45:79:19:16:c3:e3:a3:26:b9:56:16:c2: 8f:20:8a:58:58:f7:eb:43:bc:01:49:ca:45:4d:3a: 8f:38:db:38:f4:cd:f7:ec:05:a6:c0:1a:02:b2:a8: 24:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A9:BC:AB:69:19:CD:7A:EB:E6:52:06:9B:85:5F:F6:FE:4A:3D:71 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:61:d8:7a:a7:32:db:f2:d6:60:65:35:de:dc:ce:92:db:9a: f4:73:46:f3:79:66:55:a5:e9:29:01:5a:53:04:63:16:25:b8: de:da:1c:e9:03:e3:26:cd:78:b9:9b:10:b6:cb:56:0e:cc:72: 05:8e:06:08:2c:2f:7a:e4:cb:ce:ca:b0:42:2a:ac:4c:e8:f3: 9b:53:68:d1:dd:c8:73:b5:14:df:89:51:17:ad:a1:2e:67:dd: 07:06:7a:b8:37:c5:cb:c1:b2:45:e2:0b:fd:f2:c1:bb:26:53: d8:e5:60:bd:25:cb:1d:c8:7c:b9:df:38:f7:a1:47:6a:ed:bb: 3c:20:81:ef:a7:9c:d5:38:b6:e1:f6:8b:d1:2e:7d:e1:80:b6: 94:83:3a:64:fb:5c:96:8d:f4:c1:e2:80:19:a9:d7:dc:39:a1: 44:55:6d:bd:50:74:24:7b:b9:d5:59:bd:ac:a0:71:54:2c:c6: ab:44:99:77:af:64:f2:a2:1a:e7:92:1f:2d:e2:6f:90:24:41: 12:d8:86:e1:cc:f7:fc:cb:fc:5d:a6:c5:2c:03:eb:58:51:26: 2d:a1:6a:2d:1b:4a:5e:8d:c3:c3:02:d6:87:e2:c3:ef:60:73: 94:31:82:60:f8:d7:b3:bf:f9:05:4f:4f:84:81:41:25:64:3b: 11:b3:51:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA4MDcwNzQ1NTRaFw0yNTA4MTQwNzQ1NTRaMBgxFjAUBgNV BAMTDTY4OTQ1OWIyLTg5ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZulmCCF+14Sey7cRjAsg8T4GlGWSeD0cF36RZj5JHSlZA4tYNMrWRh0T471y0 ZSNpEsKMMnFFK7ntY3+IYVNlMfWlXwFGsciCiCu/gctP5ep7Nv8SIq9lN/pbEXFJ CEznE2uKzRDrwWBQX1HrxL6nZ4lzfqUZIrkZ8g4dfdLXFuNGWKWnMHhrXlRRcwTs /LE4TV5k29Kl0nkJKUpU4Tradh7/yPaqxYpJfjBeHiIMc1UnDTvY1e9ZcmXjQKcp oCvSzpNDswxpqktP9FFsbFTjqT02HUV5GRbD46MmuVYWwo8gilhY9+tDvAFJykVN Oo842zj0zffsBabAGgKyqCSnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFqm8q2kZ zXrr5lIGm4Vf9v5KPXEwHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5h2HqnMtvy1mBlNd7czpLbmvRzRvN5ZlWl6SkBWlMEYxYluN7aHOkD 4ybNeLmbELbLVg7McgWOBggsL3rky87KsEIqrEzo85tTaNHdyHO1FN+JURetoS5n 3QcGerg3xcvBskXiC/3ywbsmU9jlYL0lyx3IfLnfOPehR2rtuzwgge+nnNU4tuH2 i9EufeGAtpSDOmT7XJaN9MHigBmp19w5oURVbb1QdCR7udVZvaygcVQsxqtEmXev ZPKiGueSHy3ib5AkQRLYhuHM9/zL/F2mxSwD61hRJi2hai0bSl6Nw8MC1ofiw+9g c5QxgmD417O/+QVPT4SBQSVkOxGzUZw= -----END CERTIFICATE-----Generated at Fri Aug 8 20:40:55 2025 by rpki-client