$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: yWaP4kapneYK/hbV+hDagVijWj+8j8PJq3kON7WQp3w= Subject key identifier: 18:AD:EA:B7:5B:7B:D2:AF:27:48:CB:FC:26:93:F5:7C:C8:04:34:EE Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0AF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0AE4 Signing time: Fri 22 Aug 2025 19:36:01 +0000 Manifest this update: Fri 22 Aug 2025 19:36:00 +0000 Manifest next update: Fri 29 Aug 2025 19:36:00 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: xNUoteVqazDzXh/ZzgJoWiWBtQJPzmG/rmJLGCaLOTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2804 (0xaf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Aug 22 19:36:00 2025 GMT Not After : Aug 29 19:36:00 2025 GMT Subject: CN=68a8c6a0-db97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:83:19:6f:68:30:a2:4c:0a:90:1d:a6:96:26: 19:9b:8a:9a:d1:2e:a1:90:7f:23:bf:39:da:f2:b7: 52:d6:17:3c:e7:94:9e:9b:bd:da:a6:49:be:ee:d2: 20:20:7d:b0:7d:7c:c5:bc:4b:3b:65:b5:32:57:d7: f9:df:3f:16:66:12:d9:06:36:ee:e1:d7:59:c6:42: 12:51:87:3c:fc:08:d4:53:e3:3b:a6:70:73:1c:05: fe:c6:b1:e4:35:97:68:5b:9f:3a:c3:b4:c5:76:a6: 87:bc:01:81:13:15:49:88:08:04:36:5c:b6:a3:8e: 3a:80:cd:e6:b7:3d:a3:cd:03:b9:12:c5:35:9a:63: 4d:49:6d:6a:af:55:20:42:d9:ce:9a:14:d7:d7:95: 03:93:1b:3d:11:c0:ba:53:96:e4:1b:74:67:2a:b0: f4:fb:d9:06:61:0a:8f:81:3d:d6:9f:02:19:4c:3e: b8:75:2a:49:67:d5:66:df:5d:f1:b5:be:24:eb:ed: 62:a2:5d:ee:9f:9f:35:11:51:3a:e7:68:72:0f:95: 2e:26:1f:b6:35:df:eb:8e:9f:8c:63:21:bc:5d:8d: 2c:ae:a8:58:c0:44:52:97:84:dc:51:e3:3f:44:86: eb:81:4a:f7:0d:ca:9c:2b:e8:a7:52:ad:df:20:78: 53:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AD:EA:B7:5B:7B:D2:AF:27:48:CB:FC:26:93:F5:7C:C8:04:34:EE X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c8:6f:78:a3:28:31:f8:aa:b1:94:8e:51:a2:a0:5a:f8:69: f1:40:37:fd:aa:4e:00:c6:a6:ec:e8:b7:9c:af:e1:78:cf:99: c1:30:06:91:7b:7c:bf:02:71:67:38:49:93:da:32:2b:80:5e: c5:b6:49:1c:bf:6b:b7:89:e2:5f:f6:24:db:ea:24:dc:62:55: 43:e7:46:29:66:fe:ed:d1:ad:ab:c4:01:d3:b7:bb:7c:c1:a0: 9c:75:4c:52:4d:0e:4c:ed:fd:db:d0:45:99:7f:41:5c:00:bc: 69:b7:34:54:49:c8:14:db:dc:ad:ec:f4:78:6a:1c:b9:7a:da: 49:31:5f:b3:6e:92:be:b5:5d:d5:f2:35:15:21:87:86:e3:8a: c5:6a:d5:6a:e6:4a:b7:fe:1d:14:b1:35:8a:a9:a3:8b:96:9f: 23:48:79:48:8d:14:a4:4e:fb:ea:1f:45:b8:04:81:66:64:3b: 8b:78:5d:55:60:f8:54:6e:16:26:b2:35:31:8b:af:7c:e9:aa: 0c:c6:48:42:27:ce:ae:36:a6:6d:6c:45:d2:2c:2e:ee:60:24: 66:81:1c:30:b7:4c:e9:d0:ff:e9:f0:6e:0e:7c:9b:23:3b:dc: 39:c9:04:76:ee:4c:d9:28:6d:fa:b7:22:ec:6c:3c:00:30:f4: 7a:22:8a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUwODIyMTkzNjAwWhcNMjUwODI5MTkzNjAwWjAYMRYwFAYD VQQDEw02OGE4YzZhMC1kYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlIMZb2gwokwKkB2mliYZm4qa0S6hkH8jvzna8rdS1hc855Sem73apkm+7tIg IH2wfXzFvEs7ZbUyV9f53z8WZhLZBjbu4ddZxkISUYc8/AjUU+M7pnBzHAX+xrHk NZdoW586w7TFdqaHvAGBExVJiAgENly2o446gM3mtz2jzQO5EsU1mmNNSW1qr1Ug QtnOmhTX15UDkxs9EcC6U5bkG3RnKrD0+9kGYQqPgT3WnwIZTD64dSpJZ9Vm313x tb4k6+1iol3un581EVE652hyD5UuJh+2Nd/rjp+MYyG8XY0srqhYwERSl4TcUeM/ RIbrgUr3DcqcK+inUq3fIHhTzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBit6rdb e9KvJ0jL/CaT9XzIBDTuMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwyG94oygx+KqxlI5RoqBa+GnxQDf9qk4Axqbs6Lecr+F4z5nBMAaR e3y/AnFnOEmT2jIrgF7Ftkkcv2u3ieJf9iTb6iTcYlVD50YpZv7t0a2rxAHTt7t8 waCcdUxSTQ5M7f3b0EWZf0FcALxptzRUScgU29yt7PR4ahy5etpJMV+zbpK+tV3V 8jUVIYeG44rFatVq5kq3/h0UsTWKqaOLlp8jSHlIjRSkTvvqH0W4BIFmZDuLeF1V YPhUbhYmsjUxi6986aoMxkhCJ86uNqZtbEXSLC7uYCRmgRwwt0zp0P/p8G4OfJsj O9w5yQR27kzZKG36tyLsbDwAMPR6Ioov -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:31 2025 by rpki-client