$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: kw/XdlZk3RPss3XUo+vgvb6EVLLC2aLp8M5CSI5g2wU= Subject key identifier: 6B:81:76:FE:5A:5E:8F:44:3F:8A:27:FC:3C:4E:1E:D1:C9:15:11:6E Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 74 Signing time: Mon 03 Nov 2025 06:52:56 +0000 Manifest this update: Mon 03 Nov 2025 06:52:54 +0000 Manifest next update: Mon 10 Nov 2025 06:52:54 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 1KWxqdBNINS8hd0zx6SpkxxhAVokaWKZ66xXGiWN54g=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: lfdyi++bWKTqNq0AntGKkt45cnrhAjp+IKIVrz1KfzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Nov 3 06:52:54 2025 GMT Not After : Nov 10 06:52:54 2025 GMT Subject: CN=69085147-df0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2c:13:d0:01:30:20:ab:c9:8b:d4:56:1c:20: 3c:89:c0:66:0f:a7:19:75:1b:87:2d:d9:a5:a7:41: b7:62:ee:95:1c:78:4b:8f:3e:8e:e5:0d:51:65:35: 00:31:0b:76:06:fb:bd:c3:17:e5:34:56:ca:e4:47: ff:af:cc:0a:12:24:48:b5:b4:1f:f0:5a:57:78:47: 5b:fa:66:df:51:95:1a:51:be:c8:d5:a9:0c:f3:93: b2:9a:f1:76:8c:d7:6b:c1:a3:13:d4:71:11:da:90: 21:ec:37:61:be:65:37:be:3e:29:76:ca:2d:cd:24: ff:5c:a2:18:fb:92:eb:94:5d:99:3c:bb:7e:77:ff: 0c:16:59:6f:52:c8:e2:fa:d1:60:3f:4c:e1:65:17: 9a:1a:4c:6e:d8:1b:89:81:b0:90:37:cd:4a:1e:fd: a9:62:cc:8f:2e:4b:ae:a7:c1:81:fd:b5:d6:50:10: 98:1f:27:ae:d0:cd:cd:d9:82:98:1f:3e:86:be:5c: 64:e9:ac:3d:91:53:ab:ec:f1:6d:64:74:8f:5e:a3: 37:ac:ed:26:1c:90:45:4d:88:b4:d8:3c:2b:ec:33: bf:94:db:95:82:41:54:41:cf:35:78:55:93:0b:4e: 75:6b:c1:5b:9d:22:c3:7c:ef:cd:22:fb:4e:49:62: 63:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:81:76:FE:5A:5E:8F:44:3F:8A:27:FC:3C:4E:1E:D1:C9:15:11:6E X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:f5:8b:44:e3:30:23:9d:6c:fa:12:22:f2:15:a3:1c:4d:34: 78:b1:be:64:6f:ef:13:af:10:a1:53:47:5c:14:d6:a1:5b:3a: b8:d5:cf:c7:9a:ab:78:be:ed:80:13:8d:ae:b0:33:4b:bd:49: 41:3c:4c:94:8f:a3:10:6d:86:8f:e3:3f:b9:02:33:91:d0:07: 94:a5:7d:1c:63:52:5a:53:d8:04:34:4f:9d:d4:91:ac:87:28: 2f:8d:2f:35:66:2f:ee:9c:34:aa:d7:cb:09:4f:80:da:3e:12: 88:4a:cd:d7:c4:bb:7e:ba:95:23:fc:4e:bd:39:32:ce:86:29: a2:69:3c:06:06:b7:05:b2:e9:72:8e:c2:90:ef:bf:23:83:3a: a6:67:f5:b2:06:8a:2a:80:93:45:09:e2:5e:62:82:48:d5:50: c6:43:b3:7d:6c:24:ad:b3:0c:f0:dd:a7:d1:aa:70:18:bc:69: b1:de:03:38:38:81:5a:6c:e8:b6:71:27:de:c4:3a:44:6d:56: 8a:f2:07:57:2d:da:44:ee:f5:cb:cd:5b:1c:3c:a4:ec:11:78: 99:54:77:a8:c4:0f:48:3c:53:38:56:fe:3b:1f:e2:cf:46:44: dc:e1:48:90:05:59:e0:c1:0f:44:df:ae:36:06:48:36:d3:2e: 7d:20:6b:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTExMDMwNjUyNTRaFw0yNTExMTAwNjUyNTRaMBgxFjAUBgNV BAMTDTY5MDg1MTQ3LWRmMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtLBPQATAgq8mL1FYcIDyJwGYPpxl1G4ct2aWnQbdi7pUceEuPPo7lDVFlNQAx C3YG+73DF+U0VsrkR/+vzAoSJEi1tB/wWld4R1v6Zt9RlRpRvsjVqQzzk7Ka8XaM 12vBoxPUcRHakCHsN2G+ZTe+Pil2yi3NJP9cohj7kuuUXZk8u353/wwWWW9SyOL6 0WA/TOFlF5oaTG7YG4mBsJA3zUoe/alizI8uS66nwYH9tdZQEJgfJ67Qzc3Zgpgf Poa+XGTprD2RU6vs8W1kdI9eozes7SYckEVNiLTYPCvsM7+U25WCQVRBzzV4VZML TnVrwVudIsN8780i+05JYmM7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa4F2/lpe j0Q/iif8PE4e0ckVEW4wHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEX1i0TjMCOdbPoSIvIVoxxNNHixvmRv7xOvEKFTR1wU1qFbOrjVz8ea q3i+7YATja6wM0u9SUE8TJSPoxBtho/jP7kCM5HQB5SlfRxjUlpT2AQ0T53UkayH KC+NLzVmL+6cNKrXywlPgNo+EohKzdfEu366lSP8Tr05Ms6GKaJpPAYGtwWy6XKO wpDvvyODOqZn9bIGiiqAk0UJ4l5igkjVUMZDs31sJK2zDPDdp9GqcBi8abHeAzg4 gVps6LZxJ97EOkRtVoryB1ct2kTu9cvNWxw8pOwReJlUd6jED0g8UzhW/jsf4s9G RNzhSJAFWeDBD0TfrjYGSDbTLn0ga0Y= -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:43 2025 by rpki-client