$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: +UM6fGS0uKULc86yryG29WYch0gwFVyIYLK6IUA0Spk= Subject key identifier: 97:49:12:2C:3B:73:2D:63:77:76:EE:84:DA:FA:86:39:87:77:BF:17 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 82 Signing time: Thu 23 Oct 2025 08:48:19 +0000 Manifest this update: Thu 23 Oct 2025 08:48:18 +0000 Manifest next update: Thu 30 Oct 2025 08:48:18 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: 0Zh/joo4qN/1GJRS0LQxABIwHm12LrfGXY7rDKgLp8o=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Oct 23 08:48:18 2025 GMT Not After : Oct 30 08:48:18 2025 GMT Subject: CN=68f9ebd2-91b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:32:54:a9:b2:f9:73:cc:41:1d:ef:f0:b1:42: 1c:81:d0:6d:74:b9:6f:5a:3c:a7:f0:46:61:e9:6b: 6a:e8:bd:ec:62:dd:a9:48:ae:63:ab:d2:5e:0c:29: db:16:44:be:ba:4a:6e:33:99:88:f6:c7:76:d8:ed: 10:24:12:86:ec:d2:a0:40:ba:09:51:4d:04:83:f9: 62:09:f1:77:49:88:8d:1e:02:93:b9:5a:5c:f7:d5: 84:af:d4:5f:66:17:08:d8:3b:5b:d2:57:bd:80:f8: a2:87:f1:3c:0f:75:39:79:0d:8a:c5:81:18:86:f7: a1:98:ba:4f:d2:92:2e:1b:69:35:10:d3:52:14:05: 24:b0:53:1f:5c:a3:e0:d7:06:3b:db:56:37:21:bf: bc:a9:3c:0a:9d:5e:cb:a3:bf:08:47:0a:16:f9:bc: 7f:19:e3:8f:28:c4:7d:75:fb:e4:e5:ff:2d:7b:73: 3a:30:cf:e3:a2:f9:f9:43:77:02:de:45:3b:62:a9: 37:e2:40:a4:a0:0d:79:96:43:2e:c8:c2:5c:ad:08: 6f:c0:c9:2e:e6:50:00:38:1f:43:ca:07:81:e9:af: 42:5a:af:2d:28:b1:a0:91:bc:4e:59:4f:4b:81:f5: 3f:98:25:bf:7b:44:93:23:f0:35:6b:14:68:da:53: 92:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:49:12:2C:3B:73:2D:63:77:76:EE:84:DA:FA:86:39:87:77:BF:17 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:63:f9:c9:62:e5:88:ca:66:b3:d6:88:61:af:d9:76:7f:65: b8:09:01:40:48:46:8d:8c:0b:32:e3:aa:33:92:2a:8c:1f:4c: 66:0b:ae:30:a6:4c:7a:f0:be:d5:cc:d1:15:1e:31:f6:c2:1a: 93:24:7f:c7:9c:dc:85:8d:d6:57:2d:98:4d:96:30:d4:9d:ae: 98:39:eb:76:51:2d:40:fb:25:07:10:ee:ed:4a:60:a4:b8:1e: 32:4b:0f:1a:08:6d:53:8a:34:11:25:0b:d3:c7:f1:04:e5:b2: 9e:c1:20:37:0d:67:1d:5b:86:b8:8f:c8:14:35:63:13:ca:cc: b7:b6:d5:1c:b5:4f:d1:30:a6:66:26:fb:40:a4:b7:ac:a3:54: 19:0c:66:25:36:ba:f8:3d:58:37:36:5d:b1:c5:80:fb:e2:c4: 19:71:f0:9e:c3:c8:40:67:14:18:d8:da:ea:4b:b5:8e:d2:48: 7f:d0:bf:5a:ef:70:ef:81:98:85:f0:4b:88:b0:d2:c0:2a:35: fc:19:9e:b4:91:84:cf:ea:1c:47:07:3b:b4:6d:5d:c5:d7:84: 3c:97:c3:a9:c0:71:10:88:80:fa:8e:33:b8:16:77:d2:52:12: 38:da:66:1b:50:bb:02:1a:76:c1:e3:04:93:d6:65:06:7a:f4: 85:df:d5:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjUxMDIzMDg0ODE4WhcNMjUxMDMwMDg0ODE4WjAYMRYwFAYD VQQDEw02OGY5ZWJkMi05MWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TJUqbL5c8xBHe/wsUIcgdBtdLlvWjyn8EZh6Wtq6L3sYt2pSK5jq9JeDCnb FkS+ukpuM5mI9sd22O0QJBKG7NKgQLoJUU0Eg/liCfF3SYiNHgKTuVpc99WEr9Rf ZhcI2Dtb0le9gPiih/E8D3U5eQ2KxYEYhvehmLpP0pIuG2k1ENNSFAUksFMfXKPg 1wY721Y3Ib+8qTwKnV7Lo78IRwoW+bx/GeOPKMR9dfvk5f8te3M6MM/jovn5Q3cC 3kU7Yqk34kCkoA15lkMuyMJcrQhvwMku5lAAOB9DygeB6a9CWq8tKLGgkbxOWU9L gfU/mCW/e0STI/A1axRo2lOShQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdJEiw7 cy1jd3buhNr6hjmHd78XMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEY/nJYuWIymaz1ohhr9l2f2W4CQFASEaNjAsy46ozkiqMH0xmC64w pkx68L7VzNEVHjH2whqTJH/HnNyFjdZXLZhNljDUna6YOet2US1A+yUHEO7tSmCk uB4ySw8aCG1TijQRJQvTx/EE5bKewSA3DWcdW4a4j8gUNWMTysy3ttUctU/RMKZm JvtApLeso1QZDGYlNrr4PVg3Nl2xxYD74sQZcfCew8hAZxQY2NrqS7WO0kh/0L9a 73DvgZiF8EuIsNLAKjX8GZ60kYTP6hxHBzu0bV3F14Q8l8OpwHEQiID6jjO4FnfS UhI42mYbULsCGnbB4wST1mUGevSF39Wb -----END CERTIFICATE-----Generated at Fri Oct 24 05:55:37 2025 by rpki-client