$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: fV3fo0bzH3+faTudoGE9kyQjWEFZcUzq2ws5AvktedM= Subject key identifier: 1B:C3:DF:4F:12:B2:F8:1C:A0:EA:E7:EC:AB:A5:B9:D1:D9:2B:B1:E1 Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0ADB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0ACB Signing time: Fri 04 Jul 2025 19:52:24 +0000 Manifest this update: Fri 04 Jul 2025 19:52:24 +0000 Manifest next update: Fri 11 Jul 2025 19:52:24 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: zIiZu00Ou2tz2tjE18EAHS5KdKohlgBTNwJWeml5xQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2779 (0xadb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Jul 4 19:52:24 2025 GMT Not After : Jul 11 19:52:24 2025 GMT Subject: CN=686830f8-64b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ce:74:9b:79:1a:7d:18:02:47:04:f0:07:09: 4a:1e:8f:66:e5:9d:33:cc:a4:40:60:39:56:3d:f5: d1:08:d8:76:cd:e6:cd:06:a1:e4:3a:c8:90:87:8a: 04:5e:df:61:15:67:15:91:4b:2d:2f:85:b2:6b:db: 99:7c:dd:b0:0d:b3:91:2c:0d:b2:7b:d4:d2:6a:f0: 63:77:60:a1:dc:dd:2a:ab:2a:dc:0e:36:f8:62:ed: 22:61:d6:e3:5f:87:51:6b:95:dc:3d:64:11:e5:93: ad:8f:a5:6b:ab:6f:49:47:5e:f3:69:71:70:a9:43: 02:1f:d5:51:7d:15:69:12:74:9a:f6:52:91:db:e0: ae:04:69:8f:49:33:01:f9:a3:57:cc:b5:70:eb:60: 84:6b:7b:35:21:93:01:f5:4b:67:8e:e4:71:f1:94: 6f:f3:cd:69:84:17:30:00:8b:01:96:0a:65:f2:e5: e4:f7:f8:31:04:f0:b6:ec:9f:57:e3:13:ca:fa:8b: a1:79:af:d3:09:e7:7e:4e:4f:30:7a:c7:3e:44:29: e4:21:21:be:aa:2c:c4:46:ed:da:5d:69:5e:50:c9: 2e:61:8c:46:1a:2b:cd:72:cd:a6:a1:95:19:80:ea: ed:4b:0b:8d:07:b3:50:76:cd:88:75:e7:a8:ab:0d: 3e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C3:DF:4F:12:B2:F8:1C:A0:EA:E7:EC:AB:A5:B9:D1:D9:2B:B1:E1 X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:fa:a0:34:fc:64:81:bb:b6:95:41:38:57:81:dd:73:05:64: 49:7e:49:70:9d:cc:98:5b:78:3a:72:fb:17:ff:6e:34:26:e3: 5d:59:bc:4c:6c:4d:1e:bb:ee:fc:d0:e6:73:96:85:f5:e4:57: f4:a3:bb:14:30:b0:4f:f1:3e:4b:0a:3f:2a:4e:e2:f1:8e:60: 8e:09:16:98:79:bd:a9:9b:8c:09:95:89:dc:4d:4e:c0:eb:87: ff:fd:f3:62:9e:f5:12:76:b9:6e:91:0d:f0:01:f5:fd:83:60: e1:31:ab:3b:a6:f8:06:f3:46:1c:62:c1:99:53:74:a3:98:aa: fa:16:7b:78:a7:7c:62:88:b9:2a:50:ff:4a:63:39:3d:90:ea: 1f:cd:44:7a:bb:bf:19:5b:82:5e:ed:62:ef:b7:3c:b5:36:ac: 0a:28:ae:0b:f8:52:4d:d8:a0:92:96:ba:1b:62:95:f6:ce:d5: 1a:6f:54:e2:43:c8:72:46:ea:b2:05:b3:40:ea:9c:f5:07:82: f2:be:8a:78:13:4e:51:a0:00:64:50:12:af:9e:20:41:f2:d2: 2e:45:13:3d:8f:89:0b:36:6a:bf:13:1f:3c:4f:27:11:35:8c: 47:28:9e:26:b2:a7:10:67:cb:77:20:66:f0:78:af:cf:7d:6b: 53:b0:00:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUwNzA0MTk1MjI0WhcNMjUwNzExMTk1MjI0WjAYMRYwFAYD VQQDEw02ODY4MzBmOC02NGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws50m3kafRgCRwTwBwlKHo9m5Z0zzKRAYDlWPfXRCNh2zebNBqHkOsiQh4oE Xt9hFWcVkUstL4Wya9uZfN2wDbORLA2ye9TSavBjd2Ch3N0qqyrcDjb4Yu0iYdbj X4dRa5XcPWQR5ZOtj6Vrq29JR17zaXFwqUMCH9VRfRVpEnSa9lKR2+CuBGmPSTMB +aNXzLVw62CEa3s1IZMB9UtnjuRx8ZRv881phBcwAIsBlgpl8uXk9/gxBPC27J9X 4xPK+ouhea/TCed+Tk8wesc+RCnkISG+qizERu3aXWleUMkuYYxGGivNcs2moZUZ gOrtSwuNB7NQds2Ideeoqw0+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvD308S svgcoOrn7KuludHZK7HhMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy+qA0/GSBu7aVQThXgd1zBWRJfklwncyYW3g6cvsX/240JuNdWbxM bE0eu+780OZzloX15Ff0o7sUMLBP8T5LCj8qTuLxjmCOCRaYeb2pm4wJlYncTU7A 64f//fNinvUSdrlukQ3wAfX9g2DhMas7pvgG80YcYsGZU3SjmKr6Fnt4p3xiiLkq UP9KYzk9kOofzUR6u78ZW4Je7WLvtzy1NqwKKK4L+FJN2KCSlrobYpX2ztUab1Ti Q8hyRuqyBbNA6pz1B4Lyvop4E05RoABkUBKvniBB8tIuRRM9j4kLNmq/Ex88TycR NYxHKJ4msqcQZ8t3IGbweK/PfWtTsAB9 -----END CERTIFICATE-----Generated at Sun Jul 6 01:09:54 2025 by rpki-client