$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft File: 76QjuvW_0YkxbmUDHozq9aP_oUs.mft (raw, json) Hash identifier: ci6EaIv4KaiUDsBUSrSX/qtxbjRURZwB5FlMHeTFzOs= Subject key identifier: 72:01:65:0F:68:F5:82:63:24:E6:6E:18:66:3D:6D:6C:50:D9:2F:FD Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B Certificate issuer: /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft Manifest number: 32 Signing time: Thu 03 Jul 2025 07:55:13 +0000 Manifest this update: Thu 03 Jul 2025 07:55:13 +0000 Manifest next update: Thu 10 Jul 2025 07:55:13 +0000 Files and hashes: 1: 76QjuvW_0YkxbmUDHozq9aP_oUs.crl (hash: uLVlHQ9fFoaOd71YBvuyEx2eP+VOglzlDMN0lq2FtQU=) 2: DB5AB9A0195A11F081485C3AC4F9AE02.roa (hash: JaGf75N3pf7IqU+djnr2Hy5ZxGye9c0JY8fFDo/3ks0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Validity Not Before: Jul 3 07:55:13 2025 GMT Not After : Jul 10 07:55:13 2025 GMT Subject: CN=68663761-bfbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f1:86:cf:15:72:c6:e9:76:29:37:1d:33:cd: 7d:ea:b0:86:f4:72:ea:66:de:dd:3c:8e:37:1a:72: c1:9f:70:3e:81:8f:ab:e5:f0:71:ad:15:76:79:9b: ea:53:ce:93:d7:ea:62:2f:74:6b:55:94:21:5a:ba: 28:e8:78:22:f7:8b:00:1d:4d:a0:79:dc:9b:f2:a8: 6d:cf:5c:62:43:78:b1:66:ea:da:af:cb:26:a4:16: c7:3b:45:1c:1a:00:66:32:6f:ef:79:12:37:64:ed: d3:eb:08:ca:9b:5e:3e:d1:0a:1d:5e:b5:d6:85:97: 32:39:85:68:9f:c1:0b:2d:ca:1d:56:95:a6:a0:99: b0:08:31:95:14:02:c9:d7:7e:07:5e:b7:79:54:38: 58:fc:3c:bb:bf:d3:0e:cf:e8:33:ed:87:46:91:fb: 24:64:52:a6:a3:bd:05:59:0f:84:ce:b0:65:f5:3c: 20:11:22:7d:ce:a4:33:34:a3:ed:0d:bb:61:a2:13: 98:3a:f9:f0:55:c1:30:2d:d2:81:08:b3:5d:f4:06: ec:76:03:05:ab:23:cc:1d:86:bc:c4:4e:4c:12:e8: 9e:39:ab:f2:53:ab:26:d5:fe:5c:9f:2a:62:1e:41: 82:fb:a7:be:d9:4d:95:b9:0a:4e:1d:08:fc:e5:c3: 08:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:01:65:0F:68:F5:82:63:24:E6:6E:18:66:3D:6D:6C:50:D9:2F:FD X509v3 Authority Key Identifier: keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:37:b5:16:3f:17:fd:34:d2:d9:b3:d0:4a:e0:2a:29:7e:af: ed:62:0c:89:40:66:d0:02:9a:d1:ba:d4:6d:73:8b:11:f3:29: f4:15:27:a8:b7:af:d5:77:bb:22:9b:bc:f1:d0:37:4d:2d:da: 40:d8:f6:84:fb:bd:02:2f:c7:1d:44:b2:7a:d3:26:11:d0:b9: 1c:94:44:4c:f5:cc:c3:c8:f8:2e:81:41:4e:25:09:ec:0b:65: ff:be:85:7e:60:1a:22:25:23:dd:ff:c9:d2:da:61:59:a6:35: 90:07:2a:24:ef:26:0e:69:ca:c2:0c:44:f2:46:fb:5b:6a:92: 7a:48:44:2a:35:28:b5:7d:8d:c7:7f:71:53:82:25:6b:47:c8: 1b:67:7b:4c:0a:d8:0e:ae:ad:f5:b6:7a:2d:46:e4:d3:8d:98: 92:d5:3e:0a:50:34:93:5f:7a:4d:d8:57:57:a9:59:ce:f5:c2: 6d:c8:ba:d5:84:e0:c4:72:34:3c:4c:9c:4e:ea:9c:2a:68:17: eb:cc:61:68:08:52:2e:e7:d7:ca:66:d4:14:32:6f:5c:99:ac: eb:65:bf:d1:61:e7:ae:b9:07:a0:61:75:bb:c2:ff:b1:3b:1a: a4:57:ea:26:f1:8e:16:eb:02:14:9a:5c:37:5b:3b:6f:60:b7: 1a:b8:7d:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjY0QzExMC8GA1UEBRMoRUZBNDIzQkFGNUJGRDE4OTMxNkU2NTAzMUU4Q0VBRjVB M0ZGQTE0QjAeFw0yNTA3MDMwNzU1MTNaFw0yNTA3MTAwNzU1MTNaMBgxFjAUBgNV BAMTDTY4NjYzNzYxLWJmYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC48YbPFXLG6XYpNx0zzX3qsIb0cupm3t08jjcacsGfcD6Bj6vl8HGtFXZ5m+pT zpPX6mIvdGtVlCFauijoeCL3iwAdTaB53JvyqG3PXGJDeLFm6tqvyyakFsc7RRwa AGYyb+95Ejdk7dPrCMqbXj7RCh1etdaFlzI5hWifwQstyh1WlaagmbAIMZUUAsnX fgdet3lUOFj8PLu/0w7P6DPth0aR+yRkUqajvQVZD4TOsGX1PCARIn3OpDM0o+0N u2GiE5g6+fBVwTAt0oEIs130Bux2AwWrI8wdhrzETkwS6J45q/JTqybV/lyfKmIe QYL7p77ZTZW5Ck4dCPzlwwhFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcgFlD2j1 gmMk5m4YZj1tbFDZL/0wHwYDVR0jBBgwFoAU76QjuvW/0YkxbmUDHozq9aP/oUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyNjRDLzI0MUFDN0JFMEUx ODExRjBCNjlCOEIzOEM0RjlBRTAyLzc2UWp1dldfMFlreGJtVURIb3pxOWFQX29V cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzZRanV2V18wWWt4Ym1VREhvenE5YVBfb1VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy NjRDLzI0MUFDN0JFMEUxODExRjBCNjlCOEIzOEM0RjlBRTAyLzc2UWp1dldfMFlr eGJtVURIb3pxOWFQX29Vcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALI3tRY/F/000tmz0ErgKil+r+1iDIlAZtACmtG61G1zixHzKfQVJ6i3 r9V3uyKbvPHQN00t2kDY9oT7vQIvxx1EsnrTJhHQuRyUREz1zMPI+C6BQU4lCewL Zf++hX5gGiIlI93/ydLaYVmmNZAHKiTvJg5pysIMRPJG+1tqknpIRCo1KLV9jcd/ cVOCJWtHyBtne0wK2A6urfW2ei1G5NONmJLVPgpQNJNfek3YV1epWc71wm3IutWE 4MRyNDxMnE7qnCpoF+vMYWgIUi7n18pm1BQyb1yZrOtlv9Fh5665B6BhdbvC/7E7 GqRX6ibxjhbrAhSaXDdbO29gtxq4fVE= -----END CERTIFICATE-----Generated at Fri Jul 4 08:03:23 2025 by rpki-client