$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: RwxpiDCehc1P68M7fDSK2SbuUfJ8tZH8V7E481IZz5k= Subject key identifier: 97:8E:5A:89:70:77:9B:4D:2B:09:23:2A:41:8A:C0:50:62:27:7E:60 Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0AE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0AD5 Signing time: Thu 24 Jul 2025 19:38:47 +0000 Manifest this update: Thu 24 Jul 2025 19:38:46 +0000 Manifest next update: Thu 31 Jul 2025 19:38:46 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: 4UDwtm+ILh79nhERPL7Iy4K48dkHRdVgIgEfTBSYr5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2789 (0xae5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Jul 24 19:38:46 2025 GMT Not After : Jul 31 19:38:46 2025 GMT Subject: CN=68828bc7-a4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:ec:61:01:f5:22:78:4d:e6:35:a9:cb:1e: ce:f5:64:eb:29:89:05:4b:56:f7:cd:ab:bf:a4:c2: e6:2a:ed:0a:09:70:49:7f:ba:10:88:fd:6f:eb:38: ed:8b:d1:97:ce:21:5c:b8:92:f8:9f:ec:19:4e:d4: e2:e7:a3:e5:29:5a:27:74:22:87:3d:55:a5:8e:c4: fa:19:50:1f:b7:c3:ef:89:14:67:04:e4:d6:c8:65: 70:84:2b:eb:0a:31:3c:e1:6f:ea:37:b9:69:01:bf: 28:ef:87:1b:00:eb:54:24:5e:5d:12:06:a9:b4:56: d0:4e:48:f2:da:47:0e:f5:b1:53:52:d2:4f:a8:37: 77:07:72:72:ca:35:a5:d7:62:8b:1d:f1:fb:6d:39: 80:d9:e5:f5:66:4d:bf:52:23:4c:9f:d5:ab:35:2d: 18:81:c8:0b:9d:ab:c1:a0:d6:6e:bf:3b:71:3c:7c: 5d:46:96:15:bd:0a:43:ee:82:77:84:33:2f:da:13: 41:6c:f0:b9:c1:ce:57:26:b2:bf:23:80:25:c0:96: 2b:1a:eb:29:56:62:76:43:8d:f5:92:5a:50:f0:7b: ce:24:9a:61:d1:16:aa:56:40:f9:35:af:77:e9:74: 61:8f:48:43:12:88:99:5c:fc:4f:82:ab:a4:f4:5f: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8E:5A:89:70:77:9B:4D:2B:09:23:2A:41:8A:C0:50:62:27:7E:60 X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:cc:dd:c9:c9:6a:ef:7f:fc:51:c2:0e:77:79:35:bf:c3:b1: d1:72:f5:c5:c6:d8:4c:36:98:21:3e:0d:75:06:80:9b:2c:8a: f3:ab:bd:95:ef:b4:b6:37:fc:c0:90:0f:60:44:5a:f9:6e:14: 9e:40:e6:c9:29:92:c4:cd:f9:5e:dc:7b:f8:01:ac:dc:b6:70: 6a:ed:e5:c7:0a:bd:cc:44:e7:b8:1d:45:af:d5:49:fc:2b:56: 5c:81:86:86:39:3a:40:2e:53:a3:be:4a:5b:98:26:02:80:aa: 62:f2:d9:d9:87:bd:2f:6b:b5:1a:53:3d:5c:c2:54:40:33:c6: 23:37:00:6c:81:96:c9:4a:b3:fe:87:eb:75:e0:9e:69:c5:19: bf:fd:bf:b6:d1:20:17:4f:8d:d8:67:77:58:2a:80:af:18:c2: 33:e8:ee:a0:73:b3:4b:37:a8:b7:00:a9:81:e9:44:24:ee:af: 2c:70:47:58:d0:c2:a5:a2:2f:2f:35:64:13:02:a3:09:f9:d7: 71:f0:b5:73:a7:28:87:85:ed:66:8f:a7:35:70:2b:45:d8:34: 32:a5:1e:22:e3:c0:85:29:0d:e1:8e:6b:9f:b7:03:84:ea:8f: 51:ce:90:d1:01:b1:5b:c2:01:79:c4:1a:a6:de:fe:e4:24:19: 9b:25:40:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUwNzI0MTkzODQ2WhcNMjUwNzMxMTkzODQ2WjAYMRYwFAYD VQQDEw02ODgyOGJjNy1hNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2DsYQH1InhN5jWpyx7O9WTrKYkFS1b3zau/pMLmKu0KCXBJf7oQiP1v6zjt i9GXziFcuJL4n+wZTtTi56PlKVondCKHPVWljsT6GVAft8PviRRnBOTWyGVwhCvr CjE84W/qN7lpAb8o74cbAOtUJF5dEgaptFbQTkjy2kcO9bFTUtJPqDd3B3JyyjWl 12KLHfH7bTmA2eX1Zk2/UiNMn9WrNS0YgcgLnavBoNZuvztxPHxdRpYVvQpD7oJ3 hDMv2hNBbPC5wc5XJrK/I4AlwJYrGuspVmJ2Q431klpQ8HvOJJph0RaqVkD5Na93 6XRhj0hDEoiZXPxPgquk9F9rrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeOWolw d5tNKwkjKkGKwFBiJ35gMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtzN3JyWrvf/xRwg53eTW/w7HRcvXFxthMNpghPg11BoCbLIrzq72V 77S2N/zAkA9gRFr5bhSeQObJKZLEzfle3Hv4AazctnBq7eXHCr3MROe4HUWv1Un8 K1ZcgYaGOTpALlOjvkpbmCYCgKpi8tnZh70va7UaUz1cwlRAM8YjNwBsgZbJSrP+ h+t14J5pxRm//b+20SAXT43YZ3dYKoCvGMIz6O6gc7NLN6i3AKmB6UQk7q8scEdY 0MKloi8vNWQTAqMJ+ddx8LVzpyiHhe1mj6c1cCtF2DQypR4i48CFKQ3hjmuftwOE 6o9RzpDRAbFbwgF5xBqm3v7kJBmbJUDz -----END CERTIFICATE-----Generated at Fri Jul 25 04:06:36 2025 by rpki-client