$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft File: 67oUOyhmNxjNjH2j9jEAmpgE7l8.mft (raw, json) Hash identifier: Dn+dVV1j76zKye0OLzni48q90gf8jnEPtQbacbCrG8k= Subject key identifier: 95:0A:7A:1C:4B:C3:4D:B1:2A:5A:14:D2:97:B8:45:9C:24:FE:94:6E Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft Manifest number: 01CE Signing time: Fri 19 Sep 2025 03:20:32 +0000 Manifest this update: Fri 19 Sep 2025 03:20:32 +0000 Manifest next update: Fri 26 Sep 2025 03:20:32 +0000 Files and hashes: 1: 67oUOyhmNxjNjH2j9jEAmpgE7l8.crl (hash: feZYqAU/tuus80aCFtUZbZde4JL/2Jtef4rvTMredOA=) 2: D277F83CD3A411ED8C51160FC4F9AE02.roa (hash: xeDK9WlWOxddaeQUzhh0jJMfgRYN6KWkgPqKssZPync=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F, serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: Sep 19 03:20:32 2025 GMT Not After : Sep 26 03:20:32 2025 GMT Subject: CN=68cccc00-b061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1d:d0:4e:80:ff:c5:48:b7:e0:56:d7:0f:c3: 14:45:a8:cf:4d:d5:41:2a:2f:b5:fd:7d:b8:bc:62: 4a:b8:52:48:9d:3f:e1:d8:dc:e2:74:c0:32:02:e6: d9:88:5e:4e:c3:a5:ac:08:a6:8e:a3:9c:f5:3b:c1: 1a:d6:1f:67:d8:3b:12:f5:61:8d:7f:f1:64:5c:2e: d9:7e:d0:be:34:52:5a:2a:02:95:b3:76:18:35:ea: d5:e0:50:11:8d:a6:ee:1c:2d:0d:f7:22:e5:22:61: dc:e6:c4:05:81:db:a6:64:a0:28:86:4e:6d:38:4b: a9:73:24:ae:ca:be:2b:08:e4:2a:b3:26:48:84:2c: 03:d7:cf:c6:5b:6f:39:26:6b:5e:6c:61:ef:95:97: 57:2e:06:7d:da:94:53:e8:e0:c2:15:8e:46:96:22: eb:3e:c3:4f:c9:41:87:d1:96:0e:0c:8d:bb:e8:ff: 99:02:98:37:38:af:bc:b7:cc:aa:77:3b:12:57:f7: 10:fb:25:f4:af:b1:65:13:3b:1e:f5:c0:91:2d:44: cb:a1:d9:11:f0:91:77:24:e9:a0:9a:00:01:85:7d: a6:6e:7d:d4:cd:1b:45:86:11:1e:59:c6:b2:93:80: 18:96:fc:cb:77:e2:3b:92:34:5c:68:75:af:59:69: 86:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0A:7A:1C:4B:C3:4D:B1:2A:5A:14:D2:97:B8:45:9C:24:FE:94:6E X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:69:0f:69:dd:b6:20:44:35:cd:ae:f4:a0:99:29:36:62:5d: 1a:95:ce:6c:f7:e3:7a:db:58:63:3a:fa:72:a0:43:a9:2e:f4: af:7e:15:4c:8f:4b:61:cc:58:ee:3f:0d:ff:ac:95:fa:b5:96: a0:dd:d2:a6:68:1d:63:b7:4d:84:20:8e:76:b8:fa:8a:42:c0: 21:fb:fa:fb:d2:d0:a6:a7:0d:5b:a8:21:d0:7d:cc:2a:e4:b2: a8:7c:43:50:ce:d5:64:47:f1:b7:5a:88:25:56:49:13:4e:11: 05:2a:90:e3:2e:3a:ef:ed:d3:b6:cb:ba:76:64:c4:03:90:56: 37:4b:1d:76:94:c2:b5:a8:0d:81:73:5d:c5:b4:1e:0b:06:84: 79:47:d9:ed:b4:5e:4d:7c:1e:ee:17:de:d9:ad:2a:46:b7:0a: 14:8c:aa:e8:14:55:09:6c:ef:91:a0:d9:64:47:02:5c:55:46: e3:e8:b4:2b:52:f2:19:d4:f9:c5:bd:e0:0a:86:4e:64:eb:7a: 4a:12:e3:9b:4f:47:66:90:f2:52:b4:84:8a:34:a6:ba:c7:69: f4:7e:86:08:ad:4a:71:ef:2b:57:51:1f:8a:2b:36:90:76:9d: a1:1b:b0:49:39:65:47:fc:99:fd:d8:37:ae:c8:b7:37:b3:ce: 24:03:23:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjUwOTE5MDMyMDMyWhcNMjUwOTI2MDMyMDMyWjAYMRYwFAYD VQQDEw02OGNjY2MwMC1iMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6R3QToD/xUi34FbXD8MURajPTdVBKi+1/X24vGJKuFJInT/h2NzidMAyAubZ iF5Ow6WsCKaOo5z1O8Ea1h9n2DsS9WGNf/FkXC7ZftC+NFJaKgKVs3YYNerV4FAR jabuHC0N9yLlImHc5sQFgdumZKAohk5tOEupcySuyr4rCOQqsyZIhCwD18/GW285 JmtebGHvlZdXLgZ92pRT6ODCFY5GliLrPsNPyUGH0ZYODI276P+ZApg3OK+8t8yq dzsSV/cQ+yX0r7FlEzse9cCRLUTLodkR8JF3JOmgmgABhX2mbn3UzRtFhhEeWcay k4AYlvzLd+I7kjRcaHWvWWmGoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUKehxL w02xKloU0pe4RZwk/pRuMB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc2Ri9GRTQ5RkFDMkQzQTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54 ak5qSDJqOWpFQW1wZ0U3bDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAaQ9p3bYgRDXNrvSgmSk2Yl0alc5s9+N621hjOvpyoEOpLvSvfhVM j0thzFjuPw3/rJX6tZag3dKmaB1jt02EII52uPqKQsAh+/r70tCmpw1bqCHQfcwq 5LKofENQztVkR/G3WoglVkkTThEFKpDjLjrv7dO2y7p2ZMQDkFY3Sx12lMK1qA2B c13FtB4LBoR5R9nttF5NfB7uF97ZrSpGtwoUjKroFFUJbO+RoNlkRwJcVUbj6LQr UvIZ1PnFveAKhk5k63pKEuObT0dmkPJStISKNKa6x2n0foYIrUpx7ytXUR+KKzaQ dp2hG7BJOWVH/Jn92DeuyLc3s84kAyPY -----END CERTIFICATE-----Generated at Fri Sep 19 09:11:34 2025 by rpki-client