$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft File: 67tHPRcLa4MG0eFsi5UjNK3UDxA.mft (raw, json) Hash identifier: dqx6v4o6iVR/Edz2qQDnElUB/qjkE1jyVjSUf2iE67A= Subject key identifier: 53:EF:E0:DC:CF:35:D8:9E:E7:55:CC:B1:26:46:62:BE:5B:66:BE:E8 Authority key identifier: EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 Certificate issuer: /CN=A91D9F5A/serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft Manifest number: 079C Signing time: Fri 18 Jul 2025 21:36:58 +0000 Manifest this update: Fri 18 Jul 2025 21:36:57 +0000 Manifest next update: Fri 25 Jul 2025 21:36:57 +0000 Files and hashes: 1: 67tHPRcLa4MG0eFsi5UjNK3UDxA.crl (hash: Dl72ZmnJDVUpGM7QY7SSFMXlbbVfDHZFFrY+sJryAEU=) 2: 1ACA9A7011BC11EBA0759F52C4F9AE02.roa (hash: zjlq2ekKMTnUOjERgfYF5liArI/9QWMkqCcAkQ/TQ2E=) 3: 1A0FD01411BC11EBA0759F52C4F9AE02.roa (hash: 4Z5gn4hcl2+wGGJV3uouKZcrvOpeWjAHkkCHO7ludR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Validity Not Before: Jul 18 21:36:57 2025 GMT Not After : Jul 25 21:36:57 2025 GMT Subject: CN=687abe79-1f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dc:85:c0:71:99:36:e3:f7:4b:93:ce:a5:9e: 02:55:02:40:d3:0e:56:49:23:76:66:bf:d3:f7:6e: 50:60:f6:1e:12:13:fe:8c:69:40:4e:d7:96:00:15: 82:58:f0:b9:c1:b2:94:38:dd:4e:76:b1:f6:a7:1c: a9:cb:37:d6:67:18:e7:e9:9e:54:92:75:47:e8:1e: a7:27:b1:62:41:0c:16:09:fb:de:9f:42:60:a5:a1: c2:7d:9b:f1:26:91:67:b2:34:8d:5f:d2:ee:e3:49: 36:69:59:a7:7d:62:e7:52:46:1a:a7:6b:8f:6f:44: 94:8a:2e:25:46:f4:87:2e:1b:95:3e:0a:2f:4b:29: 02:e3:5a:0e:75:6f:06:11:35:0b:6a:f9:c2:3a:7c: 03:00:7f:99:cf:e7:4f:9e:0e:0e:7f:a3:69:2b:1c: 18:ef:bf:cd:05:45:40:18:45:86:86:1f:e8:b7:3c: be:9b:8c:38:03:ee:bc:a9:db:58:11:43:70:86:13: 7b:a4:ea:81:56:22:6f:c2:87:39:f9:2a:17:55:f9: 92:a3:ea:34:c6:0b:80:48:e0:af:08:4c:e2:c4:80: af:c5:4d:21:ee:99:0d:aa:9a:85:14:47:e4:db:1a: 2b:16:ef:b8:14:2b:89:ef:50:7b:b2:bd:cf:a6:11: ff:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EF:E0:DC:CF:35:D8:9E:E7:55:CC:B1:26:46:62:BE:5B:66:BE:E8 X509v3 Authority Key Identifier: keyid:EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:9a:a1:b3:6c:90:d6:e4:e0:37:e2:b7:95:50:29:7d:3c:a5: 9d:c0:af:ca:d9:6c:14:62:c1:97:1d:fd:01:f8:c5:85:72:e5: f0:39:b5:bf:33:bc:e4:28:a4:c9:61:42:91:ef:c7:dc:55:ad: ab:de:fb:7f:32:f6:7a:fb:ff:e7:83:5f:c1:07:af:4b:5a:e1: b9:a5:5b:bd:67:f0:76:08:aa:83:06:21:d0:56:05:b1:11:95: fc:17:84:7c:0c:31:9b:95:87:73:1b:88:5e:46:66:00:c9:1a: 82:69:75:f4:12:0a:21:1b:f5:cb:b4:98:72:f8:42:ca:d8:ed: 6a:37:ec:cf:cc:9c:46:a6:8b:86:0f:97:5a:f0:f1:db:dc:0b: fd:49:23:e8:00:bb:92:81:1a:3b:15:b5:a7:93:68:6a:e5:40: 45:f0:80:56:46:1a:89:cc:21:af:c8:6b:9d:5c:47:c9:f7:78: db:fd:91:e5:f1:72:8b:82:05:f9:26:cb:cf:2f:1b:03:d7:36: f7:7a:42:e6:d3:1a:05:a5:7f:74:7d:7e:97:3c:22:d5:34:b4: 7a:9d:dc:b2:c6:98:92:79:0e:95:84:74:c6:cc:32:3a:89:58: 7f:b1:18:95:0f:04:15:e4:aa:be:d9:11:04:ef:38:0c:e4:77: 26:d3:72:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKEVCQkI0NzNEMTcwQjZCODMwNkQxRTE2QzhCOTUyMzM0 QURENDBGMTAwHhcNMjUwNzE4MjEzNjU3WhcNMjUwNzI1MjEzNjU3WjAYMRYwFAYD VQQDEw02ODdhYmU3OS0xZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9yFwHGZNuP3S5POpZ4CVQJA0w5WSSN2Zr/T925QYPYeEhP+jGlATteWABWC WPC5wbKUON1OdrH2pxypyzfWZxjn6Z5UknVH6B6nJ7FiQQwWCfven0JgpaHCfZvx JpFnsjSNX9Lu40k2aVmnfWLnUkYap2uPb0SUii4lRvSHLhuVPgovSykC41oOdW8G ETULavnCOnwDAH+Zz+dPng4Of6NpKxwY77/NBUVAGEWGhh/otzy+m4w4A+68qdtY EUNwhhN7pOqBViJvwoc5+SoXVfmSo+o0xguASOCvCEzixICvxU0h7pkNqpqFFEfk 2xorFu+4FCuJ71B7sr3PphH/cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPv4NzP Ndie51XMsSZGYr5bZr7oMB8GA1UdIwQYMBaAFOu7Rz0XC2uDBtHhbIuVIzSt1A8Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi82N3RIUFJjTGE0TUcwZUZzaTVVak5LM1VE eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dEhQUmNMYTRNRzBlRnNpNVVqTkszVUR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi82N3RIUFJjTGE0 TUcwZUZzaTVVak5LM1VEeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTmqGzbJDW5OA34reVUCl9PKWdwK/K2WwUYsGXHf0B+MWFcuXwObW/ M7zkKKTJYUKR78fcVa2r3vt/MvZ6+//ng1/BB69LWuG5pVu9Z/B2CKqDBiHQVgWx EZX8F4R8DDGblYdzG4heRmYAyRqCaXX0EgohG/XLtJhy+ELK2O1qN+zPzJxGpouG D5da8PHb3Av9SSPoALuSgRo7FbWnk2hq5UBF8IBWRhqJzCGvyGudXEfJ93jb/ZHl 8XKLggX5JsvPLxsD1zb3ekLm0xoFpX90fX6XPCLVNLR6ndyyxpiSeQ6VhHTGzDI6 iVh/sRiVDwQV5Kq+2REE7zgM5Hcm03I4 -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:11 2025 by rpki-client