$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft File: 67Vu9aQ9Hla4rmw179-QarhdJ1U.mft (raw, json) Hash identifier: NNbQlcYLwAPQKB8TfqLKpqBJqegP/YvNKclQX5p27nE= Subject key identifier: F4:F4:52:E4:89:BA:EA:D7:79:DC:F2:61:E6:2C:4F:A4:10:6D:D8:A8 Authority key identifier: EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 Certificate issuer: /CN=A91DC8C8/serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft Manifest number: 0215 Signing time: Sat 23 Aug 2025 02:15:38 +0000 Manifest this update: Sat 23 Aug 2025 02:15:38 +0000 Manifest next update: Sat 30 Aug 2025 02:15:38 +0000 Files and hashes: 1: 67Vu9aQ9Hla4rmw179-QarhdJ1U.crl (hash: kmOHCQYaH6f9skNSLtXdzlv56K68ov8bWxsevo9gvMg=) 2: 376CBBEA504411ED83277887C4F9AE02.roa (hash: T+4lg8d9jLKTS/9QxB/dn+qV3gmWtO4Nms49RgwAEAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8C8, serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Validity Not Before: Aug 23 02:15:38 2025 GMT Not After : Aug 30 02:15:38 2025 GMT Subject: CN=68a9244a-eac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e5:49:32:76:f0:af:c6:75:2e:80:9b:79:d6: 4d:50:93:a4:3d:a1:61:aa:8d:26:56:19:cb:ec:92: 08:4f:e1:6c:b8:98:d9:a8:5f:3e:05:e1:55:18:4c: 09:13:79:74:44:2b:68:0f:2a:46:6d:a9:22:27:a8: b5:d1:2a:ae:31:91:bb:1a:3e:5e:b0:2e:65:55:c8: 0c:f1:0f:81:d5:d8:a3:83:61:d1:80:54:ac:94:4b: 9b:88:a8:e1:60:b8:64:8c:c7:a8:ca:40:43:0f:d3: 28:01:33:f6:48:82:a9:e6:31:7f:67:11:11:47:72: 10:c1:b8:c4:02:6d:1d:bf:92:43:22:a3:0e:43:c5: 9b:fe:83:b7:68:a4:9e:2a:d4:ff:1b:ce:eb:23:fa: c7:61:12:9c:c9:db:6c:fa:38:46:1c:93:03:14:32: c4:82:0e:f9:5b:9c:9c:98:f2:0c:ed:7a:33:1a:15: f1:9c:22:e1:3b:af:b6:93:a5:37:d2:81:20:b8:fa: f9:73:39:ba:0b:83:de:00:1e:47:1f:24:44:fe:a7: bc:ed:17:4a:d0:24:d0:dc:c6:a1:c6:af:6d:41:33: 61:2f:93:1d:23:a9:d7:26:aa:f7:85:8c:86:7f:67: 55:f3:25:aa:e5:06:3c:71:9f:ad:00:be:3a:26:8c: ac:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F4:52:E4:89:BA:EA:D7:79:DC:F2:61:E6:2C:4F:A4:10:6D:D8:A8 X509v3 Authority Key Identifier: keyid:EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d0:d9:a5:d2:56:c6:d7:5a:ef:bc:05:33:7a:e2:d7:47:49: 39:df:8c:02:74:e8:cc:1c:6c:8d:5c:db:89:1d:02:83:38:fd: 89:b8:3f:5f:b7:53:58:d2:59:43:0b:5e:28:32:27:18:22:10: 07:91:2c:3b:12:95:cb:c3:5f:1a:80:e3:14:84:4b:b8:a9:d8: a6:61:11:ac:3e:94:30:06:17:13:c5:a4:04:1e:04:21:30:9e: e3:3d:e0:f5:1b:34:d4:65:fc:29:31:08:9d:e1:47:97:ac:6c: 47:b2:fd:24:27:b4:e7:f5:c1:33:fd:d9:5e:3f:7e:5c:fb:3c: 10:82:f0:6d:5c:86:ee:33:ba:ac:26:ed:dd:f7:7d:f6:90:83: 41:a5:c1:94:cb:6d:f8:20:f0:bb:34:94:e7:c7:6b:47:ec:06: c4:9b:29:94:de:ed:41:dd:02:5c:bd:63:ff:43:6c:7c:aa:66: 33:88:92:a6:7b:7c:52:8f:56:ff:e7:b5:e5:be:8d:eb:ae:4b: a7:fd:b9:05:6e:ff:57:c2:af:ba:41:70:91:e3:be:90:71:5a: 60:60:b8:80:bc:7f:5f:e3:96:41:3a:c3:bf:60:1c:06:6f:e1: d1:57:f9:70:ab:ba:81:c4:ea:2c:31:31:bb:66:56:4b:92:a4: 36:ae:95:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QzgxMTAvBgNVBAUTKEVCQjU2RUY1QTQzRDFFNTZCOEFFNkMzNUVGREY5MDZB Qjg1RDI3NTUwHhcNMjUwODIzMDIxNTM4WhcNMjUwODMwMDIxNTM4WjAYMRYwFAYD VQQDEw02OGE5MjQ0YS1lYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uVJMnbwr8Z1LoCbedZNUJOkPaFhqo0mVhnL7JIIT+FsuJjZqF8+BeFVGEwJ E3l0RCtoDypGbakiJ6i10SquMZG7Gj5esC5lVcgM8Q+B1dijg2HRgFSslEubiKjh YLhkjMeoykBDD9MoATP2SIKp5jF/ZxERR3IQwbjEAm0dv5JDIqMOQ8Wb/oO3aKSe KtT/G87rI/rHYRKcydts+jhGHJMDFDLEgg75W5ycmPIM7XozGhXxnCLhO6+2k6U3 0oEguPr5czm6C4PeAB5HHyRE/qe87RdK0CTQ3Mahxq9tQTNhL5MdI6nXJqr3hYyG f2dV8yWq5QY8cZ+tAL46JoysxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPT0UuSJ uurXedzyYeYsT6QQbdioMB8GA1UdIwQYMBaAFOu1bvWkPR5WuK5sNe/fkGq4XSdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhDOC85OTQ1RkRBNDUw M0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhsYTRybXcxNzktUWFyaGRK MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3VnU5YVE5SGxhNHJtdzE3OS1RYXJoZEoxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhDOC85OTQ1RkRBNDUwM0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhs YTRybXcxNzktUWFyaGRKMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk0Nml0lbG11rvvAUzeuLXR0k534wCdOjMHGyNXNuJHQKDOP2JuD9f t1NY0llDC14oMicYIhAHkSw7EpXLw18agOMUhEu4qdimYRGsPpQwBhcTxaQEHgQh MJ7jPeD1GzTUZfwpMQid4UeXrGxHsv0kJ7Tn9cEz/dleP35c+zwQgvBtXIbuM7qs Ju3d9332kINBpcGUy234IPC7NJTnx2tH7AbEmymU3u1B3QJcvWP/Q2x8qmYziJKm e3xSj1b/57Xlvo3rrkun/bkFbv9Xwq+6QXCR476QcVpgYLiAvH9f45ZBOsO/YBwG b+HRV/lwq7qBxOosMTG7ZlZLkqQ2rpVl -----END CERTIFICATE-----Generated at Sun Aug 24 04:56:41 2025 by rpki-client