$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: E/eEmXDG/TwLCIt2KJd8gR2gTPY8vxsp9CtfCTos+9Y= Subject key identifier: 7B:93:3C:20:45:9E:A0:18:A8:FB:74:99:1C:EB:8D:2A:5D:77:78:23 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B8B Signing time: Fri 22 Aug 2025 19:09:24 +0000 Manifest this update: Fri 22 Aug 2025 19:09:23 +0000 Manifest next update: Fri 29 Aug 2025 19:09:23 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: NT0CFiPNazru/UfP2SxJnAVaGCoarSxtJAXsDQPs72s=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Aug 22 19:09:23 2025 GMT Not After : Aug 29 19:09:23 2025 GMT Subject: CN=68a8c064-30dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:27:c2:98:fa:58:f8:c1:11:56:74:60:76: 9b:ec:37:8c:b8:a9:84:7e:f4:31:0f:f0:5e:ca:d4: 5f:43:ac:6d:eb:2e:fb:2c:50:b4:a0:c7:bc:2c:da: 83:16:f1:3b:4e:40:9d:80:21:7f:77:99:a5:28:92: 1d:3f:13:b6:fd:4d:ee:3e:0e:07:6d:d3:ce:6b:76: 6b:d1:dc:74:ed:e8:df:33:73:e1:e6:c9:79:0d:82: d0:65:8d:12:bc:05:be:fd:4d:3e:43:7a:28:76:86: ec:03:83:0d:21:ea:f0:5d:fc:36:9f:24:19:be:fd: 41:eb:19:a2:4c:04:47:b2:50:fb:f6:28:5f:9b:b9: 4c:22:5e:b5:6e:3e:d2:bf:4b:f8:cc:ff:f5:79:9d: 16:74:f6:9a:53:4c:55:9e:0c:d6:99:30:fa:56:37: 14:c5:21:21:73:a4:54:72:cd:ea:78:cc:5f:b8:9a: 8b:f0:82:65:07:75:9b:53:4e:2e:bd:74:1e:7e:59: 73:c1:70:7d:0a:c4:c8:f8:a4:ab:ae:1b:ed:1c:d8: 6c:ef:26:29:25:35:f0:48:fb:92:c3:e3:f2:1f:b6: c5:c8:37:a1:7a:ec:c7:ba:e5:47:5a:db:e5:3d:f9: c2:64:c5:a2:d8:e6:25:3c:8a:81:7f:ff:0c:c9:e2: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:93:3C:20:45:9E:A0:18:A8:FB:74:99:1C:EB:8D:2A:5D:77:78:23 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:13:52:4d:67:b0:c3:b1:df:bf:ef:0d:f5:0b:60:da:b9:48: b2:0c:e7:3c:40:20:9e:48:16:25:6e:90:5a:60:2a:ca:02:4f: 35:7d:ca:12:31:9d:52:19:f8:a6:c3:9b:47:58:2c:30:0b:cd: 33:86:8c:a7:5f:ba:8e:18:a6:13:1b:d5:10:91:53:b8:68:f2: 80:b5:ee:ce:14:9a:9c:a7:2f:72:47:21:e2:7c:9c:fe:6c:6a: d9:88:4b:b5:f2:db:32:23:85:ca:f1:81:c5:ba:37:95:9e:99: 6c:79:60:b6:eb:63:84:56:c1:73:81:2f:5d:dc:99:65:27:ba: b7:3b:4f:cf:86:c9:8b:5e:94:52:cc:35:15:d5:11:4f:b3:3f: 82:e8:bb:12:49:44:c4:49:22:32:87:d6:3f:47:d8:b4:95:b6: 7d:a8:60:9f:5f:b5:bd:6a:02:2b:dd:b6:12:ae:c0:21:32:ef: 35:c3:79:d6:45:92:70:d5:2a:03:e4:5b:3e:64:34:94:db:e1: 55:09:97:90:53:c9:89:15:bc:5a:69:9a:07:13:0e:1c:36:10: f8:f2:09:04:73:c4:11:35:eb:99:b7:12:2b:4a:2f:ac:76:3d: 15:72:66:07:ee:75:20:e3:77:42:69:1a:64:e4:b6:29:55:f5: 84:e0:a9:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwODIyMTkwOTIzWhcNMjUwODI5MTkwOTIzWjAYMRYwFAYD VQQDEw02OGE4YzA2NC0zMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0Enwpj6WPjBEVZ0YHab7DeMuKmEfvQxD/BeytRfQ6xt6y77LFC0oMe8LNqD FvE7TkCdgCF/d5mlKJIdPxO2/U3uPg4HbdPOa3Zr0dx07ejfM3Ph5sl5DYLQZY0S vAW+/U0+Q3oodobsA4MNIerwXfw2nyQZvv1B6xmiTARHslD79ihfm7lMIl61bj7S v0v4zP/1eZ0WdPaaU0xVngzWmTD6VjcUxSEhc6RUcs3qeMxfuJqL8IJlB3WbU04u vXQefllzwXB9CsTI+KSrrhvtHNhs7yYpJTXwSPuSw+PyH7bFyDeheuzHuuVHWtvl PfnCZMWi2OYlPIqBf/8MyeJa8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuTPCBF nqAYqPt0mRzrjSpdd3gjMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClE1JNZ7DDsd+/7w31C2DauUiyDOc8QCCeSBYlbpBaYCrKAk81fcoS MZ1SGfimw5tHWCwwC80zhoynX7qOGKYTG9UQkVO4aPKAte7OFJqcpy9yRyHifJz+ bGrZiEu18tsyI4XK8YHFujeVnplseWC262OEVsFzgS9d3JllJ7q3O0/PhsmLXpRS zDUV1RFPsz+C6LsSSUTESSIyh9Y/R9i0lbZ9qGCfX7W9agIr3bYSrsAhMu81w3nW RZJw1SoD5Fs+ZDSU2+FVCZeQU8mJFbxaaZoHEw4cNhD48gkEc8QRNeuZtxIrSi+s dj0VcmYH7nUg43dCaRpk5LYpVfWE4Kn7 -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:42 2025 by rpki-client