$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: KVnxeriDqzVcGPMYWfkDwldIRXtUoV7tdDFzMYM7jZw= Subject key identifier: 5B:FF:7D:F4:EC:9F:05:1D:5A:27:31:51:34:3D:03:62:6A:02:AD:55 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 05F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 05E6 Signing time: Sun 20 Jul 2025 23:12:17 +0000 Manifest this update: Sun 20 Jul 2025 23:12:16 +0000 Manifest next update: Sun 27 Jul 2025 23:12:16 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: SWti3QZs0tpMOVbRw9EXGIjHBAjl7yPvfn2t833GGz4=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: D/6BYkGqlNOLOYOgY8KQs7LafMiP8Rro2RlyCrKrnhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Jul 20 23:12:16 2025 GMT Not After : Jul 27 23:12:16 2025 GMT Subject: CN=687d77d1-d7e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:3c:ae:71:d1:03:b1:d2:bf:cc:d0:05:b1: f2:2f:0a:93:a3:25:8d:67:e0:10:25:c8:33:d7:93: 16:05:b9:3b:0b:fd:4a:28:a1:33:24:1b:42:11:a9: 56:f8:9e:57:ee:d1:e6:7f:6d:47:ec:41:2c:b8:7f: 3a:b2:a2:1b:20:b7:34:a8:e9:fa:98:f2:27:c6:88: 95:c0:88:74:43:18:ba:a0:dd:4b:85:e1:34:39:e6: 38:de:bd:f1:3d:5c:ef:de:8f:71:9e:f4:7b:92:cb: b5:4f:14:ff:b8:2f:f7:00:02:e1:93:90:f5:db:c6: 9b:34:b8:f2:9e:df:b9:dd:52:f3:06:47:5b:60:1e: f9:21:d9:fa:4b:ea:73:82:cc:70:cc:b9:2e:52:29: ff:c6:68:10:ec:49:57:a3:b1:b7:72:f9:db:77:e7: c8:48:b4:5b:58:81:3f:03:5c:fe:e1:87:f0:24:c0: 47:1e:34:0d:58:66:e5:fe:b8:d6:b3:e5:ab:7c:45: 9d:fb:43:0c:c6:2d:ee:3c:75:80:03:eb:e1:ed:ec: 49:69:04:57:e7:58:f6:35:02:6d:bd:3e:77:4e:50: 29:1c:48:f2:5e:bc:8b:dc:e0:f7:3e:ef:64:c2:2b: 9e:31:87:c0:cc:12:67:0c:49:fe:1d:20:37:ee:18: 75:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FF:7D:F4:EC:9F:05:1D:5A:27:31:51:34:3D:03:62:6A:02:AD:55 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:27:b9:24:a9:09:d2:08:34:7a:26:fe:3e:ef:c1:85:80:20: 22:5e:f1:31:46:f3:b5:3f:3e:d0:12:81:58:d9:be:7c:69:28: 71:87:c3:fe:6c:cb:53:00:fd:47:e1:b4:3a:4b:c4:e3:a6:94: 71:1d:1b:07:fd:e2:c1:f0:32:14:5e:22:5e:d6:26:66:31:6e: 45:24:d2:a3:81:bd:1b:2c:72:f1:6c:66:f0:09:1d:10:ae:90: 74:88:95:e6:65:20:8f:73:af:74:af:55:d4:52:e8:2e:89:82: b8:d8:5a:9d:84:b9:29:c4:1b:4a:a5:3b:da:38:5f:ed:9b:ac: 65:ab:73:a8:58:52:78:9d:4c:1b:66:5e:7c:50:7f:99:2b:21: 3b:38:88:f0:ca:59:e1:11:49:8c:59:95:bc:3d:a9:7a:94:88: ea:12:1f:79:2e:9a:bc:dc:63:fb:e4:f9:9a:61:d6:43:12:39: 19:d6:b8:d0:8f:74:4c:eb:d7:78:a4:75:7c:e6:90:a7:7a:f2: 57:a8:db:cb:40:d7:57:e4:09:cb:ff:83:16:bd:3b:25:bc:81: 6f:20:6f:ab:12:29:9b:86:96:1b:7d:88:b2:d2:f4:8d:ba:5c: bd:7d:94:f9:b1:6c:3f:6c:b2:65:98:f8:dd:b0:f7:4c:29:e3: f9:a8:fb:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjUwNzIwMjMxMjE2WhcNMjUwNzI3MjMxMjE2WjAYMRYwFAYD VQQDEw02ODdkNzdkMS1kN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8A8rnHRA7HSv8zQBbHyLwqToyWNZ+AQJcgz15MWBbk7C/1KKKEzJBtCEalW +J5X7tHmf21H7EEsuH86sqIbILc0qOn6mPInxoiVwIh0Qxi6oN1LheE0OeY43r3x PVzv3o9xnvR7ksu1TxT/uC/3AALhk5D128abNLjynt+53VLzBkdbYB75Idn6S+pz gsxwzLkuUin/xmgQ7ElXo7G3cvnbd+fISLRbWIE/A1z+4YfwJMBHHjQNWGbl/rjW s+WrfEWd+0MMxi3uPHWAA+vh7exJaQRX51j2NQJtvT53TlApHEjyXryL3OD3Pu9k wiueMYfAzBJnDEn+HSA37hh1nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFv/ffTs nwUdWicxUTQ9A2JqAq1VMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDJ7kkqQnSCDR6Jv4+78GFgCAiXvExRvO1Pz7QEoFY2b58aShxh8P+ bMtTAP1H4bQ6S8TjppRxHRsH/eLB8DIUXiJe1iZmMW5FJNKjgb0bLHLxbGbwCR0Q rpB0iJXmZSCPc690r1XUUuguiYK42FqdhLkpxBtKpTvaOF/tm6xlq3OoWFJ4nUwb Zl58UH+ZKyE7OIjwylnhEUmMWZW8Pal6lIjqEh95Lpq83GP75PmaYdZDEjkZ1rjQ j3RM69d4pHV85pCnevJXqNvLQNdX5AnL/4MWvTslvIFvIG+rEimbhpYbfYiy0vSN uly9fZT5sWw/bLJlmPjdsPdMKeP5qPv+ -----END CERTIFICATE-----Generated at Tue Jul 22 12:16:05 2025 by rpki-client