$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: fsM+KSOIaIPcM2PlqlCFrHymRERaCvOMUicU0nV6e9Q= Subject key identifier: 08:5E:8E:6E:98:42:3A:55:B2:63:21:70:A4:30:34:19:8A:90:37:EE Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0AE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0AD4 Signing time: Tue 22 Jul 2025 19:44:50 +0000 Manifest this update: Tue 22 Jul 2025 19:44:49 +0000 Manifest next update: Tue 29 Jul 2025 19:44:49 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: e1rh34QlkWArBb3Ug9BLSpQXVP1v2sFjZokJh9dHIpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Jul 22 19:44:49 2025 GMT Not After : Jul 29 19:44:49 2025 GMT Subject: CN=687fea31-2485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bc:59:81:88:d4:c6:a9:1c:78:50:4e:c9:5c: 04:1b:ff:86:f0:41:5b:28:8b:3f:f0:b6:5f:fc:9e: 21:8b:a7:f2:c2:12:95:b2:fb:85:14:8a:1d:18:71: 48:93:03:07:65:5e:55:98:22:45:c0:49:d8:68:b4: 94:a4:ea:9c:05:e1:b6:61:6f:29:b9:07:94:84:ff: b0:9b:cd:e2:e2:26:bf:bd:72:90:ae:21:cd:9f:37: 6b:3b:7f:d3:44:1d:17:d8:56:f4:36:b7:5e:ed:ca: 3c:fe:9c:f8:67:6f:3b:ed:8e:c2:56:3c:5d:ae:07: 01:68:ab:01:9e:c7:8f:32:d3:23:e8:9e:13:40:e3: cf:90:03:ef:63:f4:17:8e:a2:d9:72:93:fa:6f:db: 35:ce:03:79:35:86:ee:48:41:46:af:1d:31:c1:a8: 4d:b5:6f:b7:ca:ed:e8:0b:da:61:ad:19:a1:77:5f: da:4a:b9:7e:b6:27:ed:9a:36:c3:8f:c8:6e:ee:c7: 8f:a0:fc:89:25:ff:a0:a8:1b:dc:e7:2c:80:38:df: a6:45:0e:4a:2c:01:58:96:25:2a:58:a2:b9:b2:ee: 65:95:bc:6c:90:34:a9:19:91:20:bd:05:af:dc:7b: b1:b8:6a:1f:e4:14:0c:1e:ca:42:ee:bc:af:f7:5d: 2b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5E:8E:6E:98:42:3A:55:B2:63:21:70:A4:30:34:19:8A:90:37:EE X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:de:16:5a:4b:62:7c:7c:2c:40:36:3a:35:e4:2a:b8:e3:2e: 00:44:16:8b:0a:fa:4b:97:9c:91:1f:27:73:75:e3:94:1e:f7: 15:71:e7:3b:43:20:3b:d7:51:a5:ed:c3:e7:34:d4:11:56:68: fc:16:e6:95:d7:05:b3:11:df:29:95:0b:08:67:58:bd:4f:c2: e7:e9:9d:ea:52:4c:b0:7b:65:88:94:48:f4:a5:7c:59:5d:89: 41:83:b2:6c:f1:b8:8e:a7:48:ea:2a:0c:af:7b:be:22:eb:65: c4:c4:a4:74:60:ad:72:3a:81:e4:8d:be:d5:d3:61:2f:27:87: fa:84:d2:5c:92:fa:1d:ce:73:c8:58:96:a6:91:75:71:26:4e: d9:b8:b8:99:bc:62:87:be:7b:70:f1:a1:39:8e:00:ad:b2:ee: 61:49:80:7a:bc:5a:c9:48:f6:48:ce:22:1d:1f:9f:ec:2c:af: 53:fe:57:fc:c7:b3:15:c3:8e:4a:8b:13:6f:b1:e7:b0:84:4a: 3d:cd:7b:b5:3a:59:ab:e2:96:63:f2:1d:d6:e5:60:15:0c:d9: 60:31:4d:c8:11:85:89:df:2a:fb:06:a3:02:f4:a9:c2:6f:15: 37:a8:64:bf:8c:2c:a1:75:2f:1d:ae:d4:a8:d6:03:17:e5:99: 59:57:a3:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUwNzIyMTk0NDQ5WhcNMjUwNzI5MTk0NDQ5WjAYMRYwFAYD VQQDEw02ODdmZWEzMS0yNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrxZgYjUxqkceFBOyVwEG/+G8EFbKIs/8LZf/J4hi6fywhKVsvuFFIodGHFI kwMHZV5VmCJFwEnYaLSUpOqcBeG2YW8puQeUhP+wm83i4ia/vXKQriHNnzdrO3/T RB0X2Fb0Nrde7co8/pz4Z2877Y7CVjxdrgcBaKsBnsePMtMj6J4TQOPPkAPvY/QX jqLZcpP6b9s1zgN5NYbuSEFGrx0xwahNtW+3yu3oC9phrRmhd1/aSrl+tiftmjbD j8hu7sePoPyJJf+gqBvc5yyAON+mRQ5KLAFYliUqWKK5su5llbxskDSpGZEgvQWv 3HuxuGof5BQMHspC7ryv910rZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhejm6Y QjpVsmMhcKQwNBmKkDfuMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDG3hZaS2J8fCxANjo15Cq44y4ARBaLCvpLl5yRHydzdeOUHvcVcec7 QyA711Gl7cPnNNQRVmj8FuaV1wWzEd8plQsIZ1i9T8Ln6Z3qUkywe2WIlEj0pXxZ XYlBg7Js8biOp0jqKgyve74i62XExKR0YK1yOoHkjb7V02EvJ4f6hNJckvodznPI WJamkXVxJk7ZuLiZvGKHvntw8aE5jgCtsu5hSYB6vFrJSPZIziIdH5/sLK9T/lf8 x7MVw45KixNvseewhEo9zXu1Olmr4pZj8h3W5WAVDNlgMU3IEYWJ3yr7BqMC9KnC bxU3qGS/jCyhdS8drtSo1gMX5ZlZV6PW -----END CERTIFICATE-----Generated at Thu Jul 24 04:00:41 2025 by rpki-client