$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft File: CO-lQmZek61vuSE1pf1ZJF_V-uM.mft (raw, json) Hash identifier: 2V9kLYPWD/kzBCH9g137YBAFFUAAf79Zp2H2UN2ZX4Q= Subject key identifier: D7:D4:31:B8:67:A8:EE:85:05:DB:1A:CC:53:54:F0:60:7B:59:9B:16 Authority key identifier: 08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 Certificate issuer: /CN=A91C8AF2/serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft Manifest number: 020B Signing time: Mon 03 Nov 2025 02:15:14 +0000 Manifest this update: Mon 03 Nov 2025 02:15:14 +0000 Manifest next update: Mon 10 Nov 2025 02:15:14 +0000 Files and hashes: 1: CO-lQmZek61vuSE1pf1ZJF_V-uM.crl (hash: 4wRRdRsGd+pXPFLSoKSvMC88iA2EN4sbFJVMJLtXblM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8AF2, serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Validity Not Before: Nov 3 02:15:14 2025 GMT Not After : Nov 10 02:15:14 2025 GMT Subject: CN=69081032-b225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6e:04:89:4e:43:c7:fb:f1:7f:d7:05:bd:f8: 86:c8:3a:3e:64:be:ea:c1:5f:96:bc:33:98:fd:cc: 93:81:f5:c8:df:51:c4:4f:53:dd:9e:5e:0c:49:60: f7:99:5a:3b:db:dd:a0:da:33:86:05:7e:e4:7f:5b: 1a:21:70:32:c5:dd:ad:d9:4f:bb:1d:2d:49:3e:0c: b7:77:5e:30:6c:74:85:fe:b8:80:ea:ee:5b:82:b2: 5a:b8:a0:38:bc:90:4b:dd:87:19:cd:09:b0:29:d9: f7:ff:52:04:c2:b3:a8:2a:71:13:a3:3b:6d:a2:a0: ed:7d:b5:07:a8:96:ca:2b:da:25:a5:69:ec:4e:5b: 64:78:b4:81:4e:04:3e:77:d3:2d:bb:c0:14:81:62: 21:ba:27:40:63:1c:c1:2b:c8:2b:e3:d4:47:78:8e: d9:8c:62:79:76:7e:ae:68:a9:02:3f:72:03:14:cc: 36:64:85:6d:78:f7:34:89:68:be:fa:6f:62:24:ca: 36:f9:ae:db:75:73:10:d9:89:1e:8e:6b:18:ed:fb: 00:19:98:a9:2c:50:71:82:f7:1c:d6:3f:ca:a7:80: 63:4c:53:b5:1d:81:c5:d7:32:eb:b7:98:14:3b:d5: 1e:f6:00:67:ee:a5:14:b0:3e:df:22:2a:20:15:7b: 7d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D4:31:B8:67:A8:EE:85:05:DB:1A:CC:53:54:F0:60:7B:59:9B:16 X509v3 Authority Key Identifier: keyid:08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:de:86:d9:d3:f4:3a:3d:31:ca:60:57:bf:2e:b8:39:75:cd: 1b:fe:55:20:68:bb:be:e6:48:1b:17:aa:c3:e4:16:ea:3a:20: 29:4c:e0:67:2f:ab:e3:91:c0:f9:14:ad:17:32:95:cf:9c:38: 24:69:ec:b8:64:d0:32:71:07:25:61:7e:0d:e0:3f:a1:90:ab: f3:cc:da:88:08:b6:ec:52:8c:76:52:48:64:0e:3e:30:66:f9: 4c:6c:03:b1:78:f7:36:a3:a6:ea:c3:31:16:c3:2a:b0:96:f5: f9:87:2e:d7:a4:64:f1:22:55:2d:23:81:bf:de:3d:15:f5:a4: b6:05:2d:b8:19:64:c7:a4:bc:25:f6:70:1d:8c:01:ff:48:ca: b5:5f:ae:d7:bb:fd:89:e5:fd:fc:16:62:e5:d8:86:33:33:9b: 4d:d4:ce:aa:ea:a8:92:d5:e4:10:e5:1c:54:10:42:9d:16:6f: 09:6b:28:58:0f:a2:75:19:b0:dc:40:0a:42:14:f8:10:52:9a: 75:08:ef:7f:bb:e4:3d:dd:4c:27:02:8f:7c:5f:70:6b:6d:39: 67:d0:ad:6a:6c:2b:c5:75:4e:37:ec:e6:d3:10:4c:b2:25:4e: 54:15:ec:d2:85:ba:c1:86:21:7e:94:bb:27:03:3c:79:4f:58: ee:76:95:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhBRjIxMTAvBgNVBAUTKDA4RUZBNTQyNjY1RTkzQUQ2RkI5MjEzNUE1RkQ1OTI0 NUZENUZBRTMwHhcNMjUxMTAzMDIxNTE0WhcNMjUxMTEwMDIxNTE0WjAYMRYwFAYD VQQDEw02OTA4MTAzMi1iMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx24EiU5Dx/vxf9cFvfiGyDo+ZL7qwV+WvDOY/cyTgfXI31HET1Pdnl4MSWD3 mVo7292g2jOGBX7kf1saIXAyxd2t2U+7HS1JPgy3d14wbHSF/riA6u5bgrJauKA4 vJBL3YcZzQmwKdn3/1IEwrOoKnETozttoqDtfbUHqJbKK9olpWnsTltkeLSBTgQ+ d9Mtu8AUgWIhuidAYxzBK8gr49RHeI7ZjGJ5dn6uaKkCP3IDFMw2ZIVtePc0iWi+ +m9iJMo2+a7bdXMQ2YkejmsY7fsAGZipLFBxgvcc1j/Kp4BjTFO1HYHF1zLrt5gU O9Ue9gBn7qUUsD7fIiogFXt9ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfUMbhn qO6FBdsazFNU8GB7WZsWMB8GA1UdIwQYMBaAFAjvpUJmXpOtb7khNaX9WSRf1frj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEFGMi9DN0U5RjQzQTkx MjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2MXZ1U0UxcGYxWkpGX1Yt dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPLWxRbVplazYxdnVTRTFwZjFaSkZfVi11TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEFGMi9DN0U5RjQzQTkxMjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2 MXZ1U0UxcGYxWkpGX1YtdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw3obZ0/Q6PTHKYFe/Lrg5dc0b/lUgaLu+5kgbF6rD5BbqOiApTOBn L6vjkcD5FK0XMpXPnDgkaey4ZNAycQclYX4N4D+hkKvzzNqICLbsUox2UkhkDj4w ZvlMbAOxePc2o6bqwzEWwyqwlvX5hy7XpGTxIlUtI4G/3j0V9aS2BS24GWTHpLwl 9nAdjAH/SMq1X67Xu/2J5f38FmLl2IYzM5tN1M6q6qiS1eQQ5RxUEEKdFm8JayhY D6J1GbDcQApCFPgQUpp1CO9/u+Q93UwnAo98X3BrbTln0K1qbCvFdU437ObTEEyy JU5UFezShbrBhiF+lLsnAzx5T1judpUg -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:22 2025 by rpki-client