$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: 58tNz8hYwyJuwTymx7u4wlr0Uc94+4aXWDOtHI+UBes= Subject key identifier: 10:2E:52:7F:C5:13:34:80:20:BC:E7:3C:80:42:E5:BA:6E:A7:7A:F9 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01EC Signing time: Wed 17 Sep 2025 03:07:46 +0000 Manifest this update: Wed 17 Sep 2025 03:07:45 +0000 Manifest next update: Wed 24 Sep 2025 03:07:45 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: kNBmApEGF/0X1MxUXmO8spfYypZfFTcpsJbQZMyphUs=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Sep 17 03:07:45 2025 GMT Not After : Sep 24 03:07:45 2025 GMT Subject: CN=68ca2602-f8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4c:0b:ad:a2:77:57:e5:cd:df:17:f5:d1:89: fd:44:4e:92:71:80:3f:7a:14:a4:eb:69:fd:73:7b: 2f:ae:4c:73:cc:d8:9f:3e:ab:ab:c9:2e:66:35:79: 0b:06:26:c7:0e:d3:d0:b8:4d:1d:7d:4f:76:fc:0b: 3d:35:cb:87:80:7a:58:51:63:95:95:77:bc:5e:22: cd:58:04:02:27:d5:f2:fc:e9:d7:55:94:b3:65:9a: 31:7b:6b:46:26:52:c7:69:0f:16:80:89:95:22:e8: 12:42:cb:c9:e9:55:a8:38:1f:a0:8b:95:86:4d:08: 75:fb:e0:08:b1:3b:e6:26:aa:ba:27:f9:aa:59:51: e2:87:94:18:6a:dc:49:29:ab:4a:5f:87:c9:68:14: 23:c6:0a:73:85:ef:6b:67:48:25:d6:08:48:90:d7: b2:d7:5a:13:3d:7f:e5:64:6c:fc:c0:b6:60:94:02: a3:88:eb:ae:fe:0d:e3:83:fe:cb:4a:aa:e1:d4:2a: 6f:4a:1c:99:ce:21:bb:c5:ae:ae:6d:66:d0:ef:da: d6:7d:e0:46:fb:ba:89:7b:fb:ce:7a:87:c9:63:11: 31:f4:d6:5c:53:27:c3:5d:bc:49:21:fa:35:2b:bd: 59:39:63:44:b8:01:9b:9b:c4:dc:fa:84:96:d0:d2: d1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2E:52:7F:C5:13:34:80:20:BC:E7:3C:80:42:E5:BA:6E:A7:7A:F9 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:89:99:a4:aa:9f:ff:d8:fa:e4:df:45:fb:29:ad:2e:54:41: 7c:37:2c:bc:28:70:73:ce:4d:d2:05:d1:b3:66:65:16:85:b2: a8:96:e4:7a:77:5f:0c:b1:33:4d:20:fc:e8:71:91:dd:97:57: a6:15:75:25:98:41:88:53:0f:a3:d9:33:ca:fc:0e:8a:42:a9: ab:50:fb:f5:23:e6:c3:9a:ec:4b:0f:62:c3:e8:cc:4a:f4:aa: 16:e1:d5:87:b1:3f:ca:10:ca:8b:4f:03:dd:28:84:b0:f6:97: 72:2a:3a:96:52:e2:a6:89:db:0c:dc:c2:67:f9:59:1f:bb:ca: 66:46:e6:96:19:ff:46:d9:ed:f7:62:c8:d0:e0:01:92:02:d7: b1:d9:71:b5:1a:d7:74:cf:3f:1f:8e:25:38:9b:d9:ef:f8:37: e1:48:52:84:d0:79:5a:8d:9a:41:5f:28:f2:2b:ed:0b:76:10: c9:56:d5:c7:20:67:4a:6d:9a:47:6b:91:2d:ff:2b:91:76:f2: 79:f9:51:09:56:72:bd:3d:76:d5:be:e1:61:21:21:51:34:d8: 75:a5:bc:44:c1:81:b1:21:8f:a4:fb:50:be:27:93:83:bc:ca: f5:b6:50:c6:d7:3d:72:7c:fe:68:4f:e5:72:2e:df:66:63:96: 65:1e:f9:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwOTE3MDMwNzQ1WhcNMjUwOTI0MDMwNzQ1WjAYMRYwFAYD VQQDEw02OGNhMjYwMi1mOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEwLraJ3V+XN3xf10Yn9RE6ScYA/ehSk62n9c3svrkxzzNifPquryS5mNXkL BibHDtPQuE0dfU92/As9NcuHgHpYUWOVlXe8XiLNWAQCJ9Xy/OnXVZSzZZoxe2tG JlLHaQ8WgImVIugSQsvJ6VWoOB+gi5WGTQh1++AIsTvmJqq6J/mqWVHih5QYatxJ KatKX4fJaBQjxgpzhe9rZ0gl1ghIkNey11oTPX/lZGz8wLZglAKjiOuu/g3jg/7L Sqrh1CpvShyZziG7xa6ubWbQ79rWfeBG+7qJe/vOeofJYxEx9NZcUyfDXbxJIfo1 K71ZOWNEuAGbm8Tc+oSW0NLRLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAuUn/F EzSAILznPIBC5bpup3r5MB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADiZmkqp//2Prk30X7Ka0uVEF8Nyy8KHBzzk3SBdGzZmUWhbKoluR6 d18MsTNNIPzocZHdl1emFXUlmEGIUw+j2TPK/A6KQqmrUPv1I+bDmuxLD2LD6MxK 9KoW4dWHsT/KEMqLTwPdKISw9pdyKjqWUuKmidsM3MJn+Vkfu8pmRuaWGf9G2e33 YsjQ4AGSAtex2XG1Gtd0zz8fjiU4m9nv+DfhSFKE0HlajZpBXyjyK+0LdhDJVtXH IGdKbZpHa5Et/yuRdvJ5+VEJVnK9PXbVvuFhISFRNNh1pbxEwYGxIY+k+1C+J5OD vMr1tlDG1z1yfP5oT+VyLt9mY5ZlHvnL -----END CERTIFICATE-----Generated at Fri Sep 19 00:41:13 2025 by rpki-client