$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: 8kRL4L2NTNjff9Lciid1UFX1z4nCIVqH+s+BeB6mV7Q= Subject key identifier: 58:42:15:64:98:AC:52:59:60:A8:71:5E:C7:86:A6:FD:57:4B:52:E6 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 6B Signing time: Fri 05 Sep 2025 07:27:32 +0000 Manifest this update: Fri 05 Sep 2025 07:27:32 +0000 Manifest next update: Fri 12 Sep 2025 07:27:31 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: pbMFhSzLUTGZbnAsrNEamF3SH8Oq4U80Jj+vGwsU+fA=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Sep 5 07:27:32 2025 GMT Not After : Sep 12 07:27:31 2025 GMT Subject: CN=68ba90e4-06a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d5:1c:e9:a3:c8:9e:78:14:58:36:f6:45:e1: a3:6f:f3:45:38:8e:2f:7c:9a:9f:57:f2:fe:be:3c: c5:f6:28:58:54:e5:95:92:ed:4e:58:27:f4:35:0f: 74:b8:53:f4:87:b2:12:31:64:72:a0:87:d2:33:f2: bf:aa:ea:cc:01:3c:46:b7:46:59:10:60:df:37:6f: b7:79:42:d8:f9:fe:c5:6a:b5:a1:68:25:ec:dd:c5: a9:7a:e4:cf:91:92:d0:a0:a7:f5:54:0c:b5:fe:b7: e9:01:70:cc:39:08:a3:f8:ae:48:8f:35:c0:76:98: 8d:83:70:8c:17:a7:f3:c3:c0:77:96:ee:e4:ef:ee: 9b:de:0f:52:df:05:15:8e:b9:c2:61:fa:bb:00:78: b1:4e:90:27:7c:a5:4d:6c:bc:59:a3:c3:84:af:7b: 19:12:68:dc:76:72:cd:c1:61:8f:fa:06:5f:10:7a: 63:d1:45:3f:f1:a0:5f:e7:c2:d3:2e:3d:6e:08:a3: 5a:1b:c8:bb:cd:db:73:d9:28:7e:24:6c:31:86:5a: b4:d8:58:cb:3a:4f:25:a9:3c:97:9f:cb:cf:66:a0: c7:5c:ec:64:df:aa:79:47:24:14:ff:ec:f7:1e:1e: fc:71:f8:44:51:3a:4c:4b:76:d9:18:9a:73:3a:98: 27:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:42:15:64:98:AC:52:59:60:A8:71:5E:C7:86:A6:FD:57:4B:52:E6 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4b:d5:9c:9f:64:42:25:e6:69:d2:8a:cc:0e:8c:77:7e:1e: ab:c6:f9:15:0b:15:2e:a6:4a:28:b2:5b:a8:7b:7e:08:d1:b7: ea:90:2d:10:7c:17:65:39:ec:ba:b0:87:e1:58:07:74:d1:b6: 7b:2e:e9:26:ca:22:36:8a:67:20:32:27:58:7f:83:20:64:65: f0:0c:f3:31:fd:93:a3:6e:85:96:ed:f2:03:01:6e:65:c6:99: ca:46:9f:64:10:5e:32:91:30:34:ef:6a:15:db:69:44:0f:db: d4:5a:be:ee:18:d5:d4:5a:f5:f8:ef:2e:e9:43:25:2d:b8:c6: 2f:a9:88:02:a5:ad:b8:ed:de:2f:78:a5:f5:e3:4a:68:4d:1d: d9:87:43:9f:20:42:cc:aa:62:41:91:90:39:2e:3b:20:92:17: 13:07:5e:3a:0f:74:21:39:ef:3c:0f:0e:c6:6f:6c:4e:05:dc: cb:df:6e:b9:a2:e7:6b:7c:ba:88:9a:c1:78:bc:29:d4:cc:df: 49:25:b2:54:ee:df:c2:91:a7:2c:5f:d6:ce:38:6c:04:82:bf: a0:cc:65:5a:7a:ca:0e:df:7d:3e:4b:78:44:0c:47:f9:23:ac: 0e:e8:b0:66:f9:f2:d8:57:e4:fd:ec:a8:04:ee:9a:0c:e4:00: bc:d8:15:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA5MDUwNzI3MzJaFw0yNTA5MTIwNzI3MzFaMBgxFjAUBgNV BAMTDTY4YmE5MGU0LTA2YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu1Rzpo8ieeBRYNvZF4aNv80U4ji98mp9X8v6+PMX2KFhU5ZWS7U5YJ/Q1D3S4 U/SHshIxZHKgh9Iz8r+q6swBPEa3RlkQYN83b7d5Qtj5/sVqtaFoJezdxal65M+R ktCgp/VUDLX+t+kBcMw5CKP4rkiPNcB2mI2DcIwXp/PDwHeW7uTv7pveD1LfBRWO ucJh+rsAeLFOkCd8pU1svFmjw4SvexkSaNx2cs3BYY/6Bl8QemPRRT/xoF/nwtMu PW4Io1obyLvN23PZKH4kbDGGWrTYWMs6TyWpPJefy89moMdc7GTfqnlHJBT/7Pce Hvxx+ERROkxLdtkYmnM6mCfZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWEIVZJis UllgqHFex4am/VdLUuYwHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF1L1ZyfZEIl5mnSiswOjHd+HqvG+RULFS6mSiiyW6h7fgjRt+qQLRB8 F2U57Lqwh+FYB3TRtnsu6SbKIjaKZyAyJ1h/gyBkZfAM8zH9k6NuhZbt8gMBbmXG mcpGn2QQXjKRMDTvahXbaUQP29Ravu4Y1dRa9fjvLulDJS24xi+piAKlrbjt3i94 pfXjSmhNHdmHQ58gQsyqYkGRkDkuOyCSFxMHXjoPdCE57zwPDsZvbE4F3Mvfbrmi 52t8uoiawXi8KdTM30klslTu38KRpyxf1s44bASCv6DMZVp6yg7ffT5LeEQMR/kj rA7osGb58thX5P3sqATumgzkALzYFcY= -----END CERTIFICATE-----Generated at Sat Sep 6 04:38:13 2025 by rpki-client