$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: oOap57Di7APFtVGkUUi3FTPi26foyEbpzBDOxVvs0uo= Subject key identifier: 6D:44:04:D7:E2:AD:BF:27:AB:98:DE:42:38:E8:EA:EC:C2:EE:F5:BB Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: 95 Signing time: Sun 19 Oct 2025 09:38:17 +0000 Manifest this update: Sun 19 Oct 2025 09:38:17 +0000 Manifest next update: Sun 26 Oct 2025 09:38:17 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: 5Ctbmyijlr98nHRZKUTfmafNFvIokZsuRrkaZFAWkL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Validity Not Before: Oct 19 09:38:17 2025 GMT Not After : Oct 26 09:38:17 2025 GMT Subject: CN=68f4b189-0fb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5f:81:af:f0:ca:c2:ac:30:49:ed:61:66:5e: 74:fa:2d:83:ae:3d:ed:a0:dd:7a:1f:58:f7:bc:e5: ac:e4:9c:0c:40:bc:b6:73:81:48:4b:2f:98:60:19: f6:a3:43:98:54:f3:b6:e4:48:8b:b9:36:aa:73:3c: 6b:30:66:bf:7f:53:e8:c4:25:22:ba:91:f1:c6:49: 5b:2a:62:78:07:4c:e1:5e:45:c9:15:25:f5:1f:df: fb:5e:74:ce:bc:b8:65:ca:8c:49:0b:05:a2:06:d7: 96:32:2e:95:69:ad:d0:5b:8c:93:be:93:83:96:cb: 42:e8:e8:92:ac:ea:c7:cb:49:8c:b0:82:a4:24:58: e9:a9:af:0e:18:e9:79:39:5e:ad:30:d9:60:00:e7: 41:a0:77:d2:d1:c6:ed:7d:bd:c7:b7:47:b8:18:34: f8:23:d8:f6:79:22:5a:0b:f3:96:57:73:6a:9c:79: c7:a3:81:28:df:bc:12:f9:14:a2:c1:75:91:b3:71: 6a:d1:7a:bf:15:bd:ad:15:cd:f8:9e:23:6e:a0:9e: 84:32:02:9a:15:33:47:03:45:c0:48:98:e4:82:fc: 7e:8b:bc:2f:97:be:a7:3d:ff:cc:4d:1c:64:75:a1: df:71:e3:47:74:ca:37:4f:c4:27:14:72:0c:63:90: 8d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:44:04:D7:E2:AD:BF:27:AB:98:DE:42:38:E8:EA:EC:C2:EE:F5:BB X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9d:b3:99:df:4f:42:c0:4e:32:d5:b8:fd:dd:e1:ea:be:87: 5f:4e:61:fd:3b:cf:66:ae:cd:e1:ff:f3:83:02:a0:e4:13:40: d1:c2:21:57:25:26:29:51:f3:ad:b3:85:6c:bf:10:54:c5:3d: 55:d7:52:ff:96:f4:01:6b:20:2d:28:25:23:28:fd:b2:64:8c: 52:57:d9:6b:b0:e2:76:16:27:c1:f9:01:50:fb:9b:f7:29:0b: 1b:6a:2e:1a:3b:b4:bf:5e:24:cd:24:9e:0e:2d:48:74:eb:44: 35:43:2c:b7:67:61:5e:ff:1a:63:88:3e:1a:70:b4:6b:07:d6: 3b:45:b9:4b:2f:4e:45:1b:40:60:50:90:a3:97:9a:cc:49:e8: ba:4f:b1:1d:4d:97:74:1e:61:14:84:52:c5:d2:22:6c:63:2f: e2:d6:7b:ed:31:6f:c6:2c:22:67:c0:8d:16:f1:c2:a1:b0:2b: 88:d8:41:1c:7b:dc:93:fe:69:a9:70:fe:82:30:2f:2a:f9:25: 49:0c:84:a4:f8:19:42:ad:36:f9:c8:2b:6a:87:22:71:3c:f8: 1a:d0:51:9c:e8:be:af:fe:a9:38:33:fe:c2:65:d7:c2:6d:81: 60:0f:86:89:b3:6c:47:3e:53:f5:75:11:19:22:c6:04:5d:38: 6c:f5:c7:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4QkIxMTAvBgNVBAUTKDA4RUZENzE5MzhGN0Y5REM4N0E2OUY1Q0IzRjg0QzdB NEI3MkEwMEEwHhcNMjUxMDE5MDkzODE3WhcNMjUxMDI2MDkzODE3WjAYMRYwFAYD VQQDEw02OGY0YjE4OS0wZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV+Br/DKwqwwSe1hZl50+i2Drj3toN16H1j3vOWs5JwMQLy2c4FISy+YYBn2 o0OYVPO25EiLuTaqczxrMGa/f1PoxCUiupHxxklbKmJ4B0zhXkXJFSX1H9/7XnTO vLhlyoxJCwWiBteWMi6Vaa3QW4yTvpODlstC6OiSrOrHy0mMsIKkJFjpqa8OGOl5 OV6tMNlgAOdBoHfS0cbtfb3Ht0e4GDT4I9j2eSJaC/OWV3NqnHnHo4Eo37wS+RSi wXWRs3Fq0Xq/Fb2tFc34niNuoJ6EMgKaFTNHA0XASJjkgvx+i7wvl76nPf/MTRxk daHfceNHdMo3T8QnFHIMY5CNWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1EBNfi rb8nq5jeQjjo6uzC7vW7MB8GA1UdIwQYMBaAFAjv1xk49/nch6afXLP4THpLcqAK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMThCQi83MUQ1MDYyRUM4 QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1keUhwcDljc19oTWVrdHlv QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MThCQi83MUQ1MDYyRUM4QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1k eUhwcDljc19oTWVrdHlvQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCenbOZ309CwE4y1bj93eHqvodfTmH9O89mrs3h//ODAqDkE0DRwiFX JSYpUfOts4VsvxBUxT1V11L/lvQBayAtKCUjKP2yZIxSV9lrsOJ2FifB+QFQ+5v3 KQsbai4aO7S/XiTNJJ4OLUh060Q1Qyy3Z2Fe/xpjiD4acLRrB9Y7RblLL05FG0Bg UJCjl5rMSei6T7EdTZd0HmEUhFLF0iJsYy/i1nvtMW/GLCJnwI0W8cKhsCuI2EEc e9yT/mmpcP6CMC8q+SVJDISk+BlCrTb5yCtqhyJxPPga0FGc6L6v/qk4M/7CZdfC bYFgD4aJs2xHPlP1dREZIsYEXThs9ceH -----END CERTIFICATE-----Generated at Mon Oct 20 03:55:29 2025 by rpki-client