$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: VqtPRxsoGItlRljtiY6MOT1xvW9EDLFu60yPx7iqtC8= Subject key identifier: FD:C8:A8:F1:C9:B6:6A:11:35:19:98:94:D0:A0:F5:E5:C0:C1:A9:00 Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 0496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 0491 Signing time: Fri 25 Jul 2025 00:21:37 +0000 Manifest this update: Fri 25 Jul 2025 00:21:36 +0000 Manifest next update: Fri 01 Aug 2025 00:21:36 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: S5rWbZPxfngiYbb41pGh+lxrwlkOOtMYqfeFk9XjVUk=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: TOciMmg+YXh13dYfOrB14chWnhLKZ+JRHOQLiS8Jf5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 00:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1174 (0x496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9, serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: Jul 25 00:21:36 2025 GMT Not After : Aug 1 00:21:36 2025 GMT Subject: CN=6882ce11-871c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:9b:08:d8:3e:c2:7b:75:41:02:f8:b9:34: 54:e8:c8:73:b5:b3:ba:85:70:4a:19:6a:93:a4:09: 76:f6:b3:5d:16:34:e2:3d:e8:a7:e1:d9:ee:7f:c1: be:cc:5a:e0:c5:35:75:1d:92:c8:81:ae:ab:eb:82: 37:2b:b1:3f:d1:76:80:f0:b0:e8:02:f7:d7:71:87: e6:c6:15:61:7e:bf:fa:41:0d:41:2f:5e:9d:cf:17: 80:91:7e:14:0d:7c:e1:2c:30:2a:83:f7:f2:f0:73: 75:31:64:d1:e6:f0:e3:da:7e:5e:51:03:89:48:4d: 4b:02:46:0e:6a:48:67:5f:a4:fa:fd:6e:ce:d0:20: 1f:22:63:aa:77:f8:c1:97:fa:c6:f0:b9:15:b9:9d: bb:ab:f4:59:63:dd:ba:f3:52:ab:12:f6:d9:14:84: b3:2c:75:54:24:f3:28:6d:78:c7:7e:43:d2:be:b9: 71:81:2a:92:a8:e5:c9:86:5b:cc:2c:b3:04:fb:5e: 5c:f2:38:7b:2b:73:2b:39:91:ca:37:e4:cb:fe:34: 18:d7:d0:59:8c:00:f7:1d:c0:96:69:59:6c:3e:65: be:0e:70:3f:5f:7f:e1:cd:72:5f:08:40:45:ee:de: 33:29:a0:65:14:41:6c:a0:dc:45:f4:b8:d9:30:a2: 31:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C8:A8:F1:C9:B6:6A:11:35:19:98:94:D0:A0:F5:E5:C0:C1:A9:00 X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8d:ad:fa:a8:81:c7:2e:97:43:3a:ae:d2:35:0c:1d:e9:e3: a2:32:f2:04:18:50:4b:c5:61:88:c0:66:c8:19:ec:99:ac:d8: b1:d9:da:66:07:6c:23:cc:44:07:a9:fc:69:04:73:14:34:b1: 25:83:de:b0:dc:3e:02:63:61:03:2f:5e:b6:7a:4b:ff:55:89: d8:f1:92:d5:13:90:c5:29:58:2f:7e:f7:03:ff:d1:cc:33:20: 3b:de:ff:5c:da:62:fd:4c:36:6f:b0:97:36:9c:73:8c:ee:bc: 02:dd:a0:97:88:de:e1:28:d8:de:a5:37:9a:a9:07:36:2a:f2: d2:1b:5a:f7:04:17:9c:a3:fd:38:fd:72:ea:8d:fa:f8:db:37: dc:b8:e6:a3:87:de:47:42:59:1d:45:0e:f1:4e:51:72:66:a9: a0:09:45:3e:65:9e:ce:e1:ad:91:fd:7e:92:bf:3d:29:be:d6: bb:ab:8c:31:77:f2:e6:ec:01:33:2d:a7:e0:c3:d9:42:09:b0: 90:35:06:c3:39:99:33:a8:ee:ed:0f:09:e5:ab:02:b3:43:dd: d6:de:0d:f2:3c:a7:1c:d8:9a:18:1c:98:b3:10:29:40:20:65: b9:e2:37:b4:36:29:06:4b:61:d0:cb:a1:d8:c3:bb:7d:0c:00: c3:d0:aa:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjUwNzI1MDAyMTM2WhcNMjUwODAxMDAyMTM2WjAYMRYwFAYD VQQDEw02ODgyY2UxMS04NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eGbCNg+wnt1QQL4uTRU6MhztbO6hXBKGWqTpAl29rNdFjTiPein4dnuf8G+ zFrgxTV1HZLIga6r64I3K7E/0XaA8LDoAvfXcYfmxhVhfr/6QQ1BL16dzxeAkX4U DXzhLDAqg/fy8HN1MWTR5vDj2n5eUQOJSE1LAkYOakhnX6T6/W7O0CAfImOqd/jB l/rG8LkVuZ27q/RZY92681KrEvbZFISzLHVUJPMobXjHfkPSvrlxgSqSqOXJhlvM LLME+15c8jh7K3MrOZHKN+TL/jQY19BZjAD3HcCWaVlsPmW+DnA/X3/hzXJfCEBF 7t4zKaBlFEFsoNxF9LjZMKIx2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3IqPHJ tmoRNRmYlNCg9eXAwakAMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxja36qIHHLpdDOq7SNQwd6eOiMvIEGFBLxWGIwGbIGeyZrNix2dpm B2wjzEQHqfxpBHMUNLElg96w3D4CY2EDL162ekv/VYnY8ZLVE5DFKVgvfvcD/9HM MyA73v9c2mL9TDZvsJc2nHOM7rwC3aCXiN7hKNjepTeaqQc2KvLSG1r3BBeco/04 /XLqjfr42zfcuOajh95HQlkdRQ7xTlFyZqmgCUU+ZZ7O4a2R/X6Svz0pvta7q4wx d/Lm7AEzLafgw9lCCbCQNQbDOZkzqO7tDwnlqwKzQ93W3g3yPKcc2JoYHJizEClA IGW54je0NikGS2HQy6HYw7t9DADD0Kq6 -----END CERTIFICATE-----Generated at Sat Jul 26 08:06:05 2025 by rpki-client