$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: misBlmuhX/Igefn7mhh9Jlisn+WJua1cIyIy3qIYZpw= Subject key identifier: E4:3D:09:66:B3:12:90:1D:C3:33:D8:73:F1:37:31:D8:5C:45:FC:07 Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 55 Signing time: Fri 05 Sep 2025 07:43:45 +0000 Manifest this update: Fri 05 Sep 2025 07:43:44 +0000 Manifest next update: Fri 12 Sep 2025 07:43:44 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: DlVplSb08NSjn3wics75/UxXr25TabaM9LXaKHyRlYs=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Sep 5 07:43:44 2025 GMT Not After : Sep 12 07:43:44 2025 GMT Subject: CN=68ba94b0-5ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fb:48:98:5a:64:1a:2c:52:49:ef:27:be:b1: 4d:e4:dc:6a:85:f7:d2:e1:53:0c:00:cb:63:42:95: db:9d:b6:0e:4e:41:4a:63:62:15:56:45:0f:4c:c8: 22:d9:fe:f4:17:5b:37:2c:d7:82:32:05:5a:04:ca: c9:e9:92:2b:90:bf:6b:12:7a:a4:55:ad:72:e0:37: 46:b5:ec:c6:fd:7c:08:24:fe:60:c2:62:08:e8:e0: 37:2f:83:43:0e:49:b8:47:a0:a9:67:4b:eb:e7:da: be:1d:0d:33:ee:fe:48:57:e6:68:d9:73:57:69:6f: 59:a9:32:b6:d1:05:43:21:e2:cb:27:c4:83:ec:61: 5c:eb:1a:bd:7b:7c:db:a1:a4:33:ee:db:f1:67:9b: b1:c4:96:42:be:80:fd:8c:c4:66:e5:07:4d:40:be: 62:55:ce:34:03:5b:ab:82:33:f1:24:2a:e5:fe:ea: 39:bc:13:3a:d0:bb:66:a3:a6:f4:a2:01:4d:d4:b6: 6e:71:f2:56:51:51:84:05:e3:d3:75:38:37:94:4e: 76:8a:22:e5:c6:e0:76:f7:aa:5b:e6:06:1c:e3:6b: 9d:e3:f1:ef:90:9e:e4:ec:1b:96:98:1a:40:7a:be: 1f:e1:6e:0b:4a:5d:09:61:94:12:f6:40:7c:6c:a8: d0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:3D:09:66:B3:12:90:1D:C3:33:D8:73:F1:37:31:D8:5C:45:FC:07 X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ee:08:4d:07:32:c7:e9:87:36:ee:35:b4:2b:cc:c6:b1:13: 5e:84:1f:b1:47:a8:81:21:0f:31:30:50:06:64:48:e2:72:e2: 46:24:63:be:89:68:5d:47:e4:26:9e:f2:03:92:4d:8e:7b:06: 49:37:c4:87:0b:4b:a6:84:da:5e:2f:72:b1:26:bb:7e:69:c9: b4:08:d0:73:f2:42:56:a2:5a:c1:97:14:b5:fd:e2:b1:ab:24: bd:52:9c:25:71:8e:40:4c:4a:4b:91:0a:fa:82:c3:58:b5:55: 3c:6d:45:3f:a0:69:5b:f2:1e:57:d8:b0:d3:06:a0:e0:36:94: 2a:d3:8d:ab:27:c1:f2:6c:44:b9:48:75:f3:38:bd:e9:98:ac: 5f:c0:a9:62:4e:20:49:8e:e9:d8:7b:f2:60:ae:a4:b5:f2:42: 2d:9c:26:6e:2d:cd:d4:6e:40:cb:d5:f4:cc:c1:bb:18:71:e1: 02:db:8f:92:ee:14:77:fa:dc:78:b7:07:ba:32:4b:80:fc:9e: 2a:90:a6:7d:0d:b3:b1:71:40:b6:3c:ca:64:c8:41:0f:48:b2: 4f:12:29:e0:9f:a2:25:9c:76:b6:75:58:f2:83:ce:66:9e:5c: be:60:e4:72:43:2d:a2:2b:1e:99:e9:1c:21:5d:9c:9b:5e:c3: 00:5f:95:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTA5MDUwNzQzNDRaFw0yNTA5MTIwNzQzNDRaMBgxFjAUBgNV BAMTDTY4YmE5NGIwLTVhYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4+0iYWmQaLFJJ7ye+sU3k3GqF99LhUwwAy2NCldudtg5OQUpjYhVWRQ9MyCLZ /vQXWzcs14IyBVoEysnpkiuQv2sSeqRVrXLgN0a17Mb9fAgk/mDCYgjo4Dcvg0MO SbhHoKlnS+vn2r4dDTPu/khX5mjZc1dpb1mpMrbRBUMh4ssnxIPsYVzrGr17fNuh pDPu2/Fnm7HElkK+gP2MxGblB01AvmJVzjQDW6uCM/EkKuX+6jm8EzrQu2ajpvSi AU3Utm5x8lZRUYQF49N1ODeUTnaKIuXG4Hb3qlvmBhzja53j8e+QnuTsG5aYGkB6 vh/hbgtKXQlhlBL2QHxsqNCBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5D0JZrMS kB3DM9hz8Tcx2FxF/AcwHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABHuCE0HMsfphzbuNbQrzMaxE16EH7FHqIEhDzEwUAZkSOJy4kYkY76J aF1H5Cae8gOSTY57Bkk3xIcLS6aE2l4vcrEmu35pybQI0HPyQlaiWsGXFLX94rGr JL1SnCVxjkBMSkuRCvqCw1i1VTxtRT+gaVvyHlfYsNMGoOA2lCrTjasnwfJsRLlI dfM4vemYrF/AqWJOIEmO6dh78mCupLXyQi2cJm4tzdRuQMvV9MzBuxhx4QLbj5Lu FHf63Hi3B7oyS4D8niqQpn0Ns7FxQLY8ymTIQQ9Isk8SKeCfoiWcdrZ1WPKDzmae XL5g5HJDLaIrHpnpHCFdnJtewwBflUY= -----END CERTIFICATE-----Generated at Sat Sep 6 21:06:12 2025 by rpki-client