$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: aSAMZEft9on7SAQN8JCk9Il7WDEFSncw/TarJXl2Dw8= Subject key identifier: D0:63:81:9A:E4:51:91:99:EA:01:C5:48:2A:60:8C:7A:1C:84:1A:9C Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0B02 Signing time: Mon 20 Oct 2025 20:08:49 +0000 Manifest this update: Mon 20 Oct 2025 20:08:49 +0000 Manifest next update: Mon 27 Oct 2025 20:08:49 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: 1OL3mfqbc6WvlUHbZOpoULhwHppb9GbkXxFlKO4g0YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Oct 20 20:08:49 2025 GMT Not After : Oct 27 20:08:49 2025 GMT Subject: CN=68f696d1-aab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:d0:90:7c:53:3f:60:e2:a9:a8:f4:4b:ee: c0:5e:98:13:d5:17:78:84:62:a9:9a:13:d3:7d:8d: 27:d4:fa:8d:fc:69:87:72:ef:14:45:dd:af:58:85: 73:f9:01:bb:f1:34:57:1f:57:e7:8a:7b:fd:62:59: 11:dd:57:76:b6:36:26:4e:4a:83:75:7d:9b:b7:dd: ae:26:49:b8:dc:9c:9e:50:f3:2e:11:45:85:1e:56: 87:1b:19:80:0a:94:a8:84:82:53:39:38:13:dc:26: 96:98:89:cc:2e:08:59:22:d1:c5:6b:f3:b9:50:e4: 2b:22:6f:a6:e2:1f:60:37:e1:bb:7a:fc:08:b7:f6: f7:75:f4:b6:67:b0:ec:49:44:9b:40:14:4b:d1:b4: 05:a6:74:65:40:ed:29:94:d7:e5:aa:f8:e3:6b:3a: d1:13:bc:1c:6e:ef:cd:5e:d6:87:3e:97:78:1b:a0: da:0d:d5:d9:1e:cc:5f:e4:6e:13:b0:b7:5a:e6:73: 63:17:2f:8f:88:8b:ae:97:03:1b:e5:30:74:de:72: e6:0d:de:2f:d7:f2:ad:a3:78:98:34:db:c2:f4:0e: cd:e1:59:20:cd:18:cf:1f:07:ce:1a:a4:cd:bf:b3: 2f:82:e4:30:1f:e1:9e:3d:f0:52:0f:f0:ce:1b:5b: 62:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:63:81:9A:E4:51:91:99:EA:01:C5:48:2A:60:8C:7A:1C:84:1A:9C X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:c2:fa:a0:32:fc:57:f1:99:7c:be:b1:07:18:dc:19:f6:6d: d1:04:73:33:77:aa:3f:9d:ff:cd:99:78:5c:c9:b5:d4:20:93: 6b:21:8d:28:b3:6d:8c:f3:50:7a:86:9a:85:70:e3:e6:9f:f0: b5:93:69:8b:33:96:82:ea:2d:d4:86:29:ad:08:0b:c2:1a:23: f3:83:5d:f4:20:61:8d:c1:7b:e7:46:46:a4:29:40:0c:4c:d4: 13:fd:4f:25:64:59:a8:1c:6a:07:16:c3:cb:0b:13:58:40:1e: fb:d6:1f:74:59:ee:f4:9b:35:84:33:38:25:ed:b9:99:a4:08: 7e:c8:1f:e1:c5:b6:d4:ea:ea:58:54:3a:c8:2a:01:24:6a:09: 2b:55:37:ba:b2:5e:b8:42:9b:93:21:91:6d:eb:0d:15:27:a6: d4:fd:40:ce:03:a8:05:9a:96:22:ca:11:30:7e:0e:99:f9:b3: 54:6c:fe:5b:82:a4:a6:70:bd:45:97:6f:c6:30:a2:9d:e0:88: b3:c9:19:c2:14:cb:5f:fc:87:4c:61:53:a8:95:e8:46:7e:95: 32:ac:12:a3:74:21:51:a2:bb:d1:4a:5e:70:1a:88:0f:5a:2e: cb:d8:c7:e0:2b:e2:5a:c3:7b:a9:13:68:9f:1a:86:8d:e8:a4: 4f:c8:5c:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUxMDIwMjAwODQ5WhcNMjUxMDI3MjAwODQ5WjAYMRYwFAYD VQQDEw02OGY2OTZkMS1hYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8XQkHxTP2Diqaj0S+7AXpgT1Rd4hGKpmhPTfY0n1PqN/GmHcu8URd2vWIVz +QG78TRXH1fninv9YlkR3Vd2tjYmTkqDdX2bt92uJkm43JyeUPMuEUWFHlaHGxmA CpSohIJTOTgT3CaWmInMLghZItHFa/O5UOQrIm+m4h9gN+G7evwIt/b3dfS2Z7Ds SUSbQBRL0bQFpnRlQO0plNflqvjjazrRE7wcbu/NXtaHPpd4G6DaDdXZHsxf5G4T sLda5nNjFy+PiIuulwMb5TB03nLmDd4v1/Kto3iYNNvC9A7N4VkgzRjPHwfOGqTN v7MvguQwH+GePfBSD/DOG1tiWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBjgZrk UZGZ6gHFSCpgjHochBqcMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5wvqgMvxX8Zl8vrEHGNwZ9m3RBHMzd6o/nf/NmXhcybXUIJNrIY0o s22M81B6hpqFcOPmn/C1k2mLM5aC6i3UhimtCAvCGiPzg130IGGNwXvnRkakKUAM TNQT/U8lZFmoHGoHFsPLCxNYQB771h90We70mzWEMzgl7bmZpAh+yB/hxbbU6upY VDrIKgEkagkrVTe6sl64QpuTIZFt6w0VJ6bU/UDOA6gFmpYiyhEwfg6Z+bNUbP5b gqSmcL1Fl2/GMKKd4IizyRnCFMtf/IdMYVOolehGfpUyrBKjdCFRorvRSl5wGogP Wi7L2MfgK+Jaw3upE2ifGoaN6KRPyFwo -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:45 2025 by rpki-client