$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: sTzwdBmGcK4IPEyDIdnF10PYHRtB/YLtuFO3u9zQPNM= Subject key identifier: 82:EA:78:35:87:99:C7:ED:6E:02:64:B6:AF:00:55:8C:F1:B6:7B:CD Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01CD Signing time: Sat 19 Jul 2025 03:08:24 +0000 Manifest this update: Sat 19 Jul 2025 03:08:23 +0000 Manifest next update: Sat 26 Jul 2025 03:08:23 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: xhHo/TzY0S34w8vsHyngp+SwsPP5AWcBazjcVGJHdJU=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Jul 19 03:08:23 2025 GMT Not After : Jul 26 03:08:23 2025 GMT Subject: CN=687b0c27-6cdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d4:78:d6:93:e4:d3:70:8c:0e:b6:34:ca:69: 3e:76:22:7e:68:f3:21:62:63:d8:60:ed:cb:69:13: 6f:ee:c1:1d:a0:10:93:d9:30:e4:65:81:17:6d:86: 3a:18:42:5e:35:55:a7:36:0b:3a:14:24:b4:92:d7: 8c:2e:19:cd:30:42:dd:ea:50:56:7b:b5:36:34:33: d3:8c:8e:70:84:08:33:c5:53:25:8f:dc:f4:e1:c0: 34:a0:ec:ee:72:bb:4b:b9:a9:06:3a:a4:2d:a0:cf: 72:13:8a:14:ce:7b:fb:61:ed:ce:e4:57:d6:b3:1d: 1b:4c:07:fd:57:07:7a:7c:56:24:f4:19:e0:08:02: a0:2e:2e:60:87:9a:69:f5:34:5a:62:32:61:5c:b4: e6:7f:f0:7a:d2:3d:1c:c5:1c:28:7f:0d:1a:9e:15: a3:66:a1:ba:69:54:f6:40:5d:25:70:fa:e7:59:96: 58:c6:7c:50:cd:42:82:1e:54:d3:6c:a4:6a:62:1a: 1c:53:1f:c3:65:70:d7:73:68:6c:99:81:a4:1d:65: 7b:a1:0f:c9:f6:50:0c:33:e3:ec:15:8b:ad:7c:b9: 8a:c8:09:d1:e1:c6:ed:a4:dc:f2:67:2e:bb:c8:ef: 92:6e:b2:a6:b1:37:41:43:2e:d7:bb:cf:8a:a3:59: 12:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EA:78:35:87:99:C7:ED:6E:02:64:B6:AF:00:55:8C:F1:B6:7B:CD X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:05:ae:4b:93:87:0d:74:4e:ce:cf:ce:69:74:d2:27:0a:d1: 47:c5:c5:13:4e:1a:40:ef:04:c9:cb:a4:18:88:bd:08:42:ac: 3f:75:06:e0:97:80:30:fe:53:40:07:1c:18:c0:31:6e:a8:36: 60:26:fc:44:7d:60:4f:39:03:d2:9c:df:d3:47:0e:3c:40:af: d7:06:db:6c:fb:06:b0:2e:36:fa:b8:00:f6:c0:65:d4:3a:fd: 41:32:f9:5b:73:c8:89:10:ed:20:d1:e3:98:31:70:ae:0d:a4: 3b:21:5a:e9:3b:01:38:db:a1:d3:97:69:8e:87:1f:51:d5:22: 8c:cc:07:14:12:29:17:d2:27:6a:a2:3e:e8:f3:80:2c:d6:6d: 22:07:37:66:f1:0f:a4:b0:d6:09:60:81:bd:d5:9d:53:2a:1b: 10:79:bd:99:1c:90:0a:c0:4d:aa:d3:c2:8c:10:29:26:6a:e4: cd:11:29:94:ae:b1:44:41:b7:73:0f:27:3c:9a:c8:87:20:aa: d5:1d:8e:e6:30:cb:5e:e8:44:b0:67:85:d2:eb:87:34:25:dd: 2a:df:11:8f:3e:42:28:df:19:f2:89:0c:54:6a:af:b2:21:2e: 8a:c0:26:a0:2d:69:52:f1:dc:43:c8:d8:42:e6:f9:47:e4:93: 7e:47:48:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwNzE5MDMwODIzWhcNMjUwNzI2MDMwODIzWjAYMRYwFAYD VQQDEw02ODdiMGMyNy02Y2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytR41pPk03CMDrY0ymk+diJ+aPMhYmPYYO3LaRNv7sEdoBCT2TDkZYEXbYY6 GEJeNVWnNgs6FCS0kteMLhnNMELd6lBWe7U2NDPTjI5whAgzxVMlj9z04cA0oOzu crtLuakGOqQtoM9yE4oUznv7Ye3O5FfWsx0bTAf9Vwd6fFYk9BngCAKgLi5gh5pp 9TRaYjJhXLTmf/B60j0cxRwofw0anhWjZqG6aVT2QF0lcPrnWZZYxnxQzUKCHlTT bKRqYhocUx/DZXDXc2hsmYGkHWV7oQ/J9lAMM+PsFYutfLmKyAnR4cbtpNzyZy67 yO+SbrKmsTdBQy7Xu8+Ko1kSawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILqeDWH mcftbgJktq8AVYzxtnvNMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATBa5Lk4cNdE7Oz85pdNInCtFHxcUTThpA7wTJy6QYiL0IQqw/dQbg l4Aw/lNABxwYwDFuqDZgJvxEfWBPOQPSnN/TRw48QK/XBtts+wawLjb6uAD2wGXU Ov1BMvlbc8iJEO0g0eOYMXCuDaQ7IVrpOwE426HTl2mOhx9R1SKMzAcUEikX0idq oj7o84As1m0iBzdm8Q+ksNYJYIG91Z1TKhsQeb2ZHJAKwE2q08KMECkmauTNESmU rrFEQbdzDyc8msiHIKrVHY7mMMte6ESwZ4XS64c0Jd0q3xGPPkIo3xnyiQxUaq+y IS6KwCagLWlS8dxDyNhC5vlH5JN+R0hZ -----END CERTIFICATE-----Generated at Sun Jul 20 12:13:37 2025 by rpki-client