$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: 0yqk1uQcXw4BdUAys5HCYM3priZ4Fu1DI7toK82zCjw= Subject key identifier: 26:52:A5:FC:B0:EF:9E:13:F5:8D:AD:CB:CC:79:BA:1A:54:0F:6C:F9 Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: 5D Signing time: Tue 01 Jul 2025 07:50:47 +0000 Manifest this update: Tue 01 Jul 2025 07:50:47 +0000 Manifest next update: Tue 08 Jul 2025 07:50:47 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: CKJczS1t8U5lBRvk4jduRaHgN5v9DTe7AGcquaWBas0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Validity Not Before: Jul 1 07:50:47 2025 GMT Not After : Jul 8 07:50:47 2025 GMT Subject: CN=68639357-cff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:38:72:99:c6:dd:8c:e5:9d:00:cf:77:bd:1b: 84:ed:58:c7:9b:d9:a8:b1:69:74:98:ed:ad:a6:7e: 6c:78:4a:7a:01:79:1e:81:4d:51:9d:42:25:1b:36: 64:fa:d5:03:b3:e8:84:37:a9:c2:c2:44:9b:65:34: af:44:4f:f7:43:db:3c:68:48:4a:5c:f1:af:9a:71: 73:b4:7e:d7:81:7b:5f:6b:16:47:17:55:0e:8a:89: 20:2e:81:9f:8e:78:40:5d:4d:90:24:59:87:c4:fb: a9:a7:76:aa:c5:12:2f:0b:67:5f:df:b5:6c:17:d4: 27:c7:aa:e5:4b:18:fb:fc:ae:56:c7:7c:32:0d:fc: 01:f4:03:52:98:96:93:9b:63:b4:ee:40:e3:db:33: 94:c0:4a:e2:9d:e9:1e:1d:0c:f8:2f:8d:0a:2e:64: dc:e4:47:3d:99:1a:56:8b:db:ad:c3:a7:bd:47:f2: 96:49:8c:38:f7:12:70:7a:74:41:b1:a1:d0:72:5a: 82:54:f4:e0:d8:b8:f5:3f:4e:4c:4b:a9:05:7e:52: 41:44:7b:43:fa:3b:ca:d7:6c:e2:35:4c:84:e0:c7: 20:ca:64:21:69:7d:d3:ca:af:86:1a:de:4e:1d:3a: 4e:ca:52:7e:7f:5c:ea:04:92:53:a9:7b:ac:b6:71: 56:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:52:A5:FC:B0:EF:9E:13:F5:8D:AD:CB:CC:79:BA:1A:54:0F:6C:F9 X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:81:3f:56:6a:f3:83:0d:b1:ef:af:6d:86:fb:ae:38:11:6f: 42:3b:a5:cd:12:fb:67:53:52:43:48:ab:ee:dd:00:b1:3c:05: a7:da:aa:8b:24:f3:6e:ca:34:e4:7d:e5:68:bd:19:6d:93:5f: 5a:25:e5:59:c1:bd:77:33:0d:c2:5e:0a:2b:15:25:d2:2d:5c: bd:b6:a9:b0:b7:17:c6:8c:a0:bb:e7:37:e8:d3:60:02:63:ee: 05:74:f6:0f:4a:b8:52:a6:6e:5a:df:39:dd:d2:33:c2:41:e0: d3:4f:8a:5d:8f:3e:e2:ec:3d:1f:92:ea:e4:94:b6:33:46:79: 7d:4e:e9:a3:e2:72:f4:4c:ab:3c:d2:33:7b:d8:46:ce:16:cd: 9b:84:e9:32:4e:b8:ee:0d:19:e1:2d:4e:b9:61:c4:d2:dc:08: 8e:70:bb:94:50:a8:00:21:34:a9:44:23:b8:19:09:ca:0e:7d: 2d:f3:51:a0:01:3b:65:5f:c8:92:f5:83:e2:5d:61:e1:f3:c3: d0:17:ed:97:ce:49:fc:29:ae:09:cb:47:46:2f:da:c0:4d:72: cd:7d:af:9f:d2:b4:3d:67:54:b2:85:ac:71:98:61:fd:db:db: 33:76:c4:7c:8d:89:c2:66:2d:f5:cc:6b:bc:79:11:07:bf:0e: 19:c1:74:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMDhFRkQ3MTkzOEY3RjlEQzg3QTY5RjVDQjNGODRDN0E0 QjcyQTAwQTAeFw0yNTA3MDEwNzUwNDdaFw0yNTA3MDgwNzUwNDdaMBgxFjAUBgNV BAMTDTY4NjM5MzU3LWNmZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2OHKZxt2M5Z0Az3e9G4TtWMeb2aixaXSY7a2mfmx4SnoBeR6BTVGdQiUbNmT6 1QOz6IQ3qcLCRJtlNK9ET/dD2zxoSEpc8a+acXO0fteBe19rFkcXVQ6KiSAugZ+O eEBdTZAkWYfE+6mndqrFEi8LZ1/ftWwX1CfHquVLGPv8rlbHfDIN/AH0A1KYlpOb Y7TuQOPbM5TASuKd6R4dDPgvjQouZNzkRz2ZGlaL263Dp71H8pZJjDj3EnB6dEGx odByWoJU9ODYuPU/TkxLqQV+UkFEe0P6O8rXbOI1TITgxyDKZCFpfdPKr4Ya3k4d Ok7KUn5/XOoEklOpe6y2cVaxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJlKl/LDv nhP1ja3LzHm6GlQPbPkwHwYDVR0jBBgwFoAUCO/XGTj3+dyHpp9cs/hMektyoAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzcxRDUwNjJFQzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9B by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ09fWEdUajMtZHlIcHA5Y3NfaE1la3R5b0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzcxRDUwNjJFQzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5 SHBwOWNzX2hNZWt0eW9Bby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWBP1Zq84MNse+vbYb7rjgRb0I7pc0S+2dTUkNIq+7dALE8Bafaqosk 827KNOR95Wi9GW2TX1ol5VnBvXczDcJeCisVJdItXL22qbC3F8aMoLvnN+jTYAJj 7gV09g9KuFKmblrfOd3SM8JB4NNPil2PPuLsPR+S6uSUtjNGeX1O6aPicvRMqzzS M3vYRs4WzZuE6TJOuO4NGeEtTrlhxNLcCI5wu5RQqAAhNKlEI7gZCcoOfS3zUaAB O2VfyJL1g+JdYeHzw9AX7ZfOSfwprgnLR0Yv2sBNcs19r5/StD1nVLKFrHGYYf3b 2zN2xHyNicJmLfXMa7x5EQe/DhnBdJM= -----END CERTIFICATE-----Generated at Tue Jul 1 18:29:52 2025 by rpki-client