$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft File: 67oUOyhmNxjNjH2j9jEAmpgE7l8.mft (raw, json) Hash identifier: WN8kkWH2BUMpi230EoKuWaDh3owpLU6T2zrQNpNYkc0= Subject key identifier: E2:A7:10:27:C5:AF:4B:14:2D:6C:A2:B2:FF:D7:B3:B7:A4:46:44:0D Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft Manifest number: 0195 Signing time: Sat 31 May 2025 03:10:23 +0000 Manifest this update: Sat 31 May 2025 03:10:23 +0000 Manifest next update: Sat 07 Jun 2025 03:10:23 +0000 Files and hashes: 1: 67oUOyhmNxjNjH2j9jEAmpgE7l8.crl (hash: cKKz5nwBLW0F0AzKmN4p+zpnA1fpIVvtLnx/7ofiArA=) 2: D277F83CD3A411ED8C51160FC4F9AE02.roa (hash: xeDK9WlWOxddaeQUzhh0jJMfgRYN6KWkgPqKssZPync=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F, serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: May 31 03:10:23 2025 GMT Not After : Jun 7 03:10:23 2025 GMT Subject: CN=683a731f-88ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dc:03:0b:bc:bf:c4:95:76:61:f4:6a:65:e6: 47:52:77:5d:3c:20:c7:14:5c:df:56:04:c5:6f:93: 5d:ab:d0:73:e5:b7:48:22:47:c5:39:e2:13:63:f8: 99:13:9d:fc:26:cd:dc:6d:a1:b6:70:6a:ec:67:f0: 08:67:16:e4:4d:04:c0:b7:36:20:1f:10:be:c2:9d: ba:d8:e6:bf:9d:17:ac:20:19:f8:f7:75:19:ce:73: 00:9e:aa:a4:d9:17:80:2a:60:16:85:b7:7e:de:59: 43:e1:a7:a0:96:13:5d:09:59:3c:9e:99:3d:93:88: f6:49:70:d9:bd:18:52:97:84:10:1e:3c:43:95:31: fe:c7:0b:8b:4b:05:b0:5d:f7:d7:67:bc:60:2d:20: 99:09:ff:81:01:61:e0:70:33:c4:f3:1c:20:8b:30: 85:45:c4:a1:8a:ea:a6:77:3d:98:a2:cc:05:0c:4d: 3d:d1:19:67:59:b6:03:50:f0:71:fa:5b:ff:b2:03: 16:aa:df:72:5f:ec:7b:e2:19:89:21:40:8c:fb:db: 50:1c:ae:b7:a6:77:65:11:42:5c:df:e7:7e:ba:5e: 22:43:ad:11:6d:74:05:ba:e3:90:d3:a6:41:2b:10: 3e:6c:4f:da:e0:4a:b7:90:e4:c0:11:ae:2f:73:34: e9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A7:10:27:C5:AF:4B:14:2D:6C:A2:B2:FF:D7:B3:B7:A4:46:44:0D X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:59:17:44:82:de:32:ad:bd:62:3c:98:10:99:cc:dc:76:03: c4:16:e4:29:5e:5d:49:1a:0a:86:a8:a0:66:ea:ad:b9:9a:74: c9:15:1b:56:8b:cf:58:76:5f:52:f6:e1:10:a9:1d:0d:d2:35: 16:c4:79:d8:73:5c:52:e2:84:db:9b:6f:36:23:0e:be:3d:9f: f6:e2:d3:fd:91:35:74:6b:15:b7:4d:d6:9a:38:44:60:25:88: df:3c:29:7a:08:aa:30:82:f9:53:4a:8f:5b:f3:43:4a:2b:53: 5d:a4:34:c6:fd:3b:00:86:e0:e0:83:07:6b:a1:9f:74:21:9a: 32:a0:86:8a:1c:44:52:47:61:30:62:f5:b3:10:14:2c:33:c0: 65:ac:55:5e:8c:cf:34:f5:03:98:c7:56:b3:c8:e2:28:4d:bd: d0:d8:3d:c6:40:0d:3e:76:4d:82:12:a9:4f:f4:f3:8a:32:6b: 9c:e7:40:ee:7b:f0:17:e1:ba:68:8f:9e:b7:4e:86:53:2e:28: 35:fe:a6:2f:63:16:d3:c6:1b:ed:a2:55:2c:57:b4:ab:c6:79: 2b:86:d0:33:86:f8:80:56:c6:16:09:0f:97:76:3d:2c:96:c6: 33:83:3d:11:25:7d:97:da:05:cf:45:d3:2c:6b:93:2c:d6:3a: 97:c9:58:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjUwNTMxMDMxMDIzWhcNMjUwNjA3MDMxMDIzWjAYMRYwFAYD VQQDEw02ODNhNzMxZi04OGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndwDC7y/xJV2YfRqZeZHUnddPCDHFFzfVgTFb5Ndq9Bz5bdIIkfFOeITY/iZ E538Js3cbaG2cGrsZ/AIZxbkTQTAtzYgHxC+wp262Oa/nResIBn493UZznMAnqqk 2ReAKmAWhbd+3llD4aeglhNdCVk8npk9k4j2SXDZvRhSl4QQHjxDlTH+xwuLSwWw XffXZ7xgLSCZCf+BAWHgcDPE8xwgizCFRcShiuqmdz2YoswFDE090RlnWbYDUPBx +lv/sgMWqt9yX+x74hmJIUCM+9tQHK63pndlEUJc3+d+ul4iQ60RbXQFuuOQ06ZB KxA+bE/a4Eq3kOTAEa4vczTpsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKnECfF r0sULWyisv/Xs7ekRkQNMB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc2Ri9GRTQ5RkFDMkQzQTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54 ak5qSDJqOWpFQW1wZ0U3bDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJWRdEgt4yrb1iPJgQmczcdgPEFuQpXl1JGgqGqKBm6q25mnTJFRtW i89Ydl9S9uEQqR0N0jUWxHnYc1xS4oTbm282Iw6+PZ/24tP9kTV0axW3TdaaOERg JYjfPCl6CKowgvlTSo9b80NKK1NdpDTG/TsAhuDggwdroZ90IZoyoIaKHERSR2Ew YvWzEBQsM8BlrFVejM809QOYx1azyOIoTb3Q2D3GQA0+dk2CEqlP9POKMmuc50Du e/AX4bpoj563ToZTLig1/qYvYxbTxhvtolUsV7SrxnkrhtAzhviAVsYWCQ+Xdj0s lsYzgz0RJX2X2gXPRdMsa5Ms1jqXyVin -----END CERTIFICATE-----Generated at Sat May 31 17:14:41 2025 by rpki-client