$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: U9EJjuDWjRCzlL0QoFDmiQHmEbMxv4gKKAlZpdslxDk= Subject key identifier: C6:F1:C6:7B:65:8D:2E:22:9F:DD:80:31:50:58:8F:05:FC:CD:A7:2F Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: D9 Signing time: Sat 23 Aug 2025 05:45:33 +0000 Manifest this update: Sat 23 Aug 2025 05:45:32 +0000 Manifest next update: Sat 30 Aug 2025 05:45:32 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: QXlZBEBWETY/dH9AfayVJ3T64sHqYT6wmxocISfOZyE=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: n9WiQjAGu9O9bLeoq38kpAQ+Tw7nAmw19T1TLy6Ivwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Aug 23 05:45:32 2025 GMT Not After : Aug 30 05:45:32 2025 GMT Subject: CN=68a9557c-0ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:19:3a:9d:fb:1b:13:ee:12:32:7b:48:90:fa: 1a:43:0a:5b:6e:00:a0:b0:dd:b1:ed:54:b4:8f:02: 2d:57:54:de:43:14:45:0b:5c:2b:f1:e2:1e:1e:ac: 18:01:3a:51:4b:8d:96:3f:a9:d7:b4:82:fc:cc:cf: 16:90:c2:20:f6:67:7a:a6:e8:ce:ea:6e:32:bd:a7: f6:d4:c7:2d:36:c1:5c:21:d7:e3:65:ed:89:37:79: 8d:7e:f5:97:84:23:36:97:93:54:3c:09:05:e5:43: b8:d0:ed:dc:d1:f8:da:a4:d7:e3:5e:ff:fc:8a:75: 99:17:a0:60:1c:e3:e3:4f:c7:f4:e8:1a:49:96:1d: 48:a0:db:af:8b:dd:72:f9:7f:7c:f5:ff:c2:9a:e0: 6f:6f:d7:c3:68:07:10:f8:87:6e:c0:9d:4c:a7:fa: 5c:d8:80:d1:12:29:7c:67:a4:eb:78:7a:56:cc:c5: 41:e1:cb:fc:d6:ae:f3:7e:42:d0:10:14:c7:54:99: e5:fc:d9:c7:27:94:4e:84:63:92:e9:88:7f:fa:7e: ee:9f:34:e2:4e:23:9c:c6:fe:93:fb:53:20:8e:26: 30:66:a1:47:18:25:61:4a:48:f3:f8:ad:56:d2:1f: a4:63:20:f4:5e:ae:8d:e2:10:05:a0:7c:87:66:6a: 72:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F1:C6:7B:65:8D:2E:22:9F:DD:80:31:50:58:8F:05:FC:CD:A7:2F X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:4a:23:0e:80:74:79:b9:d8:40:cf:c6:ec:9b:06:0b:10:91: e1:50:d5:8b:b5:d7:f1:11:df:70:8c:5b:70:68:7f:c4:8e:ea: 24:ad:50:a9:87:3b:65:6f:0f:03:97:7a:69:10:cd:28:8f:cd: 4a:ab:fd:fd:dc:63:1a:3d:17:86:b1:3b:de:c1:d4:b5:21:8e: c4:f5:6c:2f:65:92:09:6a:9a:1f:bd:7a:22:74:4e:c4:0e:cd: 07:16:36:68:05:83:17:b0:27:4e:13:d9:cf:ee:69:bf:70:98: 9e:22:b6:67:8c:d1:45:3b:72:08:cb:a5:2a:85:a0:ef:ae:a1: 73:aa:75:d0:37:d0:92:19:ef:3d:42:4f:b3:dc:ab:f9:f6:5d: 0a:f3:93:02:d0:56:f6:38:f9:42:50:59:b5:ad:84:22:2d:f6: db:eb:ce:57:21:06:9d:e7:ff:4a:1f:a4:07:9c:32:e3:54:78: 6f:28:72:0f:99:c1:1c:55:2b:e2:8e:5b:89:3b:88:53:05:a3: 37:cf:43:42:d9:b0:eb:72:dd:0d:11:a4:1f:f9:5f:6e:24:40: ae:c8:84:ed:9a:9c:4d:ea:5b:f1:7c:55:a9:ee:71:57:b1:c2: fc:45:68:bc:01:60:f3:ab:da:c8:67:fb:5b:6c:6f:2e:91:3e: 23:0f:ab:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwODIzMDU0NTMyWhcNMjUwODMwMDU0NTMyWjAYMRYwFAYD VQQDEw02OGE5NTU3Yy0wYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRk6nfsbE+4SMntIkPoaQwpbbgCgsN2x7VS0jwItV1TeQxRFC1wr8eIeHqwY ATpRS42WP6nXtIL8zM8WkMIg9md6pujO6m4yvaf21MctNsFcIdfjZe2JN3mNfvWX hCM2l5NUPAkF5UO40O3c0fjapNfjXv/8inWZF6BgHOPjT8f06BpJlh1IoNuvi91y +X989f/CmuBvb9fDaAcQ+IduwJ1Mp/pc2IDREil8Z6TreHpWzMVB4cv81q7zfkLQ EBTHVJnl/NnHJ5ROhGOS6Yh/+n7unzTiTiOcxv6T+1MgjiYwZqFHGCVhSkjz+K1W 0h+kYyD0Xq6N4hAFoHyHZmpykQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbxxntl jS4in92AMVBYjwX8zacvMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCISiMOgHR5udhAz8bsmwYLEJHhUNWLtdfxEd9wjFtwaH/EjuokrVCp hztlbw8Dl3ppEM0oj81Kq/393GMaPReGsTvewdS1IY7E9WwvZZIJapofvXoidE7E Ds0HFjZoBYMXsCdOE9nP7mm/cJieIrZnjNFFO3IIy6UqhaDvrqFzqnXQN9CSGe89 Qk+z3Kv59l0K85MC0Fb2OPlCUFm1rYQiLfbb685XIQad5/9KH6QHnDLjVHhvKHIP mcEcVSvijluJO4hTBaM3z0NC2bDrct0NEaQf+V9uJECuyITtmpxN6lvxfFWp7nFX scL8RWi8AWDzq9rIZ/tbbG8ukT4jD6sW -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:59 2025 by rpki-client