$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: mSflDJvN14OcHOYLbMT4epcNg3L0E3j76X1mN4Ug280= Subject key identifier: 4E:7B:D0:42:1F:74:9C:76:F5:D1:FC:6D:99:3A:B1:00:9B:DE:25:56 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 060F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0600 Signing time: Mon 08 Sep 2025 23:00:18 +0000 Manifest this update: Mon 08 Sep 2025 23:00:18 +0000 Manifest next update: Mon 15 Sep 2025 23:00:18 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: jqUE6Q6lzaY/WJMXmqHks46rXvRKxzzqEsT53OCUuJw=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: D/6BYkGqlNOLOYOgY8KQs7LafMiP8Rro2RlyCrKrnhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Sep 8 23:00:18 2025 GMT Not After : Sep 15 23:00:18 2025 GMT Subject: CN=68bf6002-43f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:63:42:e5:b6:a7:fb:2b:e7:03:13:fe:40:bd: 51:d3:6f:59:a0:bc:67:4b:4b:3c:be:81:da:67:14: a8:f3:c1:af:13:a6:da:c9:09:a3:9d:93:13:07:79: cf:71:eb:d1:e7:3c:3f:b4:29:7c:df:f3:76:9f:79: fa:66:5f:01:e0:c2:21:a4:0c:95:7d:e9:1a:75:4d: c0:9e:d2:e8:3f:ae:11:2b:98:fb:4f:93:23:4a:6b: 3b:7c:e3:48:a9:5e:e4:8a:4b:1c:42:18:2d:16:fe: 8e:2f:94:8f:25:ac:91:c3:b7:81:4f:a0:c2:a8:12: a2:af:fe:d7:fa:8d:10:2c:4a:7b:4f:8e:99:0e:f8: 83:22:64:07:d2:ca:29:8d:f2:bc:4b:36:9d:ae:cd: db:ad:6a:e3:c1:e6:3b:0c:11:e8:26:95:9c:82:61: 05:ab:10:9c:8f:d2:67:46:fa:a0:60:06:9c:1f:d8: b7:e8:b9:df:46:c8:c4:ca:fa:3f:bc:ed:03:61:9f: 29:17:4c:3b:15:be:6e:b7:cd:46:fb:e8:e2:36:f7: c8:c8:10:fc:69:f4:14:d6:b4:6b:ae:dd:3a:15:64: 98:d1:f6:65:6e:96:7b:25:ec:57:95:88:4a:1f:39: 69:c8:84:bb:5f:d8:d1:2e:b3:fd:13:7a:59:de:be: 0c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7B:D0:42:1F:74:9C:76:F5:D1:FC:6D:99:3A:B1:00:9B:DE:25:56 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:19:a3:07:e2:10:cd:3d:7c:6e:ea:33:c1:ce:ce:d6:7b:cf: b4:dc:48:e2:37:78:d4:f0:85:cc:59:41:7d:37:36:bb:9a:19: 52:66:8e:1e:75:f0:ed:10:50:6b:59:6f:a0:fc:39:20:ea:24: 49:f9:1b:4a:85:b0:bb:60:8d:c9:c4:59:a0:20:73:af:26:e9: 71:db:90:ea:4b:5d:a7:b8:5f:66:b7:3a:5b:7c:83:7a:b3:67: e3:3e:84:38:0f:54:18:21:7b:d2:18:df:71:0c:08:00:54:b4: ba:01:84:b9:aa:cb:9f:89:67:cc:83:c0:6a:46:db:a0:ed:3d: 6e:b7:3c:16:b0:04:bb:31:e7:78:ac:0e:15:be:f6:31:2c:c5: f7:0b:eb:76:35:6a:42:99:e3:f8:26:26:75:5c:d3:ac:da:7b: 08:1a:81:49:90:20:52:ed:d1:e5:43:2f:ca:fa:ba:9a:b9:83: 05:75:f5:bb:a4:cc:12:2d:02:e6:fc:ae:b9:12:9c:92:d4:cf: ed:63:0c:c2:7d:a7:35:2e:f7:27:0e:cb:c0:b7:30:8b:d6:08: 37:90:2b:cc:0c:b2:e2:a2:ff:10:20:1a:fb:4a:64:d2:6e:0d: 7b:92:01:af:26:47:c9:c5:84:b8:91:4e:b6:a5:fe:73:13:41: e5:0d:07:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjUwOTA4MjMwMDE4WhcNMjUwOTE1MjMwMDE4WjAYMRYwFAYD VQQDEw02OGJmNjAwMi00M2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42NC5ban+yvnAxP+QL1R029ZoLxnS0s8voHaZxSo88GvE6bayQmjnZMTB3nP cevR5zw/tCl83/N2n3n6Zl8B4MIhpAyVfekadU3AntLoP64RK5j7T5MjSms7fONI qV7kikscQhgtFv6OL5SPJayRw7eBT6DCqBKir/7X+o0QLEp7T46ZDviDImQH0sop jfK8Szadrs3brWrjweY7DBHoJpWcgmEFqxCcj9JnRvqgYAacH9i36LnfRsjEyvo/ vO0DYZ8pF0w7Fb5ut81G++jiNvfIyBD8afQU1rRrrt06FWSY0fZlbpZ7JexXlYhK HzlpyIS7X9jRLrP9E3pZ3r4MfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE570EIf dJx29dH8bZk6sQCb3iVWMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEGaMH4hDNPXxu6jPBzs7We8+03EjiN3jU8IXMWUF9Nza7mhlSZo4e dfDtEFBrWW+g/Dkg6iRJ+RtKhbC7YI3JxFmgIHOvJulx25DqS12nuF9mtzpbfIN6 s2fjPoQ4D1QYIXvSGN9xDAgAVLS6AYS5qsufiWfMg8BqRtug7T1utzwWsAS7Med4 rA4VvvYxLMX3C+t2NWpCmeP4JiZ1XNOs2nsIGoFJkCBS7dHlQy/K+rqauYMFdfW7 pMwSLQLm/K65EpyS1M/tYwzCfac1LvcnDsvAtzCL1gg3kCvMDLLiov8QIBr7SmTS bg17kgGvJkfJxYS4kU62pf5zE0HlDQdd -----END CERTIFICATE-----Generated at Tue Sep 9 08:15:47 2025 by rpki-client