$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft File: 67Vu9aQ9Hla4rmw179-QarhdJ1U.mft (raw, json) Hash identifier: eMX4f86N5HC/VW4k+V5IAi+aJydTCBwLGSkt3TU211c= Subject key identifier: 8E:32:AE:59:32:11:37:36:1F:61:3C:83:BB:37:8C:CA:2A:AE:04:5B Authority key identifier: EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 Certificate issuer: /CN=A91DC8C8/serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft Manifest number: 01FB Signing time: Thu 03 Jul 2025 02:29:49 +0000 Manifest this update: Thu 03 Jul 2025 02:29:49 +0000 Manifest next update: Thu 10 Jul 2025 02:29:49 +0000 Files and hashes: 1: 67Vu9aQ9Hla4rmw179-QarhdJ1U.crl (hash: 9gGNnzQyNOnklSE8/GbH0DG/jgCKnGbUnOM38SVysFY=) 2: 376CBBEA504411ED83277887C4F9AE02.roa (hash: T+4lg8d9jLKTS/9QxB/dn+qV3gmWtO4Nms49RgwAEAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8C8, serialNumber=EBB56EF5A43D1E56B8AE6C35EFDF906AB85D2755 Validity Not Before: Jul 3 02:29:49 2025 GMT Not After : Jul 10 02:29:49 2025 GMT Subject: CN=6865eb1d-bf29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:69:13:24:74:82:11:93:91:1d:db:1a:88: f2:32:69:68:db:fc:47:e2:1f:39:62:9e:9e:6f:7e: af:20:1b:8f:40:32:fc:e3:67:a1:66:2c:d9:62:92: 2f:6b:ec:95:b7:0f:af:bb:07:12:e3:67:d4:76:9b: 82:49:c1:06:e2:58:25:33:d3:cf:f5:14:f2:9e:06: 48:e2:40:77:dd:62:7d:04:d0:00:2b:58:61:65:c9: a4:61:a1:4e:ed:d0:d9:c3:8b:4d:10:ab:6f:b6:5d: ce:82:b3:24:e7:1e:a8:a9:c8:57:6d:55:b2:35:2d: 5f:2e:8c:82:81:aa:a1:77:3c:db:68:74:31:51:e6: 87:b7:68:de:d2:4f:c1:4e:e2:70:41:70:64:4c:96: 82:6e:ac:02:2c:52:35:6c:be:96:c6:e4:8f:5b:f7: f9:8d:eb:82:00:be:6c:b2:00:82:2f:4e:8f:3b:97: 0a:a0:9b:4d:28:f3:8e:58:a3:c0:76:5f:d3:8a:ab: 77:d7:ae:4a:d8:cd:cb:01:53:c3:41:05:ba:7d:72: 54:76:83:a8:bf:c6:e7:87:ea:84:a0:25:48:75:65: e5:ca:c5:6e:65:25:4e:a5:05:8e:4c:e8:1b:04:2e: 8f:93:bf:5a:de:dc:7f:4c:6a:55:e1:a9:42:27:c1: 0b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:32:AE:59:32:11:37:36:1F:61:3C:83:BB:37:8C:CA:2A:AE:04:5B X509v3 Authority Key Identifier: keyid:EB:B5:6E:F5:A4:3D:1E:56:B8:AE:6C:35:EF:DF:90:6A:B8:5D:27:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67Vu9aQ9Hla4rmw179-QarhdJ1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8C8/9945FDA4503F11EDB25DF66AC4F9AE02/67Vu9aQ9Hla4rmw179-QarhdJ1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:c0:00:1c:c0:f4:50:d2:f6:d4:0b:35:5d:84:27:ef:d2:16: 41:86:29:1f:f3:0f:62:c8:09:44:f2:cf:45:e4:28:4c:0f:d7: 7e:5a:e0:6a:e7:c9:70:d2:68:c3:13:f2:7c:1a:fa:62:87:dc: 63:de:52:4c:a4:1d:47:37:c9:13:78:29:24:b5:60:af:71:60: 43:d8:eb:89:f1:1c:14:9a:8c:09:19:1f:8b:de:7b:2d:3b:e0: 7c:53:d7:0e:8c:22:1b:91:77:32:f7:d9:fe:6a:f1:d7:bc:93: 19:71:7e:65:3a:16:63:20:11:ee:79:e0:f6:a8:e2:68:3c:09: 84:d4:76:b6:64:5e:81:4e:ad:6d:f7:1a:02:37:3f:80:c3:d7: e8:50:c8:fe:75:26:e4:61:b1:13:2d:56:35:66:ed:ad:51:33: cd:40:2e:d1:c7:b8:58:d6:da:e2:69:e1:ed:1e:81:7c:0f:73: c8:3a:53:84:e2:42:95:90:04:34:b5:ae:07:80:76:dc:85:41: 05:10:9c:e1:83:8d:c2:e5:2c:94:1c:62:f0:5e:9f:af:fc:f5: e5:2d:ac:50:19:5c:4b:e2:f8:f0:ca:46:d1:72:4b:e6:fa:b5: 2e:ed:7a:45:34:11:f1:c2:d4:c4:79:43:80:59:24:38:bb:bf: 3f:bd:f5:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QzgxMTAvBgNVBAUTKEVCQjU2RUY1QTQzRDFFNTZCOEFFNkMzNUVGREY5MDZB Qjg1RDI3NTUwHhcNMjUwNzAzMDIyOTQ5WhcNMjUwNzEwMDIyOTQ5WjAYMRYwFAYD VQQDEw02ODY1ZWIxZC1iZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzxpEyR0ghGTkR3bGojyMmlo2/xH4h85Yp6eb36vIBuPQDL842ehZizZYpIv a+yVtw+vuwcS42fUdpuCScEG4lglM9PP9RTyngZI4kB33WJ9BNAAK1hhZcmkYaFO 7dDZw4tNEKtvtl3OgrMk5x6oqchXbVWyNS1fLoyCgaqhdzzbaHQxUeaHt2je0k/B TuJwQXBkTJaCbqwCLFI1bL6WxuSPW/f5jeuCAL5ssgCCL06PO5cKoJtNKPOOWKPA dl/Tiqt3165K2M3LAVPDQQW6fXJUdoOov8bnh+qEoCVIdWXlysVuZSVOpQWOTOgb BC6Pk79a3tx/TGpV4alCJ8ELsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4yrlky ETc2H2E8g7s3jMoqrgRbMB8GA1UdIwQYMBaAFOu1bvWkPR5WuK5sNe/fkGq4XSdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhDOC85OTQ1RkRBNDUw M0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhsYTRybXcxNzktUWFyaGRK MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3VnU5YVE5SGxhNHJtdzE3OS1RYXJoZEoxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhDOC85OTQ1RkRBNDUwM0YxMUVEQjI1REY2NkFDNEY5QUUwMi82N1Z1OWFROUhs YTRybXcxNzktUWFyaGRKMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdwAAcwPRQ0vbUCzVdhCfv0hZBhikf8w9iyAlE8s9F5ChMD9d+WuBq 58lw0mjDE/J8Gvpih9xj3lJMpB1HN8kTeCkktWCvcWBD2OuJ8RwUmowJGR+L3nst O+B8U9cOjCIbkXcy99n+avHXvJMZcX5lOhZjIBHueeD2qOJoPAmE1Ha2ZF6BTq1t 9xoCNz+Aw9foUMj+dSbkYbETLVY1Zu2tUTPNQC7Rx7hY1triaeHtHoF8D3PIOlOE 4kKVkAQ0ta4HgHbchUEFEJzhg43C5SyUHGLwXp+v/PXlLaxQGVxL4vjwykbRckvm +rUu7XpFNBHxwtTEeUOAWSQ4u78/vfWR -----END CERTIFICATE-----Generated at Thu Jul 3 07:11:08 2025 by rpki-client