$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft File: v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft (raw, json) Hash identifier: eZmmuMjRLqbKQu3ChykNlU6yLSxwSD1lTundlJSSqIQ= Subject key identifier: 2B:95:7C:90:C0:DF:62:8F:A5:56:F0:8A:65:CA:BA:54:7F:E9:91:76 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft Manifest number: 01CA Signing time: Sat 23 Aug 2025 02:59:35 +0000 Manifest this update: Sat 23 Aug 2025 02:59:34 +0000 Manifest next update: Sat 30 Aug 2025 02:59:34 +0000 Files and hashes: 1: v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl (hash: GX9Dq4y8BIfLGuFjAWGW8Mngut01HUlfACDs21zp/aA=) 2: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (hash: iJgF3xLl/F7BTTiuttHhI1X4PDcUoYj6A2s1rvrmJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Aug 23 02:59:34 2025 GMT Not After : Aug 30 02:59:34 2025 GMT Subject: CN=68a92e97-0aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:99:44:c2:9f:53:33:db:3e:82:39:89:ce:14: 9f:fc:68:54:04:ea:83:cb:b7:9a:38:14:22:02:b4: ed:b9:36:8f:0b:b1:a3:67:bf:03:aa:fa:5f:a0:9e: 0e:1f:6c:ad:04:8b:89:ff:e9:0e:ca:70:d1:26:64: f8:56:35:89:32:59:53:b0:3f:90:f1:af:54:15:52: c1:18:07:32:a4:fc:3c:d4:42:bd:62:36:57:e6:d7: 36:6e:9d:18:7e:39:60:76:ed:18:52:82:9c:58:80: 06:83:8b:21:53:60:da:50:11:bf:fb:1d:13:fd:31: 56:49:73:30:65:13:25:06:94:14:27:b0:58:7d:04: 91:3d:6a:ed:cf:cb:5c:67:93:76:91:02:33:87:57: eb:d5:84:18:e4:20:c3:f0:41:e5:f9:6d:ea:89:c5: 3e:cf:e5:1c:9e:b3:01:56:fa:07:83:c1:8a:c3:16: 20:9e:3e:4c:b2:37:44:96:ee:4c:27:03:51:b4:15: 2b:c8:b7:7a:3b:99:a7:91:12:75:02:0f:02:bb:fb: 53:43:84:77:40:71:17:22:38:1f:6a:db:dc:5d:cd: b5:03:10:eb:4e:6d:79:e7:b1:bc:d1:55:24:25:78: 92:a3:db:45:9b:f2:5a:19:a0:4f:8f:5d:54:71:d1: 23:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:95:7C:90:C0:DF:62:8F:A5:56:F0:8A:65:CA:BA:54:7F:E9:91:76 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ca:8b:c8:85:1a:7c:30:7b:e7:36:22:96:4b:c0:a0:bb:14: 36:e7:4b:fb:5b:19:c4:de:85:f7:5f:f9:95:bf:7c:ac:0c:46: 5b:98:7b:80:22:ab:0c:ad:1d:4c:b3:83:69:88:99:bc:d2:50: fa:8d:76:6b:d9:55:f4:a8:73:1b:4a:2d:30:09:83:d0:68:a7: 4e:7b:88:7d:1f:86:89:85:cd:fa:a4:8a:53:ce:14:de:d5:cd: 35:a4:ba:4e:a3:96:d3:0f:eb:42:5f:41:df:bc:35:fe:09:4b: 4d:cc:7e:6e:08:6d:95:59:cf:b2:4b:1f:ec:11:35:f4:07:be: 42:4c:26:23:65:84:2c:4e:30:99:8e:2c:aa:ab:f6:bd:ea:f2: ba:e2:24:f3:35:fd:03:73:4e:4a:90:cc:ad:bb:b8:e6:2f:37: 82:78:85:ce:2e:86:d0:22:37:10:85:27:6c:77:30:ca:46:7f: 57:df:74:7d:92:b8:da:84:3f:34:30:32:bb:f5:42:62:06:cb: 14:5d:c6:c1:cb:70:84:3c:ec:a3:79:01:e9:4a:ec:8b:b5:15: 72:28:dc:0c:bc:7f:db:3e:6b:7e:02:41:dc:0a:ba:c9:68:bc: 9b:66:54:11:23:c0:34:53:b4:7b:cf:6e:30:21:e6:49:be:69: a0:82:ca:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjUwODIzMDI1OTM0WhcNMjUwODMwMDI1OTM0WjAYMRYwFAYD VQQDEw02OGE5MmU5Ny0wYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0plEwp9TM9s+gjmJzhSf/GhUBOqDy7eaOBQiArTtuTaPC7GjZ78DqvpfoJ4O H2ytBIuJ/+kOynDRJmT4VjWJMllTsD+Q8a9UFVLBGAcypPw81EK9YjZX5tc2bp0Y fjlgdu0YUoKcWIAGg4shU2DaUBG/+x0T/TFWSXMwZRMlBpQUJ7BYfQSRPWrtz8tc Z5N2kQIzh1fr1YQY5CDD8EHl+W3qicU+z+UcnrMBVvoHg8GKwxYgnj5MsjdElu5M JwNRtBUryLd6O5mnkRJ1Ag8Cu/tTQ4R3QHEXIjgfatvcXc21AxDrTm1557G80VUk JXiSo9tFm/JaGaBPj11UcdEjiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuVfJDA 32KPpVbwimXKulR/6ZF2MB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZGNS8yNzIwNDM5MkMxNzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tl NEZxeUczSFNCYXRCamh1RFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoyovIhRp8MHvnNiKWS8CguxQ250v7WxnE3oX3X/mVv3ysDEZbmHuA IqsMrR1Ms4NpiJm80lD6jXZr2VX0qHMbSi0wCYPQaKdOe4h9H4aJhc36pIpTzhTe 1c01pLpOo5bTD+tCX0HfvDX+CUtNzH5uCG2VWc+ySx/sETX0B75CTCYjZYQsTjCZ jiyqq/a96vK64iTzNf0Dc05KkMytu7jmLzeCeIXOLobQIjcQhSdsdzDKRn9X33R9 krjahD80MDK79UJiBssUXcbBy3CEPOyjeQHpSuyLtRVyKNwMvH/bPmt+AkHcCrrJ aLybZlQRI8A0U7R7z24wIeZJvmmggspW -----END CERTIFICATE-----Generated at Sat Aug 23 21:03:30 2025 by rpki-client