$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft File: KoE65dYVKWBF2z4sQsuPzaxq0gw.mft (raw, json) Hash identifier: JIpvIB5rnevyDCYjU41B2hjenhn4gVxk4kCbTEqvUI4= Subject key identifier: EB:3A:F2:6C:A9:E6:67:9E:98:10:37:06:A0:61:9F:87:4D:31:D2:5B Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft Manifest number: 01B0 Signing time: Sat 09 Aug 2025 03:31:26 +0000 Manifest this update: Sat 09 Aug 2025 03:31:26 +0000 Manifest next update: Sat 16 Aug 2025 03:31:26 +0000 Files and hashes: 1: KoE65dYVKWBF2z4sQsuPzaxq0gw.crl (hash: irz7cu6ZwJs08aYwrezX811DUzRoEdTUvohXYqinVDg=) 2: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (hash: XP8lLbicS7mB1IqZ6ApZEYlo1iErgLT+WwIjnSaqxSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Aug 9 03:31:26 2025 GMT Not After : Aug 16 03:31:26 2025 GMT Subject: CN=6896c10e-aa8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:04:29:45:c9:04:1a:c1:66:eb:52:56:00: 02:2a:23:7c:4f:6c:59:4a:5d:e8:29:9d:13:e3:b4: ec:e4:fe:bc:01:7c:40:33:b0:64:49:24:f6:df:ad: 80:b5:c3:35:5d:6e:ce:34:d2:b2:ae:51:cb:0c:d0: e7:f0:8d:50:8c:8c:f4:5c:dc:a1:1c:19:b5:16:67: 94:31:59:e3:c8:2f:c3:45:6a:e6:43:c3:15:ed:0f: db:55:40:2e:86:f1:78:e8:ee:a4:51:6d:0c:6a:1e: 03:da:f3:bf:79:59:9e:9a:a2:6e:34:c7:46:ee:12: 38:1f:87:88:e7:65:26:62:ac:42:51:63:c4:01:4c: 74:91:ce:c4:65:69:25:d5:84:33:27:e2:7f:2b:dc: 14:31:5a:6e:ec:91:3d:59:df:74:a0:c0:59:38:58: c5:ed:40:38:11:c2:d0:10:75:4e:1f:77:1c:56:ea: 63:4f:ce:76:ac:77:c5:d9:df:fb:7f:dc:a4:71:92: 92:21:d5:bf:4e:4a:76:95:74:bc:ce:60:b0:83:47: a1:33:fc:74:3c:b4:a8:85:30:99:38:58:08:a4:3b: 5f:27:3b:c0:82:7d:73:c6:10:cf:4e:96:50:13:6a: 2a:8b:8a:72:fd:9b:b2:d2:e0:31:cd:58:40:69:cc: 21:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3A:F2:6C:A9:E6:67:9E:98:10:37:06:A0:61:9F:87:4D:31:D2:5B X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:18:f5:a4:91:8d:1c:1b:d4:04:90:d5:63:f7:09:b1:c5:bc: c2:86:ce:28:c6:41:93:e9:2c:d8:11:46:66:ec:33:82:71:ed: b2:64:2e:33:76:ad:46:7f:5f:1c:6a:fa:88:e2:ef:48:48:46: ba:ff:e2:cf:9b:e3:7b:65:01:ca:1b:ca:6c:e1:cc:03:2f:59: b1:36:8a:b4:ec:73:c6:99:d2:00:cb:cd:b0:3a:b2:73:a1:05: 60:d0:82:9a:a2:8e:ba:c6:65:d6:66:57:dc:de:9c:0d:8c:a2: 8e:c5:28:02:42:0f:55:86:ec:3c:a9:8b:9f:b1:fa:0f:49:1e: d2:f8:3a:88:7c:0f:55:f5:18:66:ae:1b:3e:05:b6:12:0e:27: 7e:0e:5c:27:e9:b7:86:35:5f:0f:35:f4:c9:17:88:fc:c9:62: bf:6f:d8:91:95:3d:61:19:d9:95:e7:8d:b1:11:bf:aa:dd:79: 7e:b1:10:c3:71:62:fa:ed:66:ae:b6:1b:df:ff:81:72:54:0a: f3:54:13:a6:40:fc:3d:1c:07:44:8d:14:8a:45:e8:1e:e3:d7: eb:ca:dc:ab:96:5b:30:3e:bd:05:e4:fe:4d:19:f9:43:b4:7f: cf:c1:cc:33:18:a8:0e:d2:05:c5:93:c6:9c:0f:b7:ca:d6:c1: d6:58:e7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjUwODA5MDMzMTI2WhcNMjUwODE2MDMzMTI2WjAYMRYwFAYD VQQDEw02ODk2YzEwZS1hYThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJQEKUXJBBrBZutSVgACKiN8T2xZSl3oKZ0T47Ts5P68AXxAM7BkSST2362A tcM1XW7ONNKyrlHLDNDn8I1QjIz0XNyhHBm1FmeUMVnjyC/DRWrmQ8MV7Q/bVUAu hvF46O6kUW0Mah4D2vO/eVmemqJuNMdG7hI4H4eI52UmYqxCUWPEAUx0kc7EZWkl 1YQzJ+J/K9wUMVpu7JE9Wd90oMBZOFjF7UA4EcLQEHVOH3ccVupjT852rHfF2d/7 f9ykcZKSIdW/Tkp2lXS8zmCwg0ehM/x0PLSohTCZOFgIpDtfJzvAgn1zxhDPTpZQ E2oqi4py/Zuy0uAxzVhAacwhmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOs68myp 5meemBA3BqBhn4dNMdJbMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktX QkYyejRzUXN1UHpheHEwZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkGPWkkY0cG9QEkNVj9wmxxbzChs4oxkGT6SzYEUZm7DOCce2yZC4z dq1Gf18cavqI4u9ISEa6/+LPm+N7ZQHKG8ps4cwDL1mxNoq07HPGmdIAy82wOrJz oQVg0IKaoo66xmXWZlfc3pwNjKKOxSgCQg9Vhuw8qYufsfoPSR7S+DqIfA9V9Rhm rhs+BbYSDid+Dlwn6beGNV8PNfTJF4j8yWK/b9iRlT1hGdmV542xEb+q3Xl+sRDD cWL67Wauthvf/4FyVArzVBOmQPw9HAdEjRSKRege49frytyrllswPr0F5P5NGflD tH/PwcwzGKgO0gXFk8acD7fK1sHWWOdb -----END CERTIFICATE-----Generated at Sun Aug 10 20:00:52 2025 by rpki-client