$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft File: v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft (raw, json) Hash identifier: tNY9YR9lesMAAHLcd9qcroShYQgmh3O2gHCGhvenjxs= Subject key identifier: 1C:75:64:61:FE:B9:2F:7D:7C:B8:6D:C5:13:B1:45:4A:9B:C4:81:B8 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft Manifest number: 01AE Signing time: Sun 29 Jun 2025 02:18:56 +0000 Manifest this update: Sun 29 Jun 2025 02:18:54 +0000 Manifest next update: Sun 06 Jul 2025 02:18:54 +0000 Files and hashes: 1: v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl (hash: P1oha5uYCU9x6aGD4CV489T44jzPLl/67ioHdunfv6w=) 2: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (hash: iJgF3xLl/F7BTTiuttHhI1X4PDcUoYj6A2s1rvrmJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Jun 29 02:18:54 2025 GMT Not After : Jul 6 02:18:54 2025 GMT Subject: CN=6860a28e-7baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0a:7a:61:90:92:dc:af:49:8a:19:88:67:6c: 5c:0b:6d:ac:32:8e:dd:8b:f9:8d:74:57:a8:31:4a: cc:78:66:bb:85:af:e0:eb:97:d7:16:df:3b:88:b8: 40:78:24:c5:ff:18:23:81:f1:a8:b8:e2:17:db:5f: 97:aa:a3:40:43:8d:ce:92:7a:d3:69:bc:b1:9e:7b: 44:01:79:38:5f:6a:ac:a1:2c:91:a9:81:82:72:0d: fb:48:2d:23:d8:c6:09:5c:16:7b:57:91:99:bb:49: b2:44:16:7c:1b:36:31:c9:cd:aa:f5:c7:f6:a3:5f: 0f:89:a3:be:47:fc:01:f5:6f:94:9c:7b:1e:de:02: dc:a7:32:55:3c:5c:22:fb:f3:cf:93:11:29:6e:80: e9:9f:e0:e1:de:99:54:e2:da:16:7e:81:9d:2e:c2: 1d:8e:6c:06:45:5d:82:43:de:65:55:55:ad:4f:fd: c7:e6:93:84:6d:7b:1a:cd:7d:42:57:33:7a:d6:75: 85:91:50:ef:82:b3:24:d6:bc:5d:cd:38:30:02:c5: 4b:9c:16:95:e1:85:e1:9d:cd:3d:6f:40:55:28:71: 3a:e0:bd:30:50:6a:a9:59:82:d6:5d:5b:7f:e0:23: e9:44:34:6b:fc:b6:a4:62:e0:1d:92:2d:ad:66:8f: c7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:75:64:61:FE:B9:2F:7D:7C:B8:6D:C5:13:B1:45:4A:9B:C4:81:B8 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:53:18:6f:98:be:46:2c:0b:4a:0f:7d:e8:1d:1f:27:e3:02: 25:86:52:81:0a:1e:79:65:52:ab:e1:bf:83:e6:78:18:9b:c1: 60:bd:42:e6:cf:a7:c3:aa:d0:f2:3e:ff:1c:81:4d:6a:51:11: 9b:24:82:ca:8d:87:14:17:e3:1a:b9:34:a1:bd:29:79:9c:f5: dd:af:7f:d3:e7:df:dd:b3:4b:9f:47:20:bd:c8:4c:f4:8c:4c: 8d:ee:2d:7e:ab:b8:38:91:07:7e:b8:15:7f:30:18:70:b3:df: 65:78:ca:fb:fb:46:c2:4e:44:35:33:70:f2:3d:f6:52:8d:1a: c6:fa:2a:23:3e:94:f7:c8:75:5f:06:5c:ef:26:53:82:b0:c3: d3:89:bf:5b:52:c1:ea:ec:fe:5a:75:79:3b:58:15:b8:28:85: 11:fc:09:dd:7b:d9:9f:e0:18:3d:3e:ab:17:c6:de:f7:78:47: cf:0c:11:e6:fc:8e:17:ee:29:77:2a:4e:0a:b1:ac:fd:4e:1a: 22:ef:d1:93:a2:c7:b0:02:59:76:0c:3d:6c:8a:20:33:ad:ac: a5:57:7f:ae:a9:f2:41:18:09:f2:f0:b8:4b:e0:00:d8:c7:6c: 9b:ca:a5:ec:a6:a7:1b:4e:8c:e2:ad:e2:4e:84:83:bc:76:aa: 5a:53:71:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjUwNjI5MDIxODU0WhcNMjUwNzA2MDIxODU0WjAYMRYwFAYD VQQDEw02ODYwYTI4ZS03YmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gp6YZCS3K9JihmIZ2xcC22sMo7di/mNdFeoMUrMeGa7ha/g65fXFt87iLhA eCTF/xgjgfGouOIX21+XqqNAQ43OknrTabyxnntEAXk4X2qsoSyRqYGCcg37SC0j 2MYJXBZ7V5GZu0myRBZ8GzYxyc2q9cf2o18PiaO+R/wB9W+UnHse3gLcpzJVPFwi +/PPkxEpboDpn+Dh3plU4toWfoGdLsIdjmwGRV2CQ95lVVWtT/3H5pOEbXsazX1C VzN61nWFkVDvgrMk1rxdzTgwAsVLnBaV4YXhnc09b0BVKHE64L0wUGqpWYLWXVt/ 4CPpRDRr/LakYuAdki2tZo/HIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBx1ZGH+ uS99fLhtxROxRUqbxIG4MB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZGNS8yNzIwNDM5MkMxNzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tl NEZxeUczSFNCYXRCamh1RFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQUxhvmL5GLAtKD33oHR8n4wIlhlKBCh55ZVKr4b+D5ngYm8FgvULm z6fDqtDyPv8cgU1qURGbJILKjYcUF+MauTShvSl5nPXdr3/T59/ds0ufRyC9yEz0 jEyN7i1+q7g4kQd+uBV/MBhws99leMr7+0bCTkQ1M3DyPfZSjRrG+iojPpT3yHVf BlzvJlOCsMPTib9bUsHq7P5adXk7WBW4KIUR/Ande9mf4Bg9PqsXxt73eEfPDBHm /I4X7il3Kk4Ksaz9Thoi79GTosewAll2DD1siiAzraylV3+uqfJBGAny8LhL4ADY x2ybyqXspqcbTozireJOhIO8dqpaU3Gq -----END CERTIFICATE-----Generated at Tue Jul 1 00:36:59 2025 by rpki-client