$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: ElxKw3rip80I21lJq75Cmxd4d6QVtueIBLVD4qDTWsU= Subject key identifier: 18:00:8F:A3:83:A9:1F:EA:03:94:19:5C:EF:82:FF:32:3B:F3:9C:23 Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 195B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 194F Signing time: Sat 28 Jun 2025 16:17:44 +0000 Manifest this update: Sat 28 Jun 2025 16:17:44 +0000 Manifest next update: Sat 05 Jul 2025 16:17:44 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: 0XAwWiZZFBR0y5JDVDqVFXfKfHX0rTD8XPJYc+xaOBE=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6491 (0x195b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533, serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: Jun 28 16:17:44 2025 GMT Not After : Jul 5 16:17:44 2025 GMT Subject: CN=686015a8-94e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:71:70:99:b6:81:1e:af:49:cf:c0:42:a4:fd: b5:e9:27:b4:77:0e:f0:e0:3a:4e:91:e9:10:af:98: 8c:8a:26:fd:ae:47:d6:e0:b3:13:eb:cb:2d:63:f9: 73:b2:68:cd:a6:81:13:88:2a:a0:f3:58:94:1b:1d: 3c:16:ca:84:ed:6a:01:a3:83:24:e0:9e:ce:30:1c: e4:b4:78:68:fe:f8:eb:5a:7d:02:ce:11:9c:48:42: 49:a3:35:8b:1b:34:ba:36:92:91:63:2f:28:e4:87: fa:fe:27:f5:9c:d1:a7:71:78:37:be:94:3b:7c:3d: d4:4f:1e:7c:69:62:97:fc:c9:60:7f:ad:cf:61:09: f1:b2:f9:bc:f9:b1:bc:f1:a8:a1:6f:e2:b6:3e:90: 89:96:ae:24:c5:c3:a0:97:7a:58:6b:63:01:e6:0f: 86:62:32:e0:16:b9:2f:03:0f:ad:36:1e:80:45:7b: a5:9a:f8:b8:6a:89:aa:a8:ac:5d:56:cb:92:08:ac: 65:56:67:5a:7c:2a:97:73:d7:8d:2b:37:8e:84:17: b4:82:ef:6e:fb:4d:9f:78:ff:29:23:1b:f5:1d:29: 74:97:6b:44:ee:8d:b2:ba:95:5d:6a:25:4d:bf:d0: b2:d3:6e:00:ea:1e:6c:ce:1d:b0:a9:e6:0d:3f:2e: 2e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:00:8F:A3:83:A9:1F:EA:03:94:19:5C:EF:82:FF:32:3B:F3:9C:23 X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:cf:39:94:7c:b9:ea:b6:96:4a:e8:72:50:a1:d7:43:9e:18: 81:37:91:63:89:79:d9:77:1c:d0:98:5f:93:07:c7:84:69:bb: a7:a4:7e:68:aa:95:d1:75:8f:aa:63:c6:c6:4a:04:39:ce:49: 21:5f:32:56:0c:41:ca:24:4a:4b:95:cd:d9:28:5e:d6:56:49: dd:0e:11:1e:7a:e4:2b:ce:b1:57:7e:ff:d3:19:ce:42:4b:43: 4a:61:09:a4:e8:8d:04:cb:10:1d:f2:49:54:03:93:19:2c:93: 1f:81:19:76:0f:fd:3f:75:65:c1:9e:23:f7:19:f6:e2:13:60: 04:ba:f3:7c:52:28:04:2a:ea:f5:aa:4c:6e:6e:e8:93:4b:76: 43:5d:e3:3e:5e:52:38:db:1f:6e:49:00:6d:54:20:44:19:cf: 45:1a:ba:f7:16:e7:aa:68:a8:9c:90:ce:bb:b0:b7:f1:57:d5: 26:a8:5b:32:0d:03:12:c9:26:8c:f7:e8:d8:19:06:32:a0:6f: 32:72:f0:49:9b:2f:78:8a:59:13:57:36:62:00:e7:a9:df:96: a9:01:34:20:04:47:ff:35:3f:c3:84:96:e8:07:39:ab:3b:82: 81:2f:9e:f3:c9:ac:c3:29:d8:7d:b1:f6:79:e7:45:fc:d6:27: 7b:1f:c4:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjUwNjI4MTYxNzQ0WhcNMjUwNzA1MTYxNzQ0WjAYMRYwFAYD VQQDEw02ODYwMTVhOC05NGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnFwmbaBHq9Jz8BCpP216Se0dw7w4DpOkekQr5iMiib9rkfW4LMT68stY/lz smjNpoETiCqg81iUGx08FsqE7WoBo4Mk4J7OMBzktHho/vjrWn0CzhGcSEJJozWL GzS6NpKRYy8o5If6/if1nNGncXg3vpQ7fD3UTx58aWKX/Mlgf63PYQnxsvm8+bG8 8aihb+K2PpCJlq4kxcOgl3pYa2MB5g+GYjLgFrkvAw+tNh6ARXulmvi4aomqqKxd VsuSCKxlVmdafCqXc9eNKzeOhBe0gu9u+02feP8pIxv1HSl0l2tE7o2yupVdaiVN v9Cy024A6h5szh2wqeYNPy4udQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgAj6OD qR/qA5QZXO+C/zI785wjMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzzzmUfLnqtpZK6HJQoddDnhiBN5FjiXnZdxzQmF+TB8eEabunpH5o qpXRdY+qY8bGSgQ5zkkhXzJWDEHKJEpLlc3ZKF7WVkndDhEeeuQrzrFXfv/TGc5C S0NKYQmk6I0EyxAd8klUA5MZLJMfgRl2D/0/dWXBniP3GfbiE2AEuvN8UigEKur1 qkxubuiTS3ZDXeM+XlI42x9uSQBtVCBEGc9FGrr3FueqaKickM67sLfxV9UmqFsy DQMSySaM9+jYGQYyoG8ycvBJmy94ilkTVzZiAOep35apATQgBEf/NT/DhJboBzmr O4KBL57zyazDKdh9sfZ550X81id7H8Rx -----END CERTIFICATE-----Generated at Sun Jun 29 19:37:27 2025 by rpki-client