$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft File: sCOWweSXbcJLufJA9c5Vbtgn-is.mft (raw, json) Hash identifier: 5i5hxuU6IKPAmzo763X02GLM6dywln1GMq6ZWNZ3zkE= Subject key identifier: 2D:ED:06:34:F4:EA:79:2D:DB:4D:C1:60:34:34:F9:C4:50:B2:BD:87 Authority key identifier: B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B Certificate issuer: /CN=A91124CD/serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft Manifest number: 0105 Signing time: Tue 05 Aug 2025 05:28:56 +0000 Manifest this update: Tue 05 Aug 2025 05:28:55 +0000 Manifest next update: Tue 12 Aug 2025 05:28:55 +0000 Files and hashes: 1: sCOWweSXbcJLufJA9c5Vbtgn-is.crl (hash: Z2DC6lpA6VQSOY2r3kYmQUAraoFH8ujelfPICgT9BoQ=) 2: CC6220C0E02E11EEBA9D291AC4F9AE02.roa (hash: EfnXa4JTXRSQtpkoLm2l4ZqnMhuE0NVKwTVdEbOaaqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CD, serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Validity Not Before: Aug 5 05:28:55 2025 GMT Not After : Aug 12 05:28:55 2025 GMT Subject: CN=68919698-95fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:5e:dd:26:1e:d4:05:47:4f:3f:1b:fa:67: 56:67:6a:6b:5a:b1:75:18:b4:1b:4a:1b:bc:01:32: a0:c4:02:28:5a:bd:6b:6c:cf:7f:7a:72:59:1a:08: 30:24:f4:51:0c:02:d8:0a:65:66:8a:14:d6:dc:13: af:6b:83:40:6c:35:23:a6:85:2f:5a:6f:19:ef:91: 66:06:4f:2a:a9:57:b2:91:ca:bb:78:5d:5d:a7:a2: 68:d7:4b:84:5d:0f:ea:f2:34:3f:c3:62:6c:eb:ff: bb:44:89:ab:17:b3:c7:b4:d5:c2:8a:8d:7a:6f:b0: 76:08:e3:41:e9:b6:f8:87:15:32:4a:78:63:27:da: a1:0e:28:66:0c:ad:57:57:57:86:31:49:9c:11:a0: bc:5a:a8:75:21:52:e0:8e:b4:b0:06:dc:38:71:97: a6:cd:2e:43:34:db:a8:19:56:6e:b0:f0:bb:6f:4f: 01:ad:52:a9:6d:4e:d5:b9:e8:06:26:c9:e6:bf:67: a4:59:f0:6d:31:e4:67:ce:16:cd:00:3e:6f:30:89: fa:2f:8f:a0:ad:64:6c:96:7a:7e:5d:70:41:ae:4d: fb:ce:d5:4b:e7:57:1b:30:07:1a:12:9a:bf:89:e5: 8f:27:2a:18:6e:41:9b:a6:f7:2a:ba:8d:22:19:86: 96:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:ED:06:34:F4:EA:79:2D:DB:4D:C1:60:34:34:F9:C4:50:B2:BD:87 X509v3 Authority Key Identifier: keyid:B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:c1:df:58:3a:ca:55:ba:ea:fa:70:2e:49:f3:11:3b:e0:40: 76:fc:ac:45:c2:3a:79:5f:68:69:c3:c4:8f:71:3a:7c:6c:e4: ee:02:f9:7c:19:c0:28:79:36:ab:e4:a0:a4:6e:8c:c0:df:2f: fb:8f:e3:13:f7:44:3e:96:bc:2e:05:b4:87:9a:78:70:3b:ea: 1c:53:78:39:32:f5:7c:c0:52:6d:d0:f4:07:bc:49:fc:a5:09: 43:96:23:75:5b:82:2c:5f:92:cf:1e:50:50:13:fd:90:8a:15: e2:5a:bf:de:31:e6:c0:46:e8:ae:8d:ed:c3:f8:2f:b2:aa:4c: f0:1d:35:41:10:bd:9d:e1:28:91:72:55:0c:9f:a5:71:5c:ba: 51:79:ff:1c:48:31:06:fe:e7:fb:0e:7c:f0:1f:7a:2f:a1:92: 1b:fb:6c:55:b9:72:09:7b:c3:ce:0a:42:c3:f7:69:51:3a:9b: 7e:e5:ce:e6:74:5e:50:b4:a1:30:47:15:bf:ce:0d:05:64:7f: 41:f0:c0:92:45:66:b0:76:d3:43:44:ad:dd:62:8f:ce:2b:4a: 57:ee:9d:c8:81:a2:cf:0a:9f:0f:6e:04:31:a6:21:40:6c:0d: 03:7a:e0:cd:e0:29:bb:cb:31:6b:20:88:7d:e5:9a:03:cb:54: dc:7d:42:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0QxMTAvBgNVBAUTKEIwMjM5NkMxRTQ5NzZEQzI0QkI5RjI0MEY1Q0U1NTZF RDgyN0ZBMkIwHhcNMjUwODA1MDUyODU1WhcNMjUwODEyMDUyODU1WjAYMRYwFAYD VQQDEw02ODkxOTY5OC05NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3Re3SYe1AVHTz8b+mdWZ2prWrF1GLQbShu8ATKgxAIoWr1rbM9/enJZGggw JPRRDALYCmVmihTW3BOva4NAbDUjpoUvWm8Z75FmBk8qqVeykcq7eF1dp6Jo10uE XQ/q8jQ/w2Js6/+7RImrF7PHtNXCio16b7B2CONB6bb4hxUySnhjJ9qhDihmDK1X V1eGMUmcEaC8Wqh1IVLgjrSwBtw4cZemzS5DNNuoGVZusPC7b08BrVKpbU7VuegG Jsnmv2ekWfBtMeRnzhbNAD5vMIn6L4+grWRslnp+XXBBrk37ztVL51cbMAcaEpq/ ieWPJyoYbkGbpvcquo0iGYaWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3tBjT0 6nkt203BYDQ0+cRQsr2HMB8GA1UdIwQYMBaAFLAjlsHkl23CS7nyQPXOVW7YJ/or MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDRC9COTdCNzYzOEUw MkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJjSkx1ZkpBOWM1VmJ0Z24t aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NDT1d3ZVNYYmNKTHVmSkE5YzVWYnRnbi1pcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDRC9COTdCNzYzOEUwMkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJj Skx1ZkpBOWM1VmJ0Z24taXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6wd9YOspVuur6cC5J8xE74EB2/KxFwjp5X2hpw8SPcTp8bOTuAvl8 GcAoeTar5KCkbozA3y/7j+MT90Q+lrwuBbSHmnhwO+ocU3g5MvV8wFJt0PQHvEn8 pQlDliN1W4IsX5LPHlBQE/2QihXiWr/eMebARuiuje3D+C+yqkzwHTVBEL2d4SiR clUMn6VxXLpRef8cSDEG/uf7DnzwH3ovoZIb+2xVuXIJe8POCkLD92lROpt+5c7m dF5QtKEwRxW/zg0FZH9B8MCSRWawdtNDRK3dYo/OK0pX7p3IgaLPCp8PbgQxpiFA bA0DeuDN4Cm7yzFrIIh95ZoDy1TcfUIp -----END CERTIFICATE-----Generated at Wed Aug 6 11:02:21 2025 by rpki-client