$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft File: 67Vu9aQ9Hla4rmw179-QarhdJ1U.mft (raw, json) Hash identifier: 18PkFLqjN5U5TYPnkuWwkxNbg70nq4U7IkOne8q6/gU= Subject key identifier: D8:C6:CC:15:D3:1F:D9:53:60:65:8D:47:04:09:7B:8D:6F:C0:9B:3E Authority key identifier: EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 Certificate issuer: /CN=A91DC8C8/serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft Manifest number: 0232 Signing time: Sun 19 Oct 2025 04:08:26 +0000 Manifest this update: Sun 19 Oct 2025 04:08:25 +0000 Manifest next update: Sun 26 Oct 2025 04:08:25 +0000 Files and hashes: 1: 67Vu9aQ9Hla4rmw179-QarhdJ1U.crl (hash: zJ6xzQe5mUm32G1Zyj0mnaVxId5plA8YG2v8e6K41Ks=) 2: 376CBBEA504411ED83277887C4F9AE02.roa (hash: T+4lg8d9jLKTS/9QxB/dn+qV3gmWtO4Nms49RgwAEAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8C8, serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Validity Not Before: Oct 19 04:08:25 2025 GMT Not After : Oct 26 04:08:25 2025 GMT Subject: CN=68f46439-c9da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b4:30:52:17:c1:af:7f:04:38:c3:df:b3:20: 89:d6:70:0b:33:8a:db:6a:48:2c:04:32:bd:96:4a: 5a:74:6e:0e:15:3e:e1:c1:c0:7b:ac:ac:49:cc:2d: 56:57:41:a3:f6:57:e4:d7:a3:c9:97:47:8c:ca:ea: f7:82:6f:8c:c4:65:cc:a2:77:6a:0d:d8:1b:72:80: 5c:bb:ef:aa:85:46:5c:a6:bf:d0:a6:1d:24:0e:d8: e6:91:ad:81:83:86:e2:4d:fe:47:f3:d8:b8:9c:43: 22:6c:be:88:15:ad:d6:0e:36:e7:10:72:6a:d5:c7: 2a:fa:57:8f:a1:b1:98:6a:ad:54:c2:31:73:c8:50: 57:fd:4f:e6:16:59:15:18:70:3a:49:db:b3:7e:65: 1b:1c:cf:3c:5f:4e:1f:1c:4a:7f:b1:c0:7d:30:83: f5:25:9f:f4:f1:9c:fd:dc:12:3f:41:04:bd:cd:07: 9a:74:79:34:ca:f3:93:bf:67:52:09:e9:20:20:e4: 86:93:f7:af:84:76:7d:4a:54:48:7a:06:67:44:4e: 82:24:d3:94:8e:16:c5:63:bd:8c:2c:e7:71:15:47: 6a:9b:35:e1:00:a3:b4:60:2f:b7:18:be:13:86:81: f7:b8:b0:6f:55:32:67:0d:57:4f:3b:44:eb:a9:4f: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C6:CC:15:D3:1F:D9:53:60:65:8D:47:04:09:7B:8D:6F:C0:9B:3E X509v3 Authority Key Identifier: keyid:EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ac:80:43:b5:e9:cf:1a:c7:4d:2e:63:7e:4b:8b:13:c3:70: 2f:86:f3:c5:e3:f2:85:10:39:3e:2f:6f:28:d1:a3:11:b7:30: 6f:5d:51:fa:a9:db:7b:e6:8a:bf:40:4a:61:fa:97:7f:f5:20: 5c:8d:fd:03:6f:1c:a3:05:42:1b:47:b8:08:2e:40:92:11:f4: 48:64:ed:37:6e:15:a8:1b:c4:da:bb:53:54:68:16:da:b3:f2: aa:9f:b4:79:79:38:e3:44:87:b0:c0:0b:01:02:9e:15:52:d9: c6:85:61:01:a8:ea:67:cd:78:f1:d6:a7:81:64:aa:7e:ae:d5: 8b:45:7b:6c:31:02:74:13:72:1b:1e:c6:37:80:23:55:e7:60: c0:a6:75:e6:a9:ea:77:71:7a:13:69:ee:c2:8b:a3:4c:ea:89: 8c:32:80:17:89:d4:10:3e:c6:be:9c:11:8f:59:e7:cc:c5:f3: ad:91:4c:4a:d3:64:f5:c0:ac:b6:96:ff:13:63:76:d5:c9:97: 98:52:e6:da:f2:5d:45:86:d1:34:8b:f6:d2:6e:5b:a9:6c:f3: 73:13:c7:8e:5d:a2:bd:cf:c1:d0:8e:d3:2b:89:f2:78:ab:3d: ea:30:34:da:b3:d8:a6:44:c0:96:d8:63:49:8b:5d:18:01:a5: 0c:ac:d0:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QzgxMTAvBgNVBAUTKEVCQjU2RUY1QTQzRDFFNTZCOEFFNkMzNUVGREY5MDZB Qjg1RDI3NTUwHhcNMjUxMDE5MDQwODI1WhcNMjUxMDI2MDQwODI1WjAYMRYwFAYD VQQDEw02OGY0NjQzOS1jOWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LQwUhfBr38EOMPfsyCJ1nALM4rbakgsBDK9lkpadG4OFT7hwcB7rKxJzC1W V0Gj9lfk16PJl0eMyur3gm+MxGXMondqDdgbcoBcu++qhUZcpr/Qph0kDtjmka2B g4biTf5H89i4nEMibL6IFa3WDjbnEHJq1ccq+lePobGYaq1UwjFzyFBX/U/mFlkV GHA6SduzfmUbHM88X04fHEp/scB9MIP1JZ/08Zz93BI/QQS9zQeadHk0yvOTv2dS CekgIOSGk/evhHZ9SlRIegZnRE6CJNOUjhbFY72MLOdxFUdqmzXhAKO0YC+3GL4T hoH3uLBvVTJnDVdPO0TrqU9c9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjGzBXT H9lTYGWNRwQJe41vwJs+MB8GA1UdIwQYMBaAFOu1bvWkPR5WuK5sNe/fkGq4XSdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhDOC85OTQ1RkRBNDUw M0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhsYTRybXcxNzktUWFyaGRK MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3VnU5YVE5SGxhNHJtdzE3OS1RYXJoZEoxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhDOC85OTQ1RkRBNDUwM0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhs YTRybXcxNzktUWFyaGRKMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXrIBDtenPGsdNLmN+S4sTw3AvhvPF4/KFEDk+L28o0aMRtzBvXVH6 qdt75oq/QEph+pd/9SBcjf0DbxyjBUIbR7gILkCSEfRIZO03bhWoG8Tau1NUaBba s/Kqn7R5eTjjRIewwAsBAp4VUtnGhWEBqOpnzXjx1qeBZKp+rtWLRXtsMQJ0E3Ib HsY3gCNV52DApnXmqep3cXoTae7Ci6NM6omMMoAXidQQPsa+nBGPWefMxfOtkUxK 02T1wKy2lv8TY3bVyZeYUuba8l1FhtE0i/bSblupbPNzE8eOXaK9z8HQjtMrifJ4 qz3qMDTas9imRMCW2GNJi10YAaUMrNBO -----END CERTIFICATE-----Generated at Mon Oct 20 11:36:15 2025 by rpki-client