$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: IoyLHKHxXNWLZD21ukcEbeqNLvddoZNfseuPukp2QoY= Subject key identifier: 36:76:1D:05:9B:F4:C3:3A:A0:33:B9:D3:90:B3:4D:20:66:95:75:F7 Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 1966 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 195A Signing time: Sun 20 Jul 2025 16:26:33 +0000 Manifest this update: Sun 20 Jul 2025 16:26:33 +0000 Manifest next update: Sun 27 Jul 2025 16:26:33 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: zlriiZ0pR4T5jMqY/B++DLHTe/7+f37m5cTWq1eix7U=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6502 (0x1966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533, serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: Jul 20 16:26:33 2025 GMT Not After : Jul 27 16:26:33 2025 GMT Subject: CN=687d18b9-a220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:a8:67:62:7d:de:36:92:30:7b:6b:41:56: 46:9a:a2:2d:b2:f0:bc:7a:0f:ef:57:5e:01:5c:b7: 8a:f4:e7:ce:35:2e:18:24:35:a1:8e:d9:e1:0a:1d: 43:b8:d6:8f:97:36:ee:97:e4:10:90:fd:96:3a:63: 24:1c:a9:11:f2:58:33:93:3b:2c:ec:e9:78:0c:b9: 9c:b8:86:dd:82:f4:10:6f:00:10:69:6d:dd:c9:16: 4e:6f:3b:d0:bf:71:40:eb:fb:15:da:7a:cf:51:2c: 03:7b:38:aa:c6:60:c8:54:53:a8:8e:86:57:72:93: 2b:12:e4:af:45:06:01:f7:b9:1a:c4:98:34:64:5e: 72:a6:94:e2:0e:f0:55:48:e6:2e:e9:aa:d6:39:bb: c2:31:d1:d5:0b:d4:5c:20:42:99:8d:83:de:41:37: 87:f3:b5:3d:b5:42:73:53:05:10:4f:1f:45:69:cc: 42:e4:fc:d8:19:67:91:73:54:77:db:b3:42:9d:18: b3:20:69:14:e0:3f:d8:45:ee:3b:f0:bf:a1:5c:a5: 37:d5:4f:ec:b2:48:5b:fd:11:31:44:2d:4d:0e:45: 2e:7d:16:92:13:09:2e:6f:0a:42:17:93:f3:45:28: 58:7c:0e:61:f1:79:d9:a0:26:89:2a:a4:ca:aa:40: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:76:1D:05:9B:F4:C3:3A:A0:33:B9:D3:90:B3:4D:20:66:95:75:F7 X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b6:22:1e:12:4f:7a:c5:50:27:13:db:e0:d7:8f:74:3c:0a: 25:71:12:36:cd:5b:3b:96:f2:af:9e:50:f8:b3:bd:30:f6:8e: 96:6b:6a:c2:61:3c:45:80:3f:4f:fc:61:e8:3a:c8:1f:d0:72: 66:66:fe:62:40:27:aa:41:cc:1b:49:42:9b:de:e5:1d:14:0a: 07:de:37:42:2b:97:a5:6b:03:61:2d:85:75:b6:b3:3e:10:cb: 92:76:b5:44:1f:42:a1:a1:7a:e6:23:06:0b:47:91:7a:fa:bb: 34:1e:5e:33:b1:2a:21:dd:64:d7:43:a2:50:38:33:41:37:9d: de:b2:5c:c6:05:df:d3:1f:0d:7b:e9:4e:15:30:5d:99:08:1a: c1:51:9a:7c:2b:03:ed:c1:22:ff:87:e8:56:04:1d:5f:80:bf: 18:18:bc:43:df:90:a0:4c:cf:85:6e:49:26:80:0b:78:04:f1: b9:3c:21:19:9e:78:2e:d3:f1:4e:6a:0c:1a:68:0c:f0:22:bc: f3:f3:84:9c:e4:39:e7:cb:04:20:c5:f8:98:ad:30:68:8f:d0: 74:08:ed:60:e8:7c:5a:84:7b:49:b5:59:7d:c6:ce:09:5f:8b: 4b:98:6b:65:0b:db:b9:85:51:a2:15:c5:03:53:8e:29:ae:14: 02:e4:10:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjUwNzIwMTYyNjMzWhcNMjUwNzI3MTYyNjMzWjAYMRYwFAYD VQQDEw02ODdkMThiOS1hMjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeioZ2J93jaSMHtrQVZGmqItsvC8eg/vV14BXLeK9OfONS4YJDWhjtnhCh1D uNaPlzbul+QQkP2WOmMkHKkR8lgzkzss7Ol4DLmcuIbdgvQQbwAQaW3dyRZObzvQ v3FA6/sV2nrPUSwDeziqxmDIVFOojoZXcpMrEuSvRQYB97kaxJg0ZF5yppTiDvBV SOYu6arWObvCMdHVC9RcIEKZjYPeQTeH87U9tUJzUwUQTx9FacxC5PzYGWeRc1R3 27NCnRizIGkU4D/YRe478L+hXKU31U/sskhb/RExRC1NDkUufRaSEwkubwpCF5Pz RShYfA5h8XnZoCaJKqTKqkD3KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZ2HQWb 9MM6oDO505CzTSBmlXX3MB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0tiIeEk96xVAnE9vg1490PAolcRI2zVs7lvKvnlD4s70w9o6Wa2rC YTxFgD9P/GHoOsgf0HJmZv5iQCeqQcwbSUKb3uUdFAoH3jdCK5elawNhLYV1trM+ EMuSdrVEH0KhoXrmIwYLR5F6+rs0Hl4zsSoh3WTXQ6JQODNBN53eslzGBd/THw17 6U4VMF2ZCBrBUZp8KwPtwSL/h+hWBB1fgL8YGLxD35CgTM+FbkkmgAt4BPG5PCEZ nngu0/FOagwaaAzwIrzz84Sc5DnnywQgxfiYrTBoj9B0CO1g6HxahHtJtVl9xs4J X4tLmGtlC9u5hVGiFcUDU44prhQC5BAL -----END CERTIFICATE-----Generated at Mon Jul 21 05:43:34 2025 by rpki-client