$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: i1T1Z+kkC9uac5yq1igpgEtHmuxPbrD3aiN+GR4bLb0= Subject key identifier: 21:C3:83:22:31:99:80:B1:00:D1:FC:09:23:7F:71:D8:42:B8:88:F0 Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 067D Signing time: Fri 08 Aug 2025 22:53:28 +0000 Manifest this update: Fri 08 Aug 2025 22:53:27 +0000 Manifest next update: Fri 15 Aug 2025 22:53:27 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: wGgfjKTdsxu4wCqDYWSW2FFclstGSLATX819nju1zjM=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: ILkhxI5MS0Y08MvVskMnHwF1yNepea938q8G0D4OrHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Aug 8 22:53:27 2025 GMT Not After : Aug 15 22:53:27 2025 GMT Subject: CN=68967fe8-e277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:32:f4:26:de:f5:10:01:f1:74:1c:d7:37:19: 0a:ab:e4:37:6e:4c:f6:ed:5f:9b:c7:54:2b:61:e0: be:47:db:56:4e:d5:f3:ca:16:95:72:c3:54:3f:a3: 86:1f:3a:71:2c:96:97:a1:df:2d:3b:7b:83:94:67: 25:f2:6e:b5:36:b4:10:7d:02:a2:87:93:fe:bb:38: ad:a6:42:54:8c:4d:e7:8a:09:a3:de:ec:5e:ad:a9: 0e:41:a4:61:ca:40:89:4f:04:5d:51:ed:81:65:42: 4d:e8:fb:f0:33:f7:a2:5a:7b:8d:3d:00:06:eb:b9: 9c:d5:54:0b:fa:69:9e:b7:99:84:e9:47:8f:c2:57: 3e:7e:4e:8d:e0:7d:ef:c6:86:1c:40:3f:ea:e7:d0: e7:82:b1:5c:53:5a:a7:e3:1a:7b:cd:e0:10:e1:75: 35:5b:ee:f5:c1:2b:eb:94:52:76:0b:9c:cf:cc:ad: 0c:3b:b2:d6:d5:32:95:df:12:1a:32:f2:41:90:73: 74:ba:52:ff:17:ec:8b:e2:ab:55:6f:f3:3b:d2:f5: 41:0c:13:73:49:b8:f6:1d:59:12:c1:d9:e4:93:54: a2:39:d5:ac:43:67:46:86:42:0c:71:f5:5a:bf:f7: 71:97:fc:f1:3b:3b:20:a8:26:2b:27:44:0e:83:5a: fd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C3:83:22:31:99:80:B1:00:D1:FC:09:23:7F:71:D8:42:B8:88:F0 X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:33:80:0f:f6:d2:09:d6:c2:be:8e:5c:be:cf:ff:19:e4:70: ff:f0:88:5c:87:9f:e3:25:1a:21:c8:db:76:5d:16:b7:5f:c9: 56:ab:b3:d2:55:b9:44:70:cd:a5:27:78:34:da:06:1d:c0:66: 3d:fc:f8:39:c8:5f:a9:b7:fa:77:35:7a:94:be:4c:8d:f9:ac: f1:3b:a4:a3:fb:01:0c:57:14:2e:2a:cb:4d:70:f9:fd:2a:fb: 94:cc:da:7f:85:8e:c6:9f:ec:83:83:3e:6b:df:23:fa:10:ff: 9c:8c:c9:5d:5b:2d:cf:76:8c:42:9b:a1:aa:a5:5f:32:b4:0c: 34:6f:e1:70:90:39:6f:10:e6:f2:a5:dd:de:28:ec:0c:64:bb: 13:13:12:4f:f5:04:df:9e:e8:1d:f8:7a:d1:69:f7:9f:18:e9: 22:46:ce:9d:86:2a:4c:a0:92:b4:4f:ac:69:fa:9c:12:0c:ba: e4:fd:b6:f8:1f:73:ad:0c:5a:bd:38:f9:bd:a5:6c:51:3f:64: 05:f6:23:0b:91:89:f6:a7:f5:12:18:d2:de:b2:48:ae:a3:30: 53:68:2c:da:ef:7c:25:ff:20:a6:54:85:e1:ee:8f:0d:42:7e: fe:b5:ec:b0:c1:11:c5:02:75:92:e8:e1:95:b6:cb:0f:16:a1: 50:3f:8f:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwODA4MjI1MzI3WhcNMjUwODE1MjI1MzI3WjAYMRYwFAYD VQQDEw02ODk2N2ZlOC1lMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDL0Jt71EAHxdBzXNxkKq+Q3bkz27V+bx1QrYeC+R9tWTtXzyhaVcsNUP6OG HzpxLJaXod8tO3uDlGcl8m61NrQQfQKih5P+uzitpkJUjE3nigmj3uxerakOQaRh ykCJTwRdUe2BZUJN6PvwM/eiWnuNPQAG67mc1VQL+mmet5mE6UePwlc+fk6N4H3v xoYcQD/q59DngrFcU1qn4xp7zeAQ4XU1W+71wSvrlFJ2C5zPzK0MO7LW1TKV3xIa MvJBkHN0ulL/F+yL4qtVb/M70vVBDBNzSbj2HVkSwdnkk1SiOdWsQ2dGhkIMcfVa v/dxl/zxOzsgqCYrJ0QOg1r9OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHDgyIx mYCxANH8CSN/cdhCuIjwMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzM4AP9tIJ1sK+jly+z/8Z5HD/8Ihch5/jJRohyNt2XRa3X8lWq7PS VblEcM2lJ3g02gYdwGY9/Pg5yF+pt/p3NXqUvkyN+azxO6Sj+wEMVxQuKstNcPn9 KvuUzNp/hY7Gn+yDgz5r3yP6EP+cjMldWy3PdoxCm6GqpV8ytAw0b+FwkDlvEOby pd3eKOwMZLsTExJP9QTfnugd+HrRafefGOkiRs6dhipMoJK0T6xp+pwSDLrk/bb4 H3OtDFq9OPm9pWxRP2QF9iMLkYn2p/USGNLeskiuozBTaCza73wl/yCmVIXh7o8N Qn7+teywwRHFAnWS6OGVtssPFqFQP4+M -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:29 2025 by rpki-client