$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft File: 67Vu9aQ9Hla4rmw179-QarhdJ1U.mft (raw, json) Hash identifier: 7BMeCOmvNmo5Ho7BZFaZVXbZLGE0+r2d+vETJUuZsak= Subject key identifier: D0:15:03:49:93:8D:0B:6C:8C:10:3E:CC:4D:93:52:BC:36:A8:6A:69 Authority key identifier: EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 Certificate issuer: /CN=A91DC8C8/serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft Manifest number: 01E2 Signing time: Tue 13 May 2025 01:57:54 +0000 Manifest this update: Tue 13 May 2025 01:57:53 +0000 Manifest next update: Tue 20 May 2025 01:57:53 +0000 Files and hashes: 1: 67Vu9aQ9Hla4rmw179-QarhdJ1U.crl (hash: 0x9I3LGXN5DzEz9biZoCRMs1ZaYsJrwRTuIt7YQ20jg=) 2: 376CBBEA504411ED83277887C4F9AE02.roa (hash: T+4lg8d9jLKTS/9QxB/dn+qV3gmWtO4Nms49RgwAEAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8C8, serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Validity Not Before: May 13 01:57:53 2025 GMT Not After : May 20 01:57:53 2025 GMT Subject: CN=6822a722-ebbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a3:5d:ff:1d:ad:0f:56:ca:38:a0:73:0f:ea: aa:b9:0b:2c:0a:67:1e:c3:77:62:78:a2:2d:f8:88: 45:20:09:42:73:d7:4e:9e:96:ee:04:ea:cc:fe:0c: 3d:61:47:23:ef:5c:0c:64:5e:72:90:d8:a9:ca:bd: 75:25:19:bc:a6:84:1b:83:0a:92:65:f7:55:41:0f: d2:ac:cf:56:10:99:83:77:aa:0b:b0:13:a4:62:63: 56:3b:0f:a2:cd:25:4b:cf:8e:81:e1:a1:6b:03:ed: 20:8a:6b:25:c0:89:e5:a6:a0:c7:c1:5f:7e:2b:b2: 6f:fe:a8:1a:7d:d8:62:34:e5:c3:26:b2:96:c0:80: 75:ee:3a:da:60:49:2f:67:df:c1:79:e8:aa:8c:13: 53:c8:b1:99:e2:e0:24:a1:b2:6f:53:ea:9c:8f:ae: 3c:fa:50:ed:38:91:7e:fd:b0:ea:c4:d4:8b:7d:86: 8f:12:f0:34:35:62:91:4a:40:ed:e7:88:14:cd:cf: f2:48:cf:05:21:ff:75:f8:d0:a5:b2:3c:1a:f3:cd: 5e:03:97:12:c2:e0:b2:63:fe:a1:80:cc:6b:b4:e7: b7:ef:09:d1:92:36:c1:e0:f1:6e:e5:3f:8c:f6:06: b8:2f:62:3c:cb:1a:d3:c5:f8:8d:5e:a6:7e:b0:8c: f6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:15:03:49:93:8D:0B:6C:8C:10:3E:CC:4D:93:52:BC:36:A8:6A:69 X509v3 Authority Key Identifier: keyid:EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a5:d0:c5:61:74:c5:a0:53:86:c3:7a:98:2b:ed:90:ca:b3: 98:d2:03:b6:a8:54:2b:23:85:66:84:b3:79:c8:98:82:68:ef: 04:13:a4:37:7f:8d:14:51:c6:86:6b:c6:94:05:ad:c9:4a:dd: 0e:d1:a8:f9:f9:3f:ef:d5:c4:8d:3a:38:13:2e:1a:2d:67:95: ed:df:53:0d:d4:29:b9:5f:15:1a:a7:43:59:16:af:ad:38:ce: aa:c6:62:0e:6d:78:b9:63:6e:60:92:bb:7a:3b:e0:45:81:e9: 78:14:8d:cb:07:38:33:a3:16:70:6b:95:00:9d:42:1c:8a:c6: 49:2b:8d:3c:f7:b1:7e:06:86:1f:19:8b:7c:cd:3e:a1:84:dc: 89:88:13:20:eb:75:09:11:bc:dc:02:e1:fc:b4:50:1d:a8:e3: cb:38:f8:82:ec:c6:37:77:bc:1e:50:51:76:ce:a7:ef:09:f2: 49:a1:11:24:c2:9d:4d:19:79:b6:90:83:55:ed:6b:56:3d:e1: ec:c9:0e:ac:84:ec:8c:81:68:33:33:37:da:4c:d3:93:42:e4: 86:2c:85:df:b7:be:69:1a:e9:39:ae:fd:9e:1d:96:2d:b9:22: ab:22:75:a4:cf:14:d9:21:45:3e:56:5f:8c:10:3b:54:86:3b: ca:d9:e2:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QzgxMTAvBgNVBAUTKEVCQjU2RUY1QTQzRDFFNTZCOEFFNkMzNUVGREY5MDZB Qjg1RDI3NTUwHhcNMjUwNTEzMDE1NzUzWhcNMjUwNTIwMDE1NzUzWjAYMRYwFAYD VQQDEw02ODIyYTcyMi1lYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qNd/x2tD1bKOKBzD+qquQssCmcew3dieKIt+IhFIAlCc9dOnpbuBOrM/gw9 YUcj71wMZF5ykNipyr11JRm8poQbgwqSZfdVQQ/SrM9WEJmDd6oLsBOkYmNWOw+i zSVLz46B4aFrA+0gimslwInlpqDHwV9+K7Jv/qgafdhiNOXDJrKWwIB17jraYEkv Z9/BeeiqjBNTyLGZ4uAkobJvU+qcj648+lDtOJF+/bDqxNSLfYaPEvA0NWKRSkDt 54gUzc/ySM8FIf91+NClsjwa881eA5cSwuCyY/6hgMxrtOe37wnRkjbB4PFu5T+M 9ga4L2I8yxrTxfiNXqZ+sIz26wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAVA0mT jQtsjBA+zE2TUrw2qGppMB8GA1UdIwQYMBaAFOu1bvWkPR5WuK5sNe/fkGq4XSdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhDOC85OTQ1RkRBNDUw M0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhsYTRybXcxNzktUWFyaGRK MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3VnU5YVE5SGxhNHJtdzE3OS1RYXJoZEoxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhDOC85OTQ1RkRBNDUwM0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhs YTRybXcxNzktUWFyaGRKMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2pdDFYXTFoFOGw3qYK+2QyrOY0gO2qFQrI4VmhLN5yJiCaO8EE6Q3 f40UUcaGa8aUBa3JSt0O0aj5+T/v1cSNOjgTLhotZ5Xt31MN1Cm5XxUap0NZFq+t OM6qxmIObXi5Y25gkrt6O+BFgel4FI3LBzgzoxZwa5UAnUIcisZJK40897F+BoYf GYt8zT6hhNyJiBMg63UJEbzcAuH8tFAdqOPLOPiC7MY3d7weUFF2zqfvCfJJoREk wp1NGXm2kINV7WtWPeHsyQ6shOyMgWgzMzfaTNOTQuSGLIXft75pGuk5rv2eHZYt uSKrInWkzxTZIUU+Vl+MEDtUhjvK2eKf -----END CERTIFICATE-----Generated at Wed May 14 16:09:10 2025 by rpki-client