$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: LmuuqtPnzeNMmGhfOjpCmepKDeITHck1Yk3Ky9T8WBo= Subject key identifier: E3:D9:30:9C:AA:EB:B8:C5:3B:92:E2:3D:10:0D:F1:B9:D9:38:6E:03 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01C6 Signing time: Sat 05 Jul 2025 03:18:30 +0000 Manifest this update: Sat 05 Jul 2025 03:18:30 +0000 Manifest next update: Sat 12 Jul 2025 03:18:30 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: fMuf5QDJSB3CpnqHvCwtBw8M82ZkOlW+stTQXwsgSYw=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Jul 5 03:18:30 2025 GMT Not After : Jul 12 03:18:30 2025 GMT Subject: CN=68689986-2619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a7:31:27:1c:f6:bd:49:c8:cd:e2:cd:75:b9: 38:5e:c6:fd:e1:88:06:5f:27:a2:85:36:7b:0a:50: 0a:1a:43:d8:7d:ce:41:67:5a:a0:97:a7:e7:52:f8: 49:d2:e8:c3:f6:c0:58:b3:91:ab:b3:f5:30:39:6c: e2:97:e7:db:30:28:e4:3c:9b:db:b4:c8:76:31:84: 4d:5b:12:02:96:4a:2e:44:f6:e6:d1:27:97:59:8f: ed:c3:e7:6a:6e:a7:e1:7f:ba:64:19:da:a9:66:6d: d8:0d:30:b3:c7:bb:97:77:b9:60:7d:c1:ce:29:9a: 65:12:86:07:2d:db:14:b4:52:5f:a0:32:6b:44:96: f2:ea:c5:8d:0d:95:aa:53:8a:7b:9e:18:59:b6:0e: b0:25:aa:36:25:73:cf:6b:48:1c:2b:51:e3:5e:a6: cd:17:39:d2:d3:fd:7c:0d:dc:d6:c7:d8:43:3a:ae: 6e:30:1c:07:72:f4:c4:3f:9e:90:81:9c:2d:c7:ff: d9:71:a0:3f:ef:b7:ea:17:95:b8:f1:1e:47:0d:57: ad:be:5e:b8:b2:b6:ad:ef:ce:1f:5a:9d:83:f6:af: 34:7c:8f:b3:57:07:e8:a9:2d:2f:03:58:00:74:83: 1a:3c:81:c2:5d:cf:c5:c6:e1:0a:65:7d:0c:dd:72: fc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D9:30:9C:AA:EB:B8:C5:3B:92:E2:3D:10:0D:F1:B9:D9:38:6E:03 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ac:6d:8d:96:20:4e:b3:e6:98:02:c9:64:87:7e:67:41:37: 7b:80:4a:34:c3:7e:98:21:89:a4:8c:4a:4b:7f:51:bb:1b:e3: 51:f1:bd:dc:42:f1:bc:80:35:c2:7d:b6:60:68:2a:e8:87:c0: 00:6c:aa:31:6c:87:7b:4c:73:8b:6c:97:92:1e:c1:3a:f7:15: be:2d:30:74:82:97:ef:a3:f5:15:fe:48:d0:08:62:48:f9:91: fd:8d:88:32:1d:4e:9b:3c:85:80:7f:90:58:c0:f5:86:b9:b2: 96:a1:51:64:e4:d6:c0:94:a1:e0:93:00:08:48:ad:85:ad:bb: e8:b2:82:55:a5:2f:c4:a6:36:e4:df:40:14:59:90:03:cf:cf: 92:df:27:63:95:01:0f:a2:eb:9d:b1:4d:5e:43:86:6f:ae:ad: a5:c1:14:40:42:5d:f8:a1:61:e9:a4:90:39:4d:47:79:7d:1c: 94:a2:33:11:3b:13:80:31:12:40:0c:cb:69:33:81:50:e4:8a: 34:e4:2f:62:b4:75:69:cf:da:0c:c6:61:3f:0b:e7:16:07:d1: 41:ef:99:db:1b:fa:d9:84:e0:f6:af:ca:80:b4:5e:a3:7f:6c: 97:cc:bf:f7:9b:9a:7e:cb:93:8d:af:dc:18:93:ea:3e:02:89: 4e:5c:0b:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwNzA1MDMxODMwWhcNMjUwNzEyMDMxODMwWjAYMRYwFAYD VQQDEw02ODY4OTk4Ni0yNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6KcxJxz2vUnIzeLNdbk4Xsb94YgGXyeihTZ7ClAKGkPYfc5BZ1qgl6fnUvhJ 0ujD9sBYs5Grs/UwOWzil+fbMCjkPJvbtMh2MYRNWxIClkouRPbm0SeXWY/tw+dq bqfhf7pkGdqpZm3YDTCzx7uXd7lgfcHOKZplEoYHLdsUtFJfoDJrRJby6sWNDZWq U4p7nhhZtg6wJao2JXPPa0gcK1HjXqbNFznS0/18DdzWx9hDOq5uMBwHcvTEP56Q gZwtx//ZcaA/77fqF5W48R5HDVetvl64srat784fWp2D9q80fI+zVwfoqS0vA1gA dIMaPIHCXc/FxuEKZX0M3XL8dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPZMJyq 67jFO5LiPRAN8bnZOG4DMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxrG2NliBOs+aYAslkh35nQTd7gEo0w36YIYmkjEpLf1G7G+NR8b3c QvG8gDXCfbZgaCroh8AAbKoxbId7THOLbJeSHsE69xW+LTB0gpfvo/UV/kjQCGJI +ZH9jYgyHU6bPIWAf5BYwPWGubKWoVFk5NbAlKHgkwAISK2FrbvosoJVpS/Epjbk 30AUWZADz8+S3ydjlQEPouudsU1eQ4Zvrq2lwRRAQl34oWHppJA5TUd5fRyUojMR OxOAMRJADMtpM4FQ5Io05C9itHVpz9oMxmE/C+cWB9FB75nbG/rZhOD2r8qAtF6j f2yXzL/3m5p+y5ONr9wYk+o+AolOXAvk -----END CERTIFICATE-----Generated at Sat Jul 5 19:04:59 2025 by rpki-client