$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: kEuYAZ1TKNOxBrScgIbnrbg4wPbBK2QJ0JDpTlDCciw= Subject key identifier: D3:1F:F1:CA:17:89:39:4C:DF:73:AC:17:D9:CA:39:74:01:FA:4A:54 Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 1995 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 1989 Signing time: Mon 20 Oct 2025 16:43:08 +0000 Manifest this update: Mon 20 Oct 2025 16:43:08 +0000 Manifest next update: Mon 27 Oct 2025 16:43:08 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: BZ3RU3F6WXKMgb6OY0zn6Ybr3Q/tnN4tv0EmfLHT6gw=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6549 (0x1995) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533, serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: Oct 20 16:43:08 2025 GMT Not After : Oct 27 16:43:08 2025 GMT Subject: CN=68f6669c-af57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:2d:4d:83:e1:8c:18:80:83:98:e8:21:ab: 55:3b:09:f9:49:a2:62:e4:44:8b:19:75:c8:29:c0: 17:86:e5:58:dd:f5:57:30:aa:4e:d7:3b:57:53:84: ff:50:61:e9:d7:20:43:65:bd:bb:5f:42:f7:2d:c2: 28:c6:f1:69:d5:79:f2:cb:63:65:a6:d0:f7:44:83: 30:10:78:84:9b:a6:b4:2b:e8:1d:cf:c5:5e:34:3a: 7d:d9:a2:ee:64:8a:d4:5f:04:13:97:45:ed:24:b7: 90:dc:75:bb:ab:fe:79:81:02:2b:3c:42:91:6e:93: a1:39:87:c0:78:e2:64:cb:07:5e:25:59:78:c9:9d: 0f:f1:71:e7:d4:72:27:cb:9d:38:5b:49:7a:52:d7: ba:c9:5b:3a:a9:6f:6c:eb:8d:34:a9:3c:42:8c:77: f2:21:41:5a:ac:4d:a4:65:8b:73:26:78:00:d7:39: ce:43:59:6f:65:6e:64:4c:97:6e:8d:5c:1a:d9:21: ab:0c:9b:6d:fe:0e:18:29:cb:e3:6a:22:f1:4f:6a: b2:61:5d:c2:eb:7f:26:6f:a7:58:ca:f6:a0:be:23: 42:e3:a7:1c:07:32:df:a4:d3:b6:56:90:44:69:34: 5a:1e:65:b3:5f:5b:d1:2e:b7:48:0e:58:56:a8:17: 43:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1F:F1:CA:17:89:39:4C:DF:73:AC:17:D9:CA:39:74:01:FA:4A:54 X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:5f:cf:5b:c2:f6:32:bc:6b:c3:8f:71:4d:0f:e7:52:c7:78: 52:ee:b8:a2:17:c9:7e:0d:0e:c3:36:22:36:98:61:d8:c7:3b: b1:94:47:cc:a4:81:f7:df:ca:eb:5d:4f:6a:fc:39:b1:d2:73: 95:c5:a5:d6:c6:60:97:de:d8:34:43:5d:0e:3f:fa:90:ef:8b: 10:64:c8:d3:7c:01:a0:c4:e6:f0:19:e5:84:f2:0e:8a:a9:6d: 8f:41:5a:f7:ab:1e:b7:34:db:32:ae:0f:cd:82:13:81:08:ed: 65:1a:5c:e1:1b:b3:d9:a0:e4:5d:da:de:49:76:88:9e:d7:88: 54:a4:30:2c:b9:fd:b0:36:fc:8c:85:c9:a2:a3:b4:ee:80:13: f0:d4:7a:58:72:8f:cc:70:83:49:d9:97:4c:3a:4a:3f:90:6b: 0b:03:95:8e:d8:4b:3d:c0:a2:c1:85:f3:7b:ed:15:77:c8:4c: 56:b8:90:d4:8d:29:1b:79:34:82:84:d1:e4:cc:e7:8b:00:78: e0:5d:f4:21:fb:53:ab:68:4e:e7:69:75:f9:d1:4c:b8:d6:63: ad:6e:1c:83:84:46:a9:d4:8c:d0:a0:25:f2:18:b7:d0:34:5e: 02:38:f3:f7:d9:8a:ed:2a:9d:ec:ee:1b:f5:65:4d:2d:b8:98: 03:3c:6a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjUxMDIwMTY0MzA4WhcNMjUxMDI3MTY0MzA4WjAYMRYwFAYD VQQDEw02OGY2NjY5Yy1hZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMstTYPhjBiAg5joIatVOwn5SaJi5ESLGXXIKcAXhuVY3fVXMKpO1ztXU4T/ UGHp1yBDZb27X0L3LcIoxvFp1Xnyy2NlptD3RIMwEHiEm6a0K+gdz8VeNDp92aLu ZIrUXwQTl0XtJLeQ3HW7q/55gQIrPEKRbpOhOYfAeOJkywdeJVl4yZ0P8XHn1HIn y504W0l6Ute6yVs6qW9s6400qTxCjHfyIUFarE2kZYtzJngA1znOQ1lvZW5kTJdu jVwa2SGrDJtt/g4YKcvjaiLxT2qyYV3C638mb6dYyvagviNC46ccBzLfpNO2VpBE aTRaHmWzX1vRLrdIDlhWqBdDqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMf8coX iTlM33OsF9nKOXQB+kpUMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYX89bwvYyvGvDj3FND+dSx3hS7riiF8l+DQ7DNiI2mGHYxzuxlEfM pIH338rrXU9q/Dmx0nOVxaXWxmCX3tg0Q10OP/qQ74sQZMjTfAGgxObwGeWE8g6K qW2PQVr3qx63NNsyrg/NghOBCO1lGlzhG7PZoORd2t5Jdoie14hUpDAsuf2wNvyM hcmio7TugBPw1HpYco/McINJ2ZdMOko/kGsLA5WO2Es9wKLBhfN77RV3yExWuJDU jSkbeTSChNHkzOeLAHjgXfQh+1OraE7naXX50Uy41mOtbhyDhEap1IzQoCXyGLfQ NF4COPP32YrtKp3s7hv1ZU0tuJgDPGq7 -----END CERTIFICATE-----Generated at Mon Oct 20 20:18:17 2025 by rpki-client