$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: rXUUIJuKxz+WaWF/oLWgpvyA+RWRSL+guqt/+IJ/h+I= Subject key identifier: C3:25:D8:37:FF:D5:D9:2F:51:FD:23:F5:D1:D8:C1:B8:4F:5D:19:85 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B84 Signing time: Fri 08 Aug 2025 19:17:11 +0000 Manifest this update: Fri 08 Aug 2025 19:17:11 +0000 Manifest next update: Fri 15 Aug 2025 19:17:11 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: BcXn/Bh3XbC6mzFUvZ71Fq8uGRyNXR+PdGUJsbsApac=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Aug 8 19:17:11 2025 GMT Not After : Aug 15 19:17:11 2025 GMT Subject: CN=68964d37-e60f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:08:98:4c:db:32:fb:04:b1:ed:ac:86:84:7c: d0:e1:e9:b5:c1:25:7a:2b:db:ef:b2:74:4c:e6:37: a1:0e:17:6c:45:b6:ed:15:02:cd:8d:d7:7d:0a:11: b3:5e:05:0d:de:13:dd:3b:b6:43:e7:31:24:e8:a0: e2:3e:bc:36:c6:a9:44:52:0d:d6:d5:98:f0:2f:91: 53:77:38:c1:12:fd:56:12:f0:48:28:db:0e:34:cc: 9c:e9:9d:1d:e1:8e:e5:63:bf:51:e9:a9:82:cd:6e: e7:8d:fe:61:91:19:a4:b1:82:b3:ad:06:d5:2b:61: 1d:57:a5:3b:25:dc:97:b4:5b:81:39:2f:c8:36:df: ce:57:a7:d5:52:24:11:4a:23:53:3f:b9:fd:94:26: 8f:4d:a5:3c:1d:9c:88:34:9f:99:6f:7e:62:6d:a0: 8e:e9:0f:30:46:06:21:98:18:82:29:7c:95:57:24: 1d:07:f1:7a:55:09:27:13:ed:f1:d0:18:92:19:9d: 56:9a:db:4e:6b:5c:8d:72:7c:7e:7a:02:cc:9a:8e: 1f:95:92:6b:9f:57:b0:d4:cd:70:84:b4:ce:10:24: 32:7c:fc:52:0e:56:27:0a:44:26:15:e4:da:6e:e6: 7f:ca:35:4a:74:c6:f7:a3:db:b0:5b:05:60:c5:cd: fb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:25:D8:37:FF:D5:D9:2F:51:FD:23:F5:D1:D8:C1:B8:4F:5D:19:85 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:55:f4:ab:c1:09:05:3e:bd:c1:cc:74:8a:b6:2e:1f:fb:d4: 0b:58:0c:04:b6:60:9f:66:23:bc:22:61:e9:ab:65:d3:0f:a4: eb:bd:90:e4:66:c8:eb:03:31:bf:8c:5b:ab:c0:34:6c:9d:43: 04:77:d5:b8:bc:a8:92:92:ea:6f:38:8a:57:38:a4:09:3e:d4: fc:32:51:be:fe:6b:5d:fa:bc:ac:83:59:4a:3b:e9:b3:2d:5f: fb:66:97:60:98:e3:b8:10:79:e9:94:0c:dd:a2:e2:ff:c2:7f: 35:81:f7:7c:4b:09:b1:90:e2:79:77:1c:b2:72:b9:f7:ae:f1: 51:15:12:2d:85:13:0b:d4:94:d3:3d:8c:f9:09:92:8b:ba:6b: 63:8b:4f:4c:f9:5b:a7:1e:b6:66:63:67:67:2c:89:1c:66:c3: 65:9b:e4:85:a1:e5:03:5f:83:90:a6:ce:7a:43:3d:4a:22:fb: 24:c6:d2:27:4b:05:e8:d9:e0:98:57:2d:4e:f1:d1:6b:b2:2a: 3a:8b:f5:02:93:f2:ca:1d:37:1a:1e:58:02:d2:15:14:10:15: 94:01:dd:cf:0a:06:31:b4:5b:b2:c6:74:91:c1:e5:ad:0f:ed: a2:09:62:3b:ee:f5:fe:80:de:a2:83:e4:23:f0:82:9a:98:72: ee:aa:1b:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwODA4MTkxNzExWhcNMjUwODE1MTkxNzExWjAYMRYwFAYD VQQDEw02ODk2NGQzNy1lNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AiYTNsy+wSx7ayGhHzQ4em1wSV6K9vvsnRM5jehDhdsRbbtFQLNjdd9ChGz XgUN3hPdO7ZD5zEk6KDiPrw2xqlEUg3W1ZjwL5FTdzjBEv1WEvBIKNsONMyc6Z0d 4Y7lY79R6amCzW7njf5hkRmksYKzrQbVK2EdV6U7JdyXtFuBOS/INt/OV6fVUiQR SiNTP7n9lCaPTaU8HZyINJ+Zb35ibaCO6Q8wRgYhmBiCKXyVVyQdB/F6VQknE+3x 0BiSGZ1WmttOa1yNcnx+egLMmo4flZJrn1ew1M1whLTOECQyfPxSDlYnCkQmFeTa buZ/yjVKdMb3o9uwWwVgxc37cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMl2Df/ 1dkvUf0j9dHYwbhPXRmFMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsVfSrwQkFPr3BzHSKti4f+9QLWAwEtmCfZiO8ImHpq2XTD6TrvZDk ZsjrAzG/jFurwDRsnUMEd9W4vKiSkupvOIpXOKQJPtT8MlG+/mtd+rysg1lKO+mz LV/7ZpdgmOO4EHnplAzdouL/wn81gfd8SwmxkOJ5dxyycrn3rvFRFRIthRML1JTT PYz5CZKLumtji09M+VunHrZmY2dnLIkcZsNlm+SFoeUDX4OQps56Qz1KIvskxtIn SwXo2eCYVy1O8dFrsio6i/UCk/LKHTcaHlgC0hUUEBWUAd3PCgYxtFuyxnSRweWt D+2iCWI77vX+gN6ig+Qj8IKamHLuqhuT -----END CERTIFICATE-----Generated at Sat Aug 9 02:58:37 2025 by rpki-client