$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: Z434WcGZ8Y7GLbH86xO3bMeO3QFXoN0QB252mfOUCeM= Subject key identifier: 7E:5A:30:D3:DE:34:9F:55:BD:72:F2:0C:02:5E:D2:44:E9:0D:AF:6D Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0BB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0BA8 Signing time: Sat 18 Oct 2025 19:49:31 +0000 Manifest this update: Sat 18 Oct 2025 19:49:30 +0000 Manifest next update: Sat 25 Oct 2025 19:49:30 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: 7q/u4yAmJRPlrtGUBuZWVTl8gvubwPa6j9Rv1dh2qZY=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2995 (0xbb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Oct 18 19:49:30 2025 GMT Not After : Oct 25 19:49:30 2025 GMT Subject: CN=68f3ef4a-6818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8d:e3:41:65:19:4d:00:0f:63:fe:3d:27:fe: 5f:21:fc:1c:73:f3:f2:0f:a1:50:ba:9d:80:69:68: 4e:86:c4:e5:cb:ef:52:91:ee:84:12:b2:ac:f9:6e: bb:75:17:46:3f:2b:27:dd:f5:d7:86:02:7a:2f:c0: 51:a8:06:f7:85:c1:a1:95:9c:b2:d2:88:62:08:77: cf:24:05:71:50:3a:81:37:c7:65:30:62:58:cf:c7: 04:5a:57:7b:2a:15:9d:40:f2:f2:13:82:6d:cb:df: 43:0b:aa:a4:35:f8:9c:08:b2:cb:48:d8:d1:d4:61: a3:6e:3c:37:68:de:56:a8:ae:cd:df:2f:ed:d5:ac: db:62:23:1f:ef:8e:63:2c:dd:93:b8:a9:a3:1b:50: 88:01:9e:52:d2:fd:80:0c:16:33:bf:ad:84:59:25: 7b:a6:16:a8:66:ec:99:cf:bd:2d:1d:0b:0d:12:b6: be:08:22:a9:e4:b2:10:32:2f:d3:30:16:ce:67:53: c6:80:8c:99:18:66:35:53:f9:80:5d:02:1e:fc:9b: 18:f0:f4:fe:1b:e3:bd:49:b7:4c:57:62:1d:d0:36: 06:d3:6a:98:d3:16:cf:eb:20:b0:51:03:78:ac:24: 15:47:12:9b:f3:84:f1:9f:34:62:16:72:e8:ae:15: c3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5A:30:D3:DE:34:9F:55:BD:72:F2:0C:02:5E:D2:44:E9:0D:AF:6D X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f3:63:d3:0d:97:7f:5a:b0:3f:ea:21:73:e6:2b:cd:33:bb: cf:5e:13:51:4a:f3:9a:21:20:0f:39:85:18:9b:1e:bf:85:62: cb:13:05:a5:6a:0a:08:55:08:cd:92:c8:40:9a:7b:5b:5c:bd: 93:ad:87:40:a0:a2:55:b8:0c:67:39:90:c8:9b:e8:5b:db:e7: bf:6a:e5:95:7f:c1:1a:db:1e:5b:9a:58:70:ca:de:b3:d0:0c: d9:f0:1a:0c:cd:3c:99:b9:32:82:be:fe:47:78:22:d6:23:9c: 86:c1:be:40:30:14:45:cb:75:04:8f:61:7f:0f:b9:8e:09:32: b5:c1:48:e5:fa:5e:51:f0:70:d7:d5:2c:24:b1:80:b5:12:c3: 6c:11:56:90:91:c3:43:0f:64:62:bf:66:a3:23:6c:e1:02:dc: fc:49:4a:af:ee:48:4b:bb:2c:b4:68:34:33:31:96:cc:0b:a4: 3e:32:21:4f:61:53:21:14:2e:88:01:28:5e:8d:88:86:31:38: 82:f5:2a:03:45:0e:8c:64:1f:92:0d:f2:c9:1c:ea:4e:d4:54: 3a:02:e4:57:b9:01:b3:93:6a:4b:5f:0b:ec:33:01:60:b9:42: a3:65:77:df:84:4c:fa:d7:34:76:34:28:31:81:db:30:4e:90: 9b:ec:ad:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUxMDE4MTk0OTMwWhcNMjUxMDI1MTk0OTMwWjAYMRYwFAYD VQQDEw02OGYzZWY0YS02ODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmY3jQWUZTQAPY/49J/5fIfwcc/PyD6FQup2AaWhOhsTly+9Ske6EErKs+W67 dRdGPysn3fXXhgJ6L8BRqAb3hcGhlZyy0ohiCHfPJAVxUDqBN8dlMGJYz8cEWld7 KhWdQPLyE4Jty99DC6qkNficCLLLSNjR1GGjbjw3aN5WqK7N3y/t1azbYiMf745j LN2TuKmjG1CIAZ5S0v2ADBYzv62EWSV7phaoZuyZz70tHQsNEra+CCKp5LIQMi/T MBbOZ1PGgIyZGGY1U/mAXQIe/JsY8PT+G+O9SbdMV2Id0DYG02qY0xbP6yCwUQN4 rCQVRxKb84TxnzRiFnLorhXDgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5aMNPe NJ9VvXLyDAJe0kTpDa9tMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS82PTDZd/WrA/6iFz5ivNM7vPXhNRSvOaISAPOYUYmx6/hWLLEwWl agoIVQjNkshAmntbXL2TrYdAoKJVuAxnOZDIm+hb2+e/auWVf8Ea2x5bmlhwyt6z 0AzZ8BoMzTyZuTKCvv5HeCLWI5yGwb5AMBRFy3UEj2F/D7mOCTK1wUjl+l5R8HDX 1SwksYC1EsNsEVaQkcNDD2Riv2ajI2zhAtz8SUqv7khLuyy0aDQzMZbMC6Q+MiFP YVMhFC6IAShejYiGMTiC9SoDRQ6MZB+SDfLJHOpO1FQ6AuRXuQGzk2pLXwvsMwFg uUKjZXffhEz61zR2NCgxgdswTpCb7K0Q -----END CERTIFICATE-----Generated at Mon Oct 20 16:12:43 2025 by rpki-client