$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: h47FuaE3sz6X0beCHA40qHFXnY6Lws95I7W+OagCoy8= Subject key identifier: 84:7F:5B:09:30:87:F6:41:82:B4:DE:EB:14:F7:51:AF:60:3D:F7:DB Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: 78 Signing time: Sat 23 Aug 2025 06:59:21 +0000 Manifest this update: Sat 23 Aug 2025 06:59:20 +0000 Manifest next update: Sat 30 Aug 2025 06:59:20 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: 05Cc29e7L2/q1dpFe40r1vXeXDgZP4Qop5nbq+jIeIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Validity Not Before: Aug 23 06:59:20 2025 GMT Not After : Aug 30 06:59:20 2025 GMT Subject: CN=68a966c8-bfec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:d0:07:e9:7a:00:c4:f4:71:b6:9f:96:e7: 9b:b9:29:fc:76:5e:d2:b2:57:bd:df:e0:5c:68:5c: 2c:bf:39:dc:81:c1:bf:29:8b:5f:aa:97:18:36:9e: 9e:8d:03:18:f6:89:08:f3:ab:f1:31:f1:b6:67:3f: ff:e8:e1:c9:3a:ba:33:a8:de:50:b7:95:20:73:58: 9f:a4:f6:72:e1:72:c0:f3:41:89:cb:39:83:2e:3b: 46:ed:26:68:5a:ad:c0:40:5d:0f:9a:1f:db:5b:a4: 07:ae:4d:2e:9c:2b:dc:33:17:0e:5a:52:a9:25:b0: c1:71:52:72:8a:c7:34:61:32:ad:57:ff:e7:f0:60: 82:c5:a6:94:03:50:49:ce:94:a1:30:4b:61:15:df: d2:e6:7a:08:79:e5:75:b6:2d:35:95:37:e3:62:89: e7:3b:70:5e:47:9a:b0:9c:95:cf:1f:29:55:ea:96: 3c:ed:5a:f4:b1:a9:e8:90:ec:88:80:df:9d:80:79: 4c:e4:6d:0f:a1:57:e4:56:6e:81:7b:00:b7:93:25: 36:08:ea:a7:b4:89:4a:1c:4b:1a:5a:f1:c0:ef:68: 4d:16:5f:56:80:b5:1d:8e:12:31:cd:4d:d4:d6:06: 3e:0d:49:68:c7:97:59:f1:5f:9c:92:73:99:ac:99: 2a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7F:5B:09:30:87:F6:41:82:B4:DE:EB:14:F7:51:AF:60:3D:F7:DB X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f7:34:c9:08:d6:ee:b1:94:94:7b:d2:a0:24:b5:60:59:9e: 21:7a:09:79:80:57:a7:c2:87:47:2a:81:61:24:0c:b5:32:47: ca:9e:67:45:55:2c:2c:55:44:2a:22:2f:6a:1d:6a:9f:90:e8: 78:2b:96:94:96:20:90:ff:2a:e0:b1:29:cd:59:19:e9:8c:94: 98:97:b0:94:ba:10:11:40:b5:5a:0c:3d:4b:ae:cb:72:31:96: f3:20:a5:44:bc:39:b4:c7:6a:37:17:a3:f6:e7:2a:64:5c:72: b1:28:59:3e:59:71:c2:b6:d4:87:dc:68:a1:23:91:d9:3d:d9: b6:03:93:aa:73:c6:57:6f:37:80:7b:8a:f6:41:e5:ff:26:7e: 22:de:62:03:6c:b5:6e:6e:16:f8:0e:6c:2a:f7:0c:7a:e5:13: 05:46:ff:e4:db:b4:bd:11:9f:4e:1c:95:3a:a7:b9:44:15:de: fd:b9:15:9d:eb:e7:00:9c:a0:a8:96:c9:88:7f:91:d2:28:0b: 4b:41:ad:4c:d4:33:5d:39:5e:ed:4d:b1:08:3a:3e:bd:44:d5: f4:78:2a:ae:72:9d:58:dc:d3:aa:65:de:03:19:f8:32:02:79: 01:43:cb:e6:fd:63:e1:2f:ad:8d:b9:f2:2e:b2:36:70:ca:18: 67:56:cb:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMDhFRkQ3MTkzOEY3RjlEQzg3QTY5RjVDQjNGODRDN0E0 QjcyQTAwQTAeFw0yNTA4MjMwNjU5MjBaFw0yNTA4MzAwNjU5MjBaMBgxFjAUBgNV BAMTDTY4YTk2NmM4LWJmZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGatAH6XoAxPRxtp+W55u5Kfx2XtKyV73f4FxoXCy/OdyBwb8pi1+qlxg2np6N Axj2iQjzq/Ex8bZnP//o4ck6ujOo3lC3lSBzWJ+k9nLhcsDzQYnLOYMuO0btJmha rcBAXQ+aH9tbpAeuTS6cK9wzFw5aUqklsMFxUnKKxzRhMq1X/+fwYILFppQDUEnO lKEwS2EV39Lmegh55XW2LTWVN+Niiec7cF5HmrCclc8fKVXqljztWvSxqeiQ7IiA 352AeUzkbQ+hV+RWboF7ALeTJTYI6qe0iUocSxpa8cDvaE0WX1aAtR2OEjHNTdTW Bj4NSWjHl1nxX5ySc5msmSolAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhH9bCTCH 9kGCtN7rFPdRr2A999swHwYDVR0jBBgwFoAUCO/XGTj3+dyHpp9cs/hMektyoAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzcxRDUwNjJFQzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9B by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ09fWEdUajMtZHlIcHA5Y3NfaE1la3R5b0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzcxRDUwNjJFQzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5 SHBwOWNzX2hNZWt0eW9Bby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAb3NMkI1u6xlJR70qAktWBZniF6CXmAV6fCh0cqgWEkDLUyR8qeZ0VV LCxVRCoiL2odap+Q6HgrlpSWIJD/KuCxKc1ZGemMlJiXsJS6EBFAtVoMPUuuy3Ix lvMgpUS8ObTHajcXo/bnKmRccrEoWT5ZccK21IfcaKEjkdk92bYDk6pzxldvN4B7 ivZB5f8mfiLeYgNstW5uFvgObCr3DHrlEwVG/+TbtL0Rn04clTqnuUQV3v25FZ3r 5wCcoKiWyYh/kdIoC0tBrUzUM105Xu1NsQg6Pr1E1fR4Kq5ynVjc06pl3gMZ+DIC eQFDy+b9Y+EvrY258i6yNnDKGGdWyw8= -----END CERTIFICATE-----Generated at Sat Aug 23 14:32:51 2025 by rpki-client