$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: sGFBivRBvIHs3y7oar3vCC8jUMXmaDyHXeP/0bLq9u4= Subject key identifier: 77:92:2F:78:1D:C6:64:69:A1:A8:22:96:9D:1A:6A:AC:0A:14:69:33 Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 1977 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 196B Signing time: Fri 22 Aug 2025 16:29:49 +0000 Manifest this update: Fri 22 Aug 2025 16:29:49 +0000 Manifest next update: Fri 29 Aug 2025 16:29:49 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: Ig2ZDy0DaMVJ+z3jyZIGrM5ByqWmtLfUZDSGPlIGi5o=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6519 (0x1977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533, serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: Aug 22 16:29:49 2025 GMT Not After : Aug 29 16:29:49 2025 GMT Subject: CN=68a89afd-f41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c7:77:eb:48:41:b6:db:1f:4f:d9:20:e3:64: 1f:f4:72:44:eb:6d:82:84:a1:44:78:65:90:3f:7d: 1d:d5:5d:b8:5c:f7:17:ff:da:0b:9a:0f:c7:53:c1: d9:69:0b:ca:12:c3:31:c7:9f:61:e6:0c:9f:0e:a0: 84:cf:6b:13:69:38:84:74:4d:dd:50:51:57:ed:2f: f6:f7:fb:cc:ed:1d:22:a4:58:7d:92:bf:47:ad:e9: af:11:9d:f0:f8:ca:4c:74:2f:48:27:9a:7e:84:06: 37:c2:5c:5d:82:e9:7f:8e:8f:bf:ed:20:d6:01:4e: ac:7b:6b:85:8a:d8:fe:9a:96:b6:34:ad:7c:57:da: 68:5e:c9:a0:70:08:a3:23:16:0b:c2:22:6b:fe:19: 85:a4:99:0f:d2:9f:6a:68:7e:39:1a:7b:57:47:01: 9a:74:2d:67:cf:a6:4a:46:17:1a:af:5a:71:79:4b: dc:7d:b9:2e:86:ea:5b:82:fa:96:03:9d:1e:b1:a3: a9:26:3d:01:9e:ff:bf:d1:3d:7b:a0:1d:a9:fd:c1: 91:c9:95:27:9a:33:20:f7:f9:ea:7d:ca:0c:ab:d1: 22:66:2c:4f:bb:3e:f4:84:4a:9c:fe:b0:5d:bf:4f: 10:fb:8c:17:b4:b3:64:f3:04:64:20:f4:91:44:0d: 26:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:92:2F:78:1D:C6:64:69:A1:A8:22:96:9D:1A:6A:AC:0A:14:69:33 X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a6:4b:0e:0d:e9:fd:f7:82:07:98:7e:0f:62:ae:93:c9:fe: d3:61:25:b0:e1:f0:40:6d:6a:8a:cf:e4:cf:f7:3c:92:3f:d8: b4:f4:e1:94:fb:5c:9c:56:a7:d1:16:f1:ae:50:00:9a:e0:60: ee:2b:6b:61:48:85:f2:85:94:23:b7:a4:e6:7e:46:be:64:a3: 2b:8c:11:8b:75:1b:66:6d:7d:53:2e:3d:06:31:b4:1f:af:c8: f1:25:1f:72:21:db:b3:08:29:f1:e1:73:55:69:bb:fa:10:02: 20:88:6a:47:fa:6f:5b:ec:ab:53:29:73:9b:ff:a6:64:3d:78: 8f:d2:83:de:74:48:53:31:26:e8:8e:ab:5f:45:48:62:a1:02: 1f:aa:14:70:47:42:de:56:ad:71:88:f6:11:43:2b:88:8e:b4: e7:e1:64:8c:13:8e:cc:ee:71:17:31:1d:63:b7:69:d0:58:fb: e3:2d:b3:bf:c2:91:ff:c7:da:97:a7:77:84:3c:c4:a4:f8:4a: 34:8c:69:24:a2:96:eb:d6:b8:7f:9b:4d:89:e2:47:fd:b5:e9: eb:c7:61:f9:46:28:14:06:66:50:08:9b:29:6c:e6:48:5c:bf: a7:13:34:30:e6:8a:0d:a6:d0:a6:8a:01:29:cf:06:b5:f5:b1: 6b:38:d4:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjUwODIyMTYyOTQ5WhcNMjUwODI5MTYyOTQ5WjAYMRYwFAYD VQQDEw02OGE4OWFmZC1mNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cd360hBttsfT9kg42Qf9HJE622ChKFEeGWQP30d1V24XPcX/9oLmg/HU8HZ aQvKEsMxx59h5gyfDqCEz2sTaTiEdE3dUFFX7S/29/vM7R0ipFh9kr9HremvEZ3w +MpMdC9IJ5p+hAY3wlxdgul/jo+/7SDWAU6se2uFitj+mpa2NK18V9poXsmgcAij IxYLwiJr/hmFpJkP0p9qaH45GntXRwGadC1nz6ZKRhcar1pxeUvcfbkuhupbgvqW A50esaOpJj0Bnv+/0T17oB2p/cGRyZUnmjMg9/nqfcoMq9EiZixPuz70hEqc/rBd v08Q+4wXtLNk8wRkIPSRRA0mpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeSL3gd xmRpoagilp0aaqwKFGkzMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADpksODen994IHmH4PYq6Tyf7TYSWw4fBAbWqKz+TP9zySP9i09OGU +1ycVqfRFvGuUACa4GDuK2thSIXyhZQjt6Tmfka+ZKMrjBGLdRtmbX1TLj0GMbQf r8jxJR9yIduzCCnx4XNVabv6EAIgiGpH+m9b7KtTKXOb/6ZkPXiP0oPedEhTMSbo jqtfRUhioQIfqhRwR0LeVq1xiPYRQyuIjrTn4WSME47M7nEXMR1jt2nQWPvjLbO/ wpH/x9qXp3eEPMSk+Eo0jGkkopbr1rh/m02J4kf9tenrx2H5RigUBmZQCJspbOZI XL+nEzQw5ooNptCmigEpzwa19bFrONT4 -----END CERTIFICATE-----Generated at Sat Aug 23 17:53:07 2025 by rpki-client