$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft File: CO-lQmZek61vuSE1pf1ZJF_V-uM.mft (raw, json) Hash identifier: gmcgxF2reSb+eHQIErkadWPTlDY0t4c07zVdfKaYCZM= Subject key identifier: E7:E4:96:2E:2C:A8:62:8A:9F:38:F4:50:47:AD:29:57:C9:84:63:C6 Authority key identifier: 08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 Certificate issuer: /CN=A91C8AF2/serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft Manifest number: 01E0 Signing time: Mon 11 Aug 2025 02:45:43 +0000 Manifest this update: Mon 11 Aug 2025 02:45:43 +0000 Manifest next update: Mon 18 Aug 2025 02:45:43 +0000 Files and hashes: 1: CO-lQmZek61vuSE1pf1ZJF_V-uM.crl (hash: IlyK9ARTNgcyPihyQQ4M3MsGz65NSgxwWCU0DWthEtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8AF2, serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Validity Not Before: Aug 11 02:45:43 2025 GMT Not After : Aug 18 02:45:43 2025 GMT Subject: CN=68995957-0bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:44:82:ed:41:3d:13:23:03:69:ff:d5:b5:8b: 45:da:88:c4:82:45:76:98:4d:64:ef:d1:70:1d:74: 9c:2d:46:36:a3:09:af:67:60:43:70:e9:b3:44:14: 97:68:68:e9:ce:cf:4f:76:c2:ab:83:11:a1:c2:39: c3:3f:2a:7f:89:8d:5b:05:a2:0d:f6:a5:91:7a:69: 06:08:c5:76:46:7e:b8:5d:d3:fa:ff:ec:da:55:1f: d6:99:9d:d1:a2:4b:d9:1e:e0:3c:f6:2d:2b:27:13: e2:cf:41:85:20:be:cd:c6:f4:da:5b:6e:0b:c3:ec: 1e:5e:54:03:40:f1:64:ab:61:2f:6c:24:c7:10:71: e1:66:5c:f4:09:5c:55:a9:62:82:28:c3:e4:ef:d9: da:9f:a3:23:58:dd:cc:0a:3b:02:3c:49:12:43:b0: 34:0b:25:4a:c7:6a:17:62:24:00:d2:e5:02:c8:e1: 31:d5:c4:76:02:e7:bc:33:f4:37:ba:8e:ec:f2:f9: 60:ac:47:9f:0e:d0:ba:ca:19:54:4d:ad:aa:24:41: c9:13:a0:7f:df:02:a5:41:f2:77:f4:61:c7:90:ff: ed:aa:68:43:13:a4:02:65:b3:48:e0:f5:9d:2d:b0: 27:ee:ff:05:f5:d0:03:fc:99:79:5b:a4:2f:a9:90: 95:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E4:96:2E:2C:A8:62:8A:9F:38:F4:50:47:AD:29:57:C9:84:63:C6 X509v3 Authority Key Identifier: keyid:08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9f:7d:e0:d3:bd:60:e7:cb:8a:90:a9:51:49:ad:27:cc:7d: 4f:87:99:b9:d1:15:b6:61:41:fc:8c:30:c5:f8:7c:3e:f6:20: b4:f2:d5:9d:8b:1b:b2:32:92:04:83:f8:f5:1a:22:25:dc:28: 22:7e:48:92:e1:fe:22:0f:d8:c5:70:aa:29:dc:09:d0:ea:1f: 4c:06:8f:5c:2d:14:8d:cd:77:f5:cf:af:59:6e:f0:c2:53:b6: d3:13:e9:07:fc:52:8b:c7:3a:73:ef:4a:5e:59:aa:e7:36:c1: ec:d2:d7:d0:52:37:8c:35:ae:c8:a0:e6:41:8f:64:cc:a1:1e: 3d:f9:bf:22:21:2f:4e:b2:f6:82:9f:a5:17:06:d6:39:b5:32: bb:5d:87:77:0f:19:72:e0:4a:63:2a:65:c1:1c:be:13:71:39: df:bb:c5:94:83:16:01:62:6f:62:b5:06:27:19:d7:10:36:d5: 3e:c5:21:e9:ae:19:79:9f:b5:c3:da:19:01:8f:c5:ff:38:1c: 09:be:f0:de:98:9d:8c:28:05:92:2d:ba:6c:67:e3:b6:7f:b2: 46:1f:6f:76:8c:b4:0a:a6:71:c4:5e:9f:20:34:4d:ac:31:e8: 13:7c:97:22:c1:16:40:6f:45:34:83:8c:a9:2e:56:4f:78:5d: 1c:e7:66:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhBRjIxMTAvBgNVBAUTKDA4RUZBNTQyNjY1RTkzQUQ2RkI5MjEzNUE1RkQ1OTI0 NUZENUZBRTMwHhcNMjUwODExMDI0NTQzWhcNMjUwODE4MDI0NTQzWjAYMRYwFAYD VQQDEw02ODk5NTk1Ny0wYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkSC7UE9EyMDaf/VtYtF2ojEgkV2mE1k79FwHXScLUY2owmvZ2BDcOmzRBSX aGjpzs9PdsKrgxGhwjnDPyp/iY1bBaIN9qWRemkGCMV2Rn64XdP6/+zaVR/WmZ3R okvZHuA89i0rJxPiz0GFIL7NxvTaW24Lw+weXlQDQPFkq2EvbCTHEHHhZlz0CVxV qWKCKMPk79nan6MjWN3MCjsCPEkSQ7A0CyVKx2oXYiQA0uUCyOEx1cR2Aue8M/Q3 uo7s8vlgrEefDtC6yhlUTa2qJEHJE6B/3wKlQfJ39GHHkP/tqmhDE6QCZbNI4PWd LbAn7v8F9dAD/Jl5W6QvqZCV4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfkli4s qGKKnzj0UEetKVfJhGPGMB8GA1UdIwQYMBaAFAjvpUJmXpOtb7khNaX9WSRf1frj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEFGMi9DN0U5RjQzQTkx MjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2MXZ1U0UxcGYxWkpGX1Yt dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPLWxRbVplazYxdnVTRTFwZjFaSkZfVi11TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEFGMi9DN0U5RjQzQTkxMjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2 MXZ1U0UxcGYxWkpGX1YtdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCln33g071g58uKkKlRSa0nzH1Ph5m50RW2YUH8jDDF+Hw+9iC08tWd ixuyMpIEg/j1GiIl3CgifkiS4f4iD9jFcKop3AnQ6h9MBo9cLRSNzXf1z69ZbvDC U7bTE+kH/FKLxzpz70peWarnNsHs0tfQUjeMNa7IoOZBj2TMoR49+b8iIS9OsvaC n6UXBtY5tTK7XYd3Dxly4EpjKmXBHL4TcTnfu8WUgxYBYm9itQYnGdcQNtU+xSHp rhl5n7XD2hkBj8X/OBwJvvDemJ2MKAWSLbpsZ+O2f7JGH292jLQKpnHEXp8gNE2s MegTfJciwRZAb0U0g4ypLlZPeF0c52au -----END CERTIFICATE-----Generated at Mon Aug 11 09:51:10 2025 by rpki-client