$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: sb9g67FdoqbGmTiZhUd6SlzFSXUhJ+GrKK1jOmPU2o4= Subject key identifier: B8:87:BB:2C:9E:A5:C6:F7:0F:E9:2D:30:5D:EF:E3:6C:E5:AF:F0:7C Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 40 Signing time: Tue 17 Jun 2025 06:21:28 +0000 Manifest this update: Tue 17 Jun 2025 06:21:28 +0000 Manifest next update: Tue 24 Jun 2025 06:21:28 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: qVdc6W0fUbsrFQkuVi3n3mD26y8I/NApHtZuxITOcl8=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: zvy+2HhQd/n3VOaiuMrL5/OccoJAnqCm0UAKCkrWeWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Jun 17 06:21:28 2025 GMT Not After : Jun 24 06:21:28 2025 GMT Subject: CN=68510968-8f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:17:c4:ab:34:77:30:95:e2:76:b5:80:f1:5e: d5:2f:3f:71:6d:35:b8:a6:3e:c0:bc:3f:6e:c8:c3: a5:d0:d4:7a:d2:32:a6:3f:7f:6e:a9:97:e7:31:6e: b6:7c:94:d9:db:7a:04:b3:c9:22:99:b5:8e:e4:9b: c4:d9:a0:f5:fa:5f:30:2b:0a:5c:4a:37:aa:41:01: 40:99:28:c1:47:46:38:0f:01:6f:4f:b0:86:8a:47: d9:22:61:22:28:24:84:46:12:40:42:3f:3e:f5:95: b9:bc:59:73:dd:07:54:a9:ec:12:39:37:09:a0:a3: 43:ee:70:d5:0f:16:60:96:9e:83:61:ff:a4:ec:0e: 88:0a:40:52:b4:4b:5f:2c:4b:3a:fd:d7:8b:0b:4e: 76:f1:86:72:d6:02:0d:29:9c:2b:ae:59:b0:79:2a: 09:23:d0:b8:75:34:d7:0b:28:1a:bf:13:a9:ce:34: 11:8e:75:bb:78:f1:64:45:ad:6d:d6:c3:2f:d0:26: 60:a8:76:99:31:7a:ab:d2:87:d9:df:ad:aa:c5:0f: c7:4b:38:e8:a9:bc:87:dc:72:37:eb:2d:92:5b:82: c7:b4:1e:fe:c1:8c:d7:8e:d6:c8:da:db:6e:34:ea: 73:63:3f:ae:f5:0b:8c:64:37:1c:40:3b:66:07:a9: 8e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:87:BB:2C:9E:A5:C6:F7:0F:E9:2D:30:5D:EF:E3:6C:E5:AF:F0:7C X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:58:2c:1c:d7:ae:12:b7:c2:0e:0b:3a:2f:fe:06:8f:2b:72: 53:9c:29:fa:b0:63:34:b7:98:69:45:1b:33:3a:0c:dd:60:dc: 29:16:38:2f:76:f7:a0:02:e6:7e:4c:9f:b4:75:6e:05:7a:6a: 67:23:72:79:23:a5:9c:74:74:75:1e:a6:c7:ef:a0:e2:24:4f: 55:2f:9d:8f:ae:58:de:52:d1:5d:c3:2b:05:d3:46:2e:48:85: fa:ba:f3:48:69:6c:3b:9d:d2:5d:b6:7a:f5:b2:6d:5d:22:e9: 8a:7e:e1:3b:ac:83:f7:d1:83:f3:ff:38:e1:9f:55:72:ea:fc: 58:16:20:ff:2d:ef:1e:ab:85:27:35:43:94:dd:47:d1:31:82: 58:19:6b:56:d8:5d:b1:81:22:a7:e0:02:90:b2:10:b7:27:dc: bb:8a:62:6d:8a:77:3f:74:3f:90:4c:7a:a8:f1:c6:b3:d0:85: 58:19:7e:61:c1:ea:b1:c4:a9:86:ce:a9:c3:ef:99:da:54:82: 62:05:f4:7f:f6:5e:f5:eb:71:1d:87:62:60:80:b8:4e:67:67: 0f:01:47:23:12:38:f8:77:55:1a:22:06:b5:1c:f3:27:66:2c: 5b:10:00:ee:a1:5a:fd:60:4f:f2:eb:e6:3b:40:15:b7:41:ec: fc:2b:b3:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA2MTcwNjIxMjhaFw0yNTA2MjQwNjIxMjhaMBgxFjAUBgNV BAMTDTY4NTEwOTY4LThmMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTF8SrNHcwleJ2tYDxXtUvP3FtNbimPsC8P27Iw6XQ1HrSMqY/f26pl+cxbrZ8 lNnbegSzySKZtY7km8TZoPX6XzArClxKN6pBAUCZKMFHRjgPAW9PsIaKR9kiYSIo JIRGEkBCPz71lbm8WXPdB1Sp7BI5Nwmgo0PucNUPFmCWnoNh/6TsDogKQFK0S18s Szr914sLTnbxhnLWAg0pnCuuWbB5Kgkj0Lh1NNcLKBq/E6nONBGOdbt48WRFrW3W wy/QJmCodpkxeqvSh9nfrarFD8dLOOipvIfccjfrLZJbgse0Hv7BjNeO1sja2240 6nNjP671C4xkNxxAO2YHqY7JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuIe7LJ6l xvcP6S0wXe/jbOWv8HwwHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEtYLBzXrhK3wg4LOi/+Bo8rclOcKfqwYzS3mGlFGzM6DN1g3CkWOC92 96AC5n5Mn7R1bgV6amcjcnkjpZx0dHUepsfvoOIkT1UvnY+uWN5S0V3DKwXTRi5I hfq680hpbDud0l22evWybV0i6Yp+4Tusg/fRg/P/OOGfVXLq/FgWIP8t7x6rhSc1 Q5TdR9ExglgZa1bYXbGBIqfgApCyELcn3LuKYm2Kdz90P5BMeqjxxrPQhVgZfmHB 6rHEqYbOqcPvmdpUgmIF9H/2XvXrcR2HYmCAuE5nZw8BRyMSOPh3VRoiBrUc8ydm LFsQAO6hWv1gT/Lr5jtAFbdB7Pwrs98= -----END CERTIFICATE-----Generated at Tue Jun 17 16:55:08 2025 by rpki-client