$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: P1V+v0RE9eiOLPamDhxKCoacoRyy+Fy5llK1ZD+DRaA= Subject key identifier: 3D:9D:7C:FE:49:54:82:51:63:6F:AF:0D:8D:CF:93:A0:CE:95:CB:A8 Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 0203 Signing time: Sat 23 Aug 2025 02:28:51 +0000 Manifest this update: Sat 23 Aug 2025 02:28:51 +0000 Manifest next update: Sat 30 Aug 2025 02:28:51 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: fwfOnIVtqMo8iF8hOcNWYDRGjwKVOH3PcDUqgrItDFw=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: Aug 23 02:28:51 2025 GMT Not After : Aug 30 02:28:51 2025 GMT Subject: CN=68a92763-96af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:5d:5e:92:72:85:88:9c:ce:da:41:41:9d: 4e:71:72:16:fd:fa:f0:7f:05:b5:42:45:e8:9c:1d: 03:82:a7:c7:a8:9d:e9:4c:ef:08:c9:d8:06:ed:c9: 74:73:6f:71:12:dc:9a:ac:9f:ed:37:6d:33:ad:fb: ba:82:72:36:9a:5b:5f:cd:79:58:70:12:10:7a:c0: 04:37:fb:8e:94:f0:65:c5:9b:2c:ed:00:a6:66:b2: 35:62:f0:78:1f:0c:df:74:c2:e4:fc:68:ba:0f:db: b9:48:83:14:db:4e:db:02:5c:ea:d5:25:c9:0f:00: 9d:82:ba:b9:ea:d9:65:b8:91:c1:c1:66:11:9a:ad: 3a:b4:8a:00:ad:3d:43:69:cb:53:7e:3a:df:ff:a4: 16:e1:be:74:45:ee:11:03:c5:77:dc:7b:01:cd:27: d5:81:6f:d7:a2:93:1b:b7:77:40:aa:62:55:76:b6: 69:a8:a5:23:32:1c:33:d2:87:2d:42:c6:d8:55:a2: 09:74:1c:78:d7:64:c6:9e:43:5c:7b:16:86:2f:c4: 32:6e:1c:79:51:76:d9:dd:bf:f5:e8:e3:5a:56:c3: e8:3c:24:fb:5f:53:88:44:b3:cc:8d:c5:0a:84:65: 20:07:59:c0:ca:52:a8:ae:19:94:fd:ca:8b:36:d7: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9D:7C:FE:49:54:82:51:63:6F:AF:0D:8D:CF:93:A0:CE:95:CB:A8 X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:34:e2:8e:9a:6c:0c:cc:f8:a0:03:e9:f2:76:d7:e4:20:29: 60:3b:72:3f:a9:ad:c3:85:04:9d:7b:1e:cc:ac:fc:f0:2c:fc: b9:5a:23:c7:4e:59:b9:a5:05:6f:d9:18:b3:f4:2d:d5:1d:ed: 8d:3d:16:ae:6c:8d:6c:ac:8e:5c:35:49:14:34:83:a7:90:35: 86:e6:d2:f4:6d:8b:ae:19:d0:01:f0:97:3a:e4:d0:53:46:2f: ad:98:15:ae:48:59:d5:2d:a0:9e:91:7e:c6:b3:5c:88:51:f4: 0f:fa:83:20:af:49:59:73:6e:eb:fa:27:d8:60:a7:5f:bb:e0: d4:84:9a:cb:2a:4e:68:37:59:67:6d:51:8a:de:1f:53:ab:81: f4:3d:34:a9:2c:2b:26:4c:fe:94:2b:f9:3d:0b:30:98:fc:d7: 56:f0:57:43:7d:62:b3:23:d7:52:5d:2c:98:09:13:99:b0:31: 76:33:3c:40:87:85:76:19:ea:9c:ab:1b:a9:48:b5:41:c6:78: b1:40:96:f3:17:db:8b:bc:30:54:fb:04:e8:3a:58:0b:b2:4e: 03:68:57:1b:34:e1:75:7c:5f:91:7d:58:ed:7c:bd:e8:fe:c6: aa:62:c8:53:13:67:e8:89:55:a9:94:10:c9:ed:90:cb:f8:91: 71:31:6a:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUwODIzMDIyODUxWhcNMjUwODMwMDIyODUxWjAYMRYwFAYD VQQDEw02OGE5Mjc2My05NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnhdXpJyhYicztpBQZ1OcXIW/frwfwW1QkXonB0DgqfHqJ3pTO8IydgG7cl0 c29xEtyarJ/tN20zrfu6gnI2mltfzXlYcBIQesAEN/uOlPBlxZss7QCmZrI1YvB4 HwzfdMLk/Gi6D9u5SIMU207bAlzq1SXJDwCdgrq56tlluJHBwWYRmq06tIoArT1D actTfjrf/6QW4b50Re4RA8V33HsBzSfVgW/XopMbt3dAqmJVdrZpqKUjMhwz0oct QsbYVaIJdBx412TGnkNcexaGL8Qybhx5UXbZ3b/16ONaVsPoPCT7X1OIRLPMjcUK hGUgB1nAylKorhmU/cqLNtcyWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2dfP5J VIJRY2+vDY3Pk6DOlcuoMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRNOKOmmwMzPigA+nydtfkIClgO3I/qa3DhQSdex7MrPzwLPy5WiPH Tlm5pQVv2Riz9C3VHe2NPRaubI1srI5cNUkUNIOnkDWG5tL0bYuuGdAB8Jc65NBT Ri+tmBWuSFnVLaCekX7Gs1yIUfQP+oMgr0lZc27r+ifYYKdfu+DUhJrLKk5oN1ln bVGK3h9Tq4H0PTSpLCsmTP6UK/k9CzCY/NdW8FdDfWKzI9dSXSyYCROZsDF2MzxA h4V2GeqcqxupSLVBxnixQJbzF9uLvDBU+wToOlgLsk4DaFcbNOF1fF+RfVjtfL3o /saqYshTE2foiVWplBDJ7ZDL+JFxMWoP -----END CERTIFICATE-----Generated at Sat Aug 23 16:24:40 2025 by rpki-client