$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: yoq8aBj8tsuzWEozBuRHkO4kU2S0s8Ev9+E5Dm6kKP4= Subject key identifier: 0B:21:9D:97:52:F3:C7:50:B8:E5:BA:85:CD:15:EB:BB:23:98:3C:1B Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 25 Signing time: Tue 03 Jun 2025 07:41:41 +0000 Manifest this update: Tue 03 Jun 2025 07:41:40 +0000 Manifest next update: Tue 10 Jun 2025 07:41:40 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 1s6VyqkaPzQulOdYBhB1v0pngLnOl+uum7VzocEgQxg=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Jun 3 07:41:40 2025 GMT Not After : Jun 10 07:41:40 2025 GMT Subject: CN=683ea734-e02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:71:0c:ed:05:bc:2b:ec:45:03:71:aa:fb:4c: 8a:25:19:71:ab:db:6f:d0:20:b2:be:be:d3:4e:16: 5f:cf:17:5d:d8:e7:81:6d:f3:be:3d:56:17:9f:e5: 83:e8:25:32:2f:ce:8a:44:51:18:a0:f9:43:08:0e: a0:0d:15:99:e0:9f:c0:e2:f5:dc:cf:70:c9:e9:dd: 71:0d:48:4d:87:b6:03:d7:b8:fe:da:c1:18:2e:cd: fc:bb:3d:96:87:79:5d:90:7f:84:f8:76:78:6f:30: d9:a0:e1:95:1c:39:00:aa:31:60:39:a7:9e:1e:22: 90:bd:3e:67:d8:8c:e2:01:83:14:15:86:a7:67:c9: ca:29:a1:46:d1:8c:03:95:49:ac:ef:3d:64:76:1c: a5:ef:68:8f:1c:62:e2:8a:0b:c7:a7:f6:ba:4e:96: 26:a5:c4:02:72:f4:eb:ef:9f:ab:20:d4:4b:bc:07: da:68:7f:4a:bf:95:8f:b6:f0:af:db:19:a2:31:4b: b0:3f:0d:e9:24:d7:68:3e:fa:e4:4d:17:6d:c1:33: 90:73:cb:e4:10:f4:15:d6:99:3f:ac:cb:17:3e:9d: 29:8a:b3:52:dd:54:fa:e9:96:ef:28:0c:23:51:a9: cd:67:95:76:fd:53:f6:a4:32:66:7e:1b:b5:48:ea: cb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:21:9D:97:52:F3:C7:50:B8:E5:BA:85:CD:15:EB:BB:23:98:3C:1B X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a9:b1:c5:f1:48:92:1f:26:f6:c1:47:35:af:4a:56:62:58: 24:93:2b:ed:44:c9:ee:f7:b9:f7:f5:3c:2b:67:8b:fb:a5:5a: 1d:7e:0f:85:06:d8:df:20:35:3d:6b:90:ed:d7:33:50:05:ac: 05:77:05:a5:e2:92:35:06:49:54:40:e0:a3:06:e2:b6:82:a1: cb:06:4c:bd:74:9e:3f:a1:d7:11:ee:09:e7:8c:66:ee:82:82: 6b:d5:fe:8a:fd:59:da:f9:54:55:a8:c8:b3:df:c1:b7:fc:7c: 6d:16:23:6b:bd:2f:55:93:02:ec:3c:e5:46:06:b2:72:d6:29: 4e:dd:a5:e1:64:54:f4:6c:3e:a6:5b:0f:5f:40:7d:36:1e:ca: 40:41:52:8e:9c:72:c9:93:12:09:dd:a2:cf:45:c8:04:89:c7: ff:56:e8:3a:ab:70:6e:3f:b8:fb:7d:a8:f3:8d:8e:a7:08:61: a2:b4:e3:34:26:73:c0:1c:06:99:75:2b:d7:4f:d0:90:00:c7: 4f:6b:51:db:8e:9a:c3:d7:2d:c5:aa:e5:1b:98:3b:51:83:68: fa:78:64:9e:a2:1a:f5:de:85:44:91:a2:ba:2d:bd:68:b3:30: 0f:f8:d4:a5:2d:dd:98:47:f4:76:90:2b:e7:be:99:30:18:19: 6d:e5:35:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTA2MDMwNzQxNDBaFw0yNTA2MTAwNzQxNDBaMBgxFjAUBgNV BAMTDTY4M2VhNzM0LWUwMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDccQztBbwr7EUDcar7TIolGXGr22/QILK+vtNOFl/PF13Y54Ft8749Vhef5YPo JTIvzopEURig+UMIDqANFZngn8Di9dzPcMnp3XENSE2HtgPXuP7awRguzfy7PZaH eV2Qf4T4dnhvMNmg4ZUcOQCqMWA5p54eIpC9PmfYjOIBgxQVhqdnycopoUbRjAOV SazvPWR2HKXvaI8cYuKKC8en9rpOlialxAJy9Ovvn6sg1Eu8B9pof0q/lY+28K/b GaIxS7A/Dekk12g++uRNF23BM5Bzy+QQ9BXWmT+syxc+nSmKs1LdVPrplu8oDCNR qc1nlXb9U/akMmZ+G7VI6stxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCyGdl1Lz x1C45bqFzRXruyOYPBswHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGGpscXxSJIfJvbBRzWvSlZiWCSTK+1Eye73uff1PCtni/ulWh1+D4UG 2N8gNT1rkO3XM1AFrAV3BaXikjUGSVRA4KMG4raCocsGTL10nj+h1xHuCeeMZu6C gmvV/or9Wdr5VFWoyLPfwbf8fG0WI2u9L1WTAuw85UYGsnLWKU7dpeFkVPRsPqZb D19AfTYeykBBUo6ccsmTEgndos9FyASJx/9W6DqrcG4/uPt9qPONjqcIYaK04zQm c8AcBpl1K9dP0JAAx09rUduOmsPXLcWq5RuYO1GDaPp4ZJ6iGvXehUSRorotvWiz MA/41KUt3ZhH9HaQK+e+mTAYGW3lNRk= -----END CERTIFICATE-----Generated at Wed Jun 4 00:07:50 2025 by rpki-client