$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: 2Jh5kgF4P/F4RIjH/FOsJxDhPSXUI34QFcSqO8MvimA= Subject key identifier: 7F:9A:B2:21:4A:CD:5D:1F:D4:7F:8A:17:68:6B:34:A2:76:48:8B:07 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01D8 Signing time: Sat 09 Aug 2025 03:11:56 +0000 Manifest this update: Sat 09 Aug 2025 03:11:56 +0000 Manifest next update: Sat 16 Aug 2025 03:11:56 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: hc/zzZ6lVxoJgfvPG1xNx4PknnH5IovaCf3Qw6s/ras=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Aug 9 03:11:56 2025 GMT Not After : Aug 16 03:11:56 2025 GMT Subject: CN=6896bc7c-dcd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:70:40:9c:02:f3:4c:6a:e4:f9:11:9d:8b: bf:8d:ac:7f:2d:91:53:6a:31:8a:e2:45:52:9f:c5: d5:b6:18:71:3c:6d:ac:be:99:97:74:dc:7d:24:c1: a9:ea:fd:08:11:b7:d4:06:cd:a5:8d:10:f3:7a:74: 54:04:02:38:13:f1:d7:1f:3a:b9:6f:63:58:28:bc: db:97:2e:f0:4e:60:b1:61:d8:a1:78:86:c9:f6:7f: b3:b3:58:26:cc:36:7f:34:f8:f8:ce:8a:a7:a8:fa: 2e:92:4c:4e:6c:f9:19:34:0c:70:10:95:a9:f9:0f: 62:2f:bc:a0:1b:78:8d:25:70:f8:5b:3f:2b:f1:19: db:b3:ca:b3:bf:8e:b5:a3:fd:d5:bd:39:1e:8a:0c: 5a:3c:2f:9e:20:7b:fa:5b:ce:93:08:08:9b:cc:63: 47:2b:8a:9e:19:6f:87:5c:d5:d8:08:6f:b4:0e:96: 58:04:60:9a:6a:b7:d2:bf:c1:19:17:11:a8:1d:49: 9e:f7:02:52:15:db:b8:31:47:04:45:0f:58:32:75: e6:c6:de:50:6e:3b:92:57:39:3e:aa:62:0c:49:c3: d6:c5:20:88:64:cb:5c:e1:bf:c9:41:ea:6e:ca:7f: ea:b9:d5:27:7c:e1:4e:f4:84:da:17:73:b4:5d:ce: 65:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9A:B2:21:4A:CD:5D:1F:D4:7F:8A:17:68:6B:34:A2:76:48:8B:07 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:54:93:41:55:3e:8f:bc:df:87:36:c5:c4:7b:88:47:14:26: 0b:cd:df:78:1e:43:f4:6c:db:65:43:01:98:1e:c4:3d:8a:25: 09:47:93:2d:53:00:f6:59:5f:74:09:25:f8:12:cd:3e:17:24: ae:18:89:bf:05:1c:67:42:3d:81:05:a0:44:9b:1d:8b:59:1d: 8d:79:1a:d3:cb:94:83:1e:a3:5d:5c:ca:67:80:bd:27:23:10: 37:a3:a4:9c:72:8a:b0:62:b8:16:93:16:6c:dd:e6:16:09:3c: 3c:9b:a2:f0:dc:9a:05:31:e7:dd:2d:ab:68:e7:97:3d:ef:c3: bc:b1:d2:c0:32:c9:33:93:74:98:cd:d6:07:0d:a2:4a:99:7a: e4:7f:fe:34:43:61:64:9b:d3:87:1b:a7:f9:be:ad:af:fc:2c: cc:38:e3:34:95:e0:2a:af:b1:96:f2:46:a9:e9:4d:67:dd:9c: d5:bf:bd:be:a9:9a:7d:ca:3f:60:28:6d:f0:25:50:c5:96:ac: cb:07:49:f7:b4:ae:e2:1a:d9:78:c7:35:bc:9a:e0:1d:92:fe: ea:94:f5:c8:ed:ac:1e:a4:47:e5:c9:35:97:bd:dd:bd:18:40: 66:81:08:da:5d:fc:ee:13:38:3d:b6:68:54:d9:2f:0c:b4:73: a2:7f:9d:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwODA5MDMxMTU2WhcNMjUwODE2MDMxMTU2WjAYMRYwFAYD VQQDEw02ODk2YmM3Yy1kY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu5wQJwC80xq5PkRnYu/jax/LZFTajGK4kVSn8XVthhxPG2svpmXdNx9JMGp 6v0IEbfUBs2ljRDzenRUBAI4E/HXHzq5b2NYKLzbly7wTmCxYdiheIbJ9n+zs1gm zDZ/NPj4zoqnqPoukkxObPkZNAxwEJWp+Q9iL7ygG3iNJXD4Wz8r8Rnbs8qzv461 o/3VvTkeigxaPC+eIHv6W86TCAibzGNHK4qeGW+HXNXYCG+0DpZYBGCaarfSv8EZ FxGoHUme9wJSFdu4MUcERQ9YMnXmxt5QbjuSVzk+qmIMScPWxSCIZMtc4b/JQepu yn/qudUnfOFO9ITaF3O0Xc5l+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+asiFK zV0f1H+KF2hrNKJ2SIsHMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgVJNBVT6PvN+HNsXEe4hHFCYLzd94HkP0bNtlQwGYHsQ9iiUJR5Mt UwD2WV90CSX4Es0+FySuGIm/BRxnQj2BBaBEmx2LWR2NeRrTy5SDHqNdXMpngL0n IxA3o6SccoqwYrgWkxZs3eYWCTw8m6Lw3JoFMefdLato55c978O8sdLAMskzk3SY zdYHDaJKmXrkf/40Q2Fkm9OHG6f5vq2v/CzMOOM0leAqr7GW8kap6U1n3ZzVv72+ qZp9yj9gKG3wJVDFlqzLB0n3tK7iGtl4xzW8muAdkv7qlPXI7awepEflyTWXvd29 GEBmgQjaXfzuEzg9tmhU2S8MtHOif52T -----END CERTIFICATE-----Generated at Sun Aug 10 18:52:36 2025 by rpki-client