$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: 4xwCnjBQprxjmmogeHRVSY6HFx78vMrJgPufCQaYoZI= Subject key identifier: 2F:BD:FD:FF:77:AE:D0:86:5B:F2:15:25:70:22:92:93:3C:BB:F0:6D Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: 72 Signing time: Sat 23 Aug 2025 07:20:18 +0000 Manifest this update: Sat 23 Aug 2025 07:20:16 +0000 Manifest next update: Sat 30 Aug 2025 07:20:16 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: mHauqfV4DnjFj1qWjSH7LmFjGXtj+G7qed4OkuN/kTA=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Aug 23 07:20:16 2025 GMT Not After : Aug 30 07:20:16 2025 GMT Subject: CN=68a96bb1-f3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e5:43:ca:c7:c7:11:e2:02:44:71:36:fe:60: d8:92:1d:3d:ec:f2:8e:f1:3e:2b:3b:b1:6f:a6:59: 42:1d:47:86:b6:49:d7:cf:ad:c4:6b:c9:66:51:e3: df:7c:01:0f:b5:cc:95:c4:af:f7:4d:27:bf:6a:d8: 59:12:d2:44:f6:ce:9b:9f:6e:6a:52:31:0f:37:8d: 2f:a3:c6:01:ff:e5:22:56:a5:07:11:4d:1d:f6:26: 7b:62:1b:b9:7a:cc:5b:d0:7b:58:c0:23:70:01:dc: 92:49:e9:e9:93:e3:3a:2e:79:8b:c6:c4:88:90:7d: 62:00:ca:39:15:1a:f7:a2:ed:30:33:8f:26:8a:c0: 82:6b:37:75:57:aa:1d:a8:c2:33:cd:df:68:48:6b: e8:49:82:5a:09:15:31:02:bf:f0:02:de:f6:ea:f1: 55:8e:39:94:3e:da:1b:3a:28:46:b3:2e:34:45:64: 21:c3:78:9b:a3:2f:e1:25:aa:a7:44:f9:80:a3:59: d3:09:4b:0c:6a:7e:f1:7b:d3:c9:d0:a4:bd:03:15: c1:41:40:77:94:d8:f8:f0:52:89:6f:6b:b3:b7:0d: 26:47:65:5e:36:15:01:cc:94:28:12:b3:43:c8:46: 98:67:fb:69:66:7f:2c:4a:b6:77:d0:40:da:d8:7b: e4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BD:FD:FF:77:AE:D0:86:5B:F2:15:25:70:22:92:93:3C:BB:F0:6D X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:11:c9:87:c5:d6:11:77:b7:95:b4:67:56:c1:84:6a:bc:09: a6:aa:f5:25:db:7e:c0:7d:08:fc:a4:34:64:60:0b:79:ea:e3: 9a:0e:e2:6c:98:f5:9e:e3:8b:ff:a2:3a:39:96:aa:bc:91:3c: ea:9e:86:ec:63:22:0d:19:8a:63:66:54:a0:93:9e:3f:b5:d5: 7f:d4:34:a4:74:4b:a1:97:1d:a7:a2:73:36:bf:5c:63:49:5e: ea:56:1a:84:20:93:6b:02:fc:44:d6:cc:15:fc:42:40:02:e3: 94:0d:0f:2d:28:d9:06:86:de:f1:cc:10:df:18:98:83:ab:ee: 2f:fa:20:ea:79:f4:91:27:dc:a7:6d:3c:29:dd:b0:2f:02:9e: f8:cf:4d:39:77:67:cb:08:df:59:5d:24:d6:11:18:32:ce:db: 4e:97:16:1a:18:52:6b:cc:87:e1:26:3c:d3:76:42:6e:4f:c0: b1:6f:15:3e:2f:5b:94:64:5e:41:55:9d:5f:5f:ea:f4:d8:0f: d2:69:b3:d8:6c:37:05:f8:58:c9:ef:3c:28:2c:1a:5a:19:fa: e5:dd:ae:2e:49:62:0c:b2:ca:66:01:67:b9:3b:08:06:12:4f: 7a:cf:26:9c:a9:65:97:17:ba:61:e5:14:69:2e:86:1b:57:9d: 63:69:c6:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkM4OTExMC8GA1UEBRMoQjE3NEEzRDRCQTlCNDc2RTJCMzFFNDdDNzJBMjk4RDA0 NEQ5ODc4NTAeFw0yNTA4MjMwNzIwMTZaFw0yNTA4MzAwNzIwMTZaMBgxFjAUBgNV BAMTDTY4YTk2YmIxLWYzZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs5UPKx8cR4gJEcTb+YNiSHT3s8o7xPis7sW+mWUIdR4a2SdfPrcRryWZR4998 AQ+1zJXEr/dNJ79q2FkS0kT2zpufbmpSMQ83jS+jxgH/5SJWpQcRTR32JntiG7l6 zFvQe1jAI3AB3JJJ6emT4zoueYvGxIiQfWIAyjkVGvei7TAzjyaKwIJrN3VXqh2o wjPN32hIa+hJgloJFTECv/AC3vbq8VWOOZQ+2hs6KEazLjRFZCHDeJujL+ElqqdE +YCjWdMJSwxqfvF708nQpL0DFcFBQHeU2PjwUolva7O3DSZHZV42FQHMlCgSs0PI Rphn+2lmfyxKtnfQQNrYe+Q1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUL739/3eu 0IZb8hUlcCKSkzy78G0wHwYDVR0jBBgwFoAUsXSj1LqbR24rMeR8cqKY0ETZh4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQzg5LzlFNzI2MkJFRUZD RTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1hTajFMcWJSMjRyTWVSOGNxS1kwRVRaaDRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Qzg5LzlFNzI2MkJFRUZDRTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0 ck1lUjhjcUtZMEVUWmg0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADERyYfF1hF3t5W0Z1bBhGq8Caaq9SXbfsB9CPykNGRgC3nq45oO4myY 9Z7ji/+iOjmWqryRPOqehuxjIg0ZimNmVKCTnj+11X/UNKR0S6GXHaeicza/XGNJ XupWGoQgk2sC/ETWzBX8QkAC45QNDy0o2QaG3vHMEN8YmIOr7i/6IOp59JEn3Kdt PCndsC8CnvjPTTl3Z8sI31ldJNYRGDLO206XFhoYUmvMh+EmPNN2Qm5PwLFvFT4v W5RkXkFVnV9f6vTYD9Jps9hsNwX4WMnvPCgsGloZ+uXdri5JYgyyymYBZ7k7CAYS T3rPJpypZZcXumHlFGkuhhtXnWNpxrc= -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:03 2025 by rpki-client