$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft File: CO-lQmZek61vuSE1pf1ZJF_V-uM.mft (raw, json) Hash identifier: LcWf4huplPuryNPHJ2T56Y9RVv/0W6mrAqyB5Dczmc0= Subject key identifier: CC:29:34:01:6C:66:A8:96:D0:B2:33:9D:8D:17:7D:1A:ED:77:07:62 Authority key identifier: 08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 Certificate issuer: /CN=A91C8AF2/serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft Manifest number: 01C4 Signing time: Tue 17 Jun 2025 02:05:24 +0000 Manifest this update: Tue 17 Jun 2025 02:05:23 +0000 Manifest next update: Tue 24 Jun 2025 02:05:23 +0000 Files and hashes: 1: CO-lQmZek61vuSE1pf1ZJF_V-uM.crl (hash: D+dqtgzdvrVNo9oLCQ3maNppHtFpPj/3WMITQ3O/T3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8AF2, serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Validity Not Before: Jun 17 02:05:23 2025 GMT Not After : Jun 24 02:05:23 2025 GMT Subject: CN=6850cd64-7598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:4a:a9:58:77:22:17:da:fe:01:a0:3f:4d: 1a:f9:23:87:1a:08:6d:16:e3:e1:64:ab:ee:6a:05: 1b:be:76:19:32:3e:e4:06:28:2c:32:5a:72:1b:a6: 3a:34:8e:fb:7b:eb:81:6c:0b:6c:05:8b:66:9b:ef: d2:80:bd:4f:bc:22:2e:02:73:44:30:17:97:ed:c1: bb:7a:b5:39:58:64:66:f7:cf:34:e6:7b:49:3a:49: 3b:57:f8:ec:12:cc:6b:eb:4c:eb:ed:aa:d0:9d:ee: 62:94:96:4b:91:24:83:20:1d:4d:d9:4a:eb:69:6b: 22:39:3e:e1:95:29:ec:a1:c3:a5:54:30:41:61:3d: bb:ae:a2:7a:20:d6:e9:42:b1:ac:b4:ad:b9:12:80: ce:1a:21:2f:d6:f3:4d:b5:0f:9a:d2:77:c6:63:54: 44:62:00:a6:2a:2d:86:37:d8:b9:86:b6:6a:17:5d: d0:d7:81:e4:5e:d3:ef:6f:f2:02:4b:11:8e:ca:f4: bb:48:77:8e:3a:a2:f3:97:a5:70:f9:e8:0a:0a:1c: d6:88:ce:7f:44:72:c2:d8:5b:78:29:31:be:fa:89: da:78:35:38:15:f7:93:ef:54:a5:1f:c3:4a:5f:75: d9:6d:55:23:dc:2c:10:b2:6b:12:dc:cc:a3:d1:ad: b9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:29:34:01:6C:66:A8:96:D0:B2:33:9D:8D:17:7D:1A:ED:77:07:62 X509v3 Authority Key Identifier: keyid:08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:82:b8:fe:00:58:e1:b0:91:ce:ed:e3:29:42:1a:d5:89:99: 2f:21:e7:6c:b1:b6:98:e6:04:68:0f:75:0a:2e:3d:f6:b8:ca: 96:d8:9c:a7:05:70:a7:1f:84:b7:ac:41:51:cb:ac:6b:09:d1: a4:7e:b4:cd:64:00:92:d5:c1:7d:67:24:23:79:d2:e5:f3:d5: 72:8e:2e:79:8a:6a:9a:d3:1f:58:d2:2a:26:c9:4f:a0:49:38: 27:2b:21:46:25:ef:d3:98:06:3e:c9:5e:42:15:5a:a5:76:27: 1d:62:04:02:7f:17:2f:81:09:c4:3a:d1:67:53:5c:e1:ff:26: 98:a3:00:bf:ba:8d:d6:ed:52:d7:bc:da:26:89:e8:ee:57:87: 4e:9d:ad:3d:87:c7:67:34:1a:3d:a4:c7:c3:26:ca:f0:5b:88: 3c:49:32:65:9d:eb:c8:e0:26:ed:f7:64:a0:e2:64:ea:48:1a: 81:2b:29:59:ac:d7:d5:65:2c:13:72:8f:54:68:fc:83:7f:87: 95:af:c3:05:25:c9:00:5f:bf:f8:ca:57:cf:d4:2c:f3:28:87: 18:e7:c2:c1:3c:c3:fc:c9:f5:50:a4:ea:24:b2:74:d2:6e:67: 4d:dd:e8:be:7b:58:a4:eb:96:d6:b1:c9:75:e9:d6:a0:cb:da: c0:12:07:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhBRjIxMTAvBgNVBAUTKDA4RUZBNTQyNjY1RTkzQUQ2RkI5MjEzNUE1RkQ1OTI0 NUZENUZBRTMwHhcNMjUwNjE3MDIwNTIzWhcNMjUwNjI0MDIwNTIzWjAYMRYwFAYD VQQDEw02ODUwY2Q2NC03NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKJKqVh3Ihfa/gGgP00a+SOHGghtFuPhZKvuagUbvnYZMj7kBigsMlpyG6Y6 NI77e+uBbAtsBYtmm+/SgL1PvCIuAnNEMBeX7cG7erU5WGRm98805ntJOkk7V/js Esxr60zr7arQne5ilJZLkSSDIB1N2UrraWsiOT7hlSnsocOlVDBBYT27rqJ6INbp QrGstK25EoDOGiEv1vNNtQ+a0nfGY1REYgCmKi2GN9i5hrZqF13Q14HkXtPvb/IC SxGOyvS7SHeOOqLzl6Vw+egKChzWiM5/RHLC2Ft4KTG++onaeDU4FfeT71SlH8NK X3XZbVUj3CwQsmsS3Myj0a25pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwpNAFs ZqiW0LIznY0XfRrtdwdiMB8GA1UdIwQYMBaAFAjvpUJmXpOtb7khNaX9WSRf1frj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEFGMi9DN0U5RjQzQTkx MjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2MXZ1U0UxcGYxWkpGX1Yt dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPLWxRbVplazYxdnVTRTFwZjFaSkZfVi11TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEFGMi9DN0U5RjQzQTkxMjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2 MXZ1U0UxcGYxWkpGX1YtdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwgrj+AFjhsJHO7eMpQhrViZkvIedssbaY5gRoD3UKLj32uMqW2Jyn BXCnH4S3rEFRy6xrCdGkfrTNZACS1cF9ZyQjedLl89Vyji55imqa0x9Y0iomyU+g STgnKyFGJe/TmAY+yV5CFVqldicdYgQCfxcvgQnEOtFnU1zh/yaYowC/uo3W7VLX vNomiejuV4dOna09h8dnNBo9pMfDJsrwW4g8STJlnevI4Cbt92Sg4mTqSBqBKylZ rNfVZSwTco9UaPyDf4eVr8MFJckAX7/4ylfP1CzzKIcY58LBPMP8yfVQpOoksnTS bmdN3ei+e1ik65bWscl16dagy9rAEgcU -----END CERTIFICATE-----Generated at Tue Jun 17 23:01:33 2025 by rpki-client