$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft File: CO-lQmZek61vuSE1pf1ZJF_V-uM.mft (raw, json) Hash identifier: x4NuMTxNqi0Rt8ucCWlqiZCQEwUQ9xCenunNTWbbpx0= Subject key identifier: B1:8A:2C:D4:DE:3C:F2:2D:AE:80:0C:01:53:08:C7:47:31:52:D7:5F Authority key identifier: 08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 Certificate issuer: /CN=A91C8AF2/serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft Manifest number: 01AA Signing time: Fri 25 Apr 2025 02:23:39 +0000 Manifest this update: Fri 25 Apr 2025 02:23:39 +0000 Manifest next update: Fri 02 May 2025 02:23:39 +0000 Files and hashes: 1: CO-lQmZek61vuSE1pf1ZJF_V-uM.crl (hash: 396HDTk4w2OS+BkrqZQtsJmaH12hvJB8LRZEKoWbr8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8AF2, serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Validity Not Before: Apr 25 02:23:39 2025 GMT Not After : May 2 02:23:39 2025 GMT Subject: CN=680af22b-a165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ea:ab:d6:18:0c:c5:5a:d3:7a:ac:83:35:47: 37:5b:af:4f:a8:2e:31:68:73:17:fd:7b:ef:e8:e9: e9:5e:36:e1:44:32:4a:4a:cd:1e:c6:8d:df:20:b9: d7:e8:8a:82:4c:af:2a:83:86:32:df:0e:bc:db:8f: 8d:3c:34:27:06:88:f5:09:02:cf:7c:fe:25:82:95: 41:2a:47:a0:12:23:c5:c8:3d:ef:ec:38:7b:87:48: 0c:3d:5b:95:04:b7:c0:1d:b1:8d:66:84:12:5d:73: 4a:68:4c:43:31:12:01:26:13:72:00:7a:3d:da:ee: cb:6b:43:8f:37:c4:93:ec:33:97:8b:10:81:43:20: 7e:27:e5:19:52:09:a9:25:00:36:f1:1a:2d:2e:14: 47:74:35:02:5f:31:00:95:bc:bd:ed:f3:94:73:59: fe:96:ea:3d:65:47:77:ee:9b:24:98:9d:99:2b:4e: 50:ce:dc:59:c6:16:71:0f:72:02:80:80:ec:03:b5: 65:66:39:5f:ee:13:75:05:d7:ea:61:67:6e:ec:89: 40:02:ff:40:c7:e1:da:d8:f5:50:82:9c:49:04:fb: da:e2:05:ac:27:90:70:a1:2c:de:8f:28:a2:a7:bc: b0:cf:cf:b5:46:81:92:f2:f1:8b:5b:37:23:1f:fa: 2a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8A:2C:D4:DE:3C:F2:2D:AE:80:0C:01:53:08:C7:47:31:52:D7:5F X509v3 Authority Key Identifier: keyid:08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f6:56:2b:fc:82:d2:e7:9f:7b:7a:10:53:3f:ac:75:c5:f2: 8f:b2:7f:42:e2:b5:3f:26:87:69:3f:e5:1f:cf:d6:8b:e5:61: 67:5c:7d:48:c6:3a:e1:bd:59:53:c7:29:45:9d:f8:c6:e8:6d: 0a:c6:25:fa:1a:65:93:db:7b:79:43:af:4c:2f:8e:2d:47:e4: 9f:db:70:f2:12:38:37:bb:5d:d3:50:b2:c1:d6:80:0f:94:5e: 4c:31:ec:8b:57:0c:94:04:b4:8f:f0:0a:89:d8:70:52:94:2d: e4:3e:bd:b9:47:3f:f3:2a:30:da:05:b7:01:ec:47:d3:36:4f: ac:29:c6:df:fb:d3:f3:4c:26:ba:d3:a1:82:30:e3:a1:3a:c1: 97:1d:62:77:eb:b6:3b:c0:4e:8f:5d:d6:f4:34:d5:b1:5f:c7: 79:34:dc:be:ad:4c:f5:e2:fa:c7:b7:74:c0:83:ea:be:c0:0a: 25:9d:84:e6:7a:40:c6:7b:d1:68:d4:a8:84:cb:f7:b1:bc:c3: 5b:7e:1a:dd:b3:05:d5:a7:2e:60:78:4e:10:b0:3c:e4:75:c5: cf:ba:93:2c:b1:ff:55:6d:e8:b6:c4:1f:7f:9c:c1:e5:6d:49: 60:14:2f:fb:d1:94:3c:2e:c0:46:a8:88:30:38:03:23:35:69: 72:66:10:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhBRjIxMTAvBgNVBAUTKDA4RUZBNTQyNjY1RTkzQUQ2RkI5MjEzNUE1RkQ1OTI0 NUZENUZBRTMwHhcNMjUwNDI1MDIyMzM5WhcNMjUwNTAyMDIyMzM5WjAYMRYwFAYD VQQDEw02ODBhZjIyYi1hMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuqr1hgMxVrTeqyDNUc3W69PqC4xaHMX/Xvv6OnpXjbhRDJKSs0exo3fILnX 6IqCTK8qg4Yy3w6824+NPDQnBoj1CQLPfP4lgpVBKkegEiPFyD3v7Dh7h0gMPVuV BLfAHbGNZoQSXXNKaExDMRIBJhNyAHo92u7La0OPN8ST7DOXixCBQyB+J+UZUgmp JQA28RotLhRHdDUCXzEAlby97fOUc1n+luo9ZUd37pskmJ2ZK05QztxZxhZxD3IC gIDsA7VlZjlf7hN1BdfqYWdu7IlAAv9Ax+Ha2PVQgpxJBPva4gWsJ5BwoSzejyii p7ywz8+1RoGS8vGLWzcjH/oqDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGKLNTe PPItroAMAVMIx0cxUtdfMB8GA1UdIwQYMBaAFAjvpUJmXpOtb7khNaX9WSRf1frj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEFGMi9DN0U5RjQzQTkx MjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2MXZ1U0UxcGYxWkpGX1Yt dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPLWxRbVplazYxdnVTRTFwZjFaSkZfVi11TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEFGMi9DN0U5RjQzQTkxMjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2 MXZ1U0UxcGYxWkpGX1YtdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm9lYr/ILS5597ehBTP6x1xfKPsn9C4rU/JodpP+Ufz9aL5WFnXH1I xjrhvVlTxylFnfjG6G0KxiX6GmWT23t5Q69ML44tR+Sf23DyEjg3u13TULLB1oAP lF5MMeyLVwyUBLSP8AqJ2HBSlC3kPr25Rz/zKjDaBbcB7EfTNk+sKcbf+9PzTCa6 06GCMOOhOsGXHWJ367Y7wE6PXdb0NNWxX8d5NNy+rUz14vrHt3TAg+q+wAolnYTm ekDGe9Fo1KiEy/exvMNbfhrdswXVpy5geE4QsDzkdcXPupMssf9Vbei2xB9/nMHl bUlgFC/70ZQ8LsBGqIgwOAMjNWlyZhAX -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:15 2025 by rpki-client