$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: 13MXK0fFoZVuqaHJ9A6z5V6itmi+Tb/RWgWe2Zz53Ec= Subject key identifier: 26:A5:CE:E6:EE:08:7A:20:F0:80:EF:DA:B1:9B:FB:B9:6A:FA:AA:E3 Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 3C Signing time: Sat 19 Jul 2025 07:47:56 +0000 Manifest this update: Sat 19 Jul 2025 07:47:55 +0000 Manifest next update: Sat 26 Jul 2025 07:47:55 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 4y18n/vrdcGmHPqEp/nOY2TlbYRezNVhLKfYTRExCRY=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Jul 19 07:47:55 2025 GMT Not After : Jul 26 07:47:55 2025 GMT Subject: CN=687b4dac-b7a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:a1:7b:ed:11:e9:f7:b0:7f:86:01:a1:32: b0:e6:1c:9e:5f:28:c0:7e:18:bf:f4:0d:af:05:36: b3:ff:b2:b5:a0:1e:34:2f:00:3d:fc:93:c5:3a:b3: 24:2b:4b:b7:1e:eb:02:fc:ee:8f:21:3a:af:47:8f: 1e:a1:a1:d2:9d:e2:53:cf:30:ae:d3:b0:98:6f:38: cc:08:44:03:32:01:84:76:3c:a7:c5:ab:cd:bf:a5: b0:30:10:1d:4f:fe:92:6b:f3:b7:4b:c0:2b:3c:ed: 27:43:dd:c2:e2:1a:29:ba:72:ee:34:b3:a6:6a:03: 4b:1a:ec:9c:6c:83:7f:13:fc:0d:8b:ca:82:1d:aa: cd:eb:1f:7d:e9:0d:da:65:f9:ab:44:c1:3f:61:b2: 4d:06:f4:81:2a:4e:0e:ea:ee:7a:ba:a9:4c:70:98: db:d8:bd:03:6a:af:3f:58:88:cd:f5:b5:c7:3f:7e: 1d:09:63:d6:2c:20:4b:bf:16:de:eb:82:ad:7d:61: 86:32:45:3d:34:54:f3:9b:1b:76:22:4f:33:f7:70: e7:d3:dd:41:db:8b:6c:a7:45:bb:f3:bf:d4:21:f1: d8:30:36:3d:fb:fa:b9:c9:74:43:99:52:86:73:6b: 64:cb:59:a9:24:f7:80:49:1e:dd:4a:f0:46:9d:89: 3c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A5:CE:E6:EE:08:7A:20:F0:80:EF:DA:B1:9B:FB:B9:6A:FA:AA:E3 X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a3:38:b2:28:9a:0b:8f:c4:a8:98:dc:e4:6e:9d:50:d0:e7: 4e:80:e1:5a:a0:1a:4b:82:1d:2c:e1:74:0f:81:1e:1e:ca:b2: 5e:c9:80:47:82:ac:b0:51:e8:7a:b3:80:24:00:bc:0b:ea:74: a8:68:e7:ae:e0:cd:58:1a:65:7a:4d:b0:20:81:d5:53:c8:14: 5e:24:6c:14:40:c9:4d:ce:07:13:8d:ba:46:73:ed:6a:7e:4f: 9a:8d:ac:ea:85:0d:cf:73:b4:1f:4c:e5:be:34:9f:4d:c0:09: e9:5c:c4:cd:c8:6b:83:50:59:80:97:00:8f:f6:46:73:d4:e3: b9:f5:25:79:fd:49:9f:ce:48:d7:ab:3d:77:a8:90:c5:f9:a9: 28:6f:63:be:81:77:2b:af:77:af:0b:6d:84:f8:b8:f9:d6:5b: 08:81:d9:ea:74:d3:bd:70:5d:c3:35:a4:82:3c:2a:cc:17:df: ae:a3:1a:84:e1:76:4a:20:fa:98:03:2e:28:09:a5:d1:d5:45: a4:40:bc:24:df:07:a0:69:56:30:66:ac:33:75:1b:38:8f:a6: a6:db:52:d9:a5:81:6e:a1:33:bb:bd:aa:a5:6c:ba:4b:7f:bf: cf:eb:6c:95:e9:b3:04:d6:fc:2d:e4:ba:5d:23:7f:12:3a:2b: c8:45:20:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTA3MTkwNzQ3NTVaFw0yNTA3MjYwNzQ3NTVaMBgxFjAUBgNV BAMTDTY4N2I0ZGFjLWI3YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDayqF77RHp97B/hgGhMrDmHJ5fKMB+GL/0Da8FNrP/srWgHjQvAD38k8U6syQr S7ce6wL87o8hOq9Hjx6hodKd4lPPMK7TsJhvOMwIRAMyAYR2PKfFq82/pbAwEB1P /pJr87dLwCs87SdD3cLiGim6cu40s6ZqA0sa7Jxsg38T/A2LyoIdqs3rH33pDdpl +atEwT9hsk0G9IEqTg7q7nq6qUxwmNvYvQNqrz9YiM31tcc/fh0JY9YsIEu/Ft7r gq19YYYyRT00VPObG3YiTzP3cOfT3UHbi2ynRbvzv9Qh8dgwNj37+rnJdEOZUoZz a2TLWakk94BJHt1K8EadiTwTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJqXO5u4I eiDwgO/asZv7uWr6quMwHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACqjOLIomguPxKiY3ORunVDQ506A4VqgGkuCHSzhdA+BHh7Ksl7JgEeC rLBR6HqzgCQAvAvqdKho567gzVgaZXpNsCCB1VPIFF4kbBRAyU3OBxONukZz7Wp+ T5qNrOqFDc9ztB9M5b40n03ACelcxM3Ia4NQWYCXAI/2RnPU47n1JXn9SZ/OSNer PXeokMX5qShvY76Bdyuvd68LbYT4uPnWWwiB2ep0071wXcM1pII8KswX366jGoTh dkog+pgDLigJpdHVRaRAvCTfB6BpVjBmrDN1GziPpqbbUtmlgW6hM7u9qqVsukt/ v8/rbJXpswTW/C3kul0jfxI6K8hFIIA= -----END CERTIFICATE-----Generated at Sun Jul 20 11:33:00 2025 by rpki-client