$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: FIdu14M+lzpONzA7uNud0OP+y2KaMm9u+REOM+3PQwU= Subject key identifier: 8B:79:DC:15:4A:2E:B8:18:6F:62:DA:B3:27:EC:6D:D9:B6:B7:82:58 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B92 Signing time: Thu 04 Sep 2025 19:12:24 +0000 Manifest this update: Thu 04 Sep 2025 19:12:24 +0000 Manifest next update: Thu 11 Sep 2025 19:12:24 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: CrzOYAmMbK/dJP4c9bT0pBP1GJEPV+fUu6FVjNkyKSc=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2973 (0xb9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Sep 4 19:12:24 2025 GMT Not After : Sep 11 19:12:24 2025 GMT Subject: CN=68b9e498-6fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:0a:6c:ce:2a:1e:cd:ef:cc:a2:f9:ca:cf: 87:1c:c5:b2:e3:f6:69:10:25:d6:eb:22:f2:33:5d: 89:8f:db:e9:82:2a:c1:39:e5:69:a6:48:f7:1b:1f: 83:91:4d:26:ae:14:f4:86:9e:59:0a:13:a2:ee:fd: 5a:bb:91:d3:cb:33:38:d0:0f:39:fb:c3:54:b8:74: 99:a6:57:5c:03:ca:6b:a1:f7:5f:1e:cd:e7:ec:ac: 34:0e:8b:67:0b:bc:a9:fa:c2:39:f0:99:95:0f:6a: 7c:53:d7:2c:6c:a9:08:4e:95:ec:5b:be:98:bd:bb: a7:1c:ea:42:9a:2d:25:0b:97:e5:d2:da:d0:72:00: 4d:d7:ed:a2:51:5e:de:4e:87:df:f6:f9:25:6d:8f: 70:98:cd:e5:00:9d:ae:f2:97:75:37:76:1f:ed:a0: bf:bc:bb:4e:e6:0a:3a:24:4e:1b:cb:91:f9:5d:97: d7:e4:e5:b4:fa:5b:e7:26:4f:8e:55:53:fb:eb:f9: b7:7c:ce:1a:3c:6a:5d:98:1d:5d:da:10:70:2d:9a: 2a:ff:17:5e:eb:d1:4e:81:d0:4a:7d:04:7c:55:9c: ec:08:99:43:9a:d3:77:6f:b0:5d:19:10:a4:a9:5e: 6c:ae:ff:cf:f1:67:79:51:80:ba:8d:1b:5f:d4:c7: 55:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:79:DC:15:4A:2E:B8:18:6F:62:DA:B3:27:EC:6D:D9:B6:B7:82:58 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:88:7f:01:6e:89:39:f2:18:3f:4e:a5:05:bc:c9:f2:86:90: a0:24:3e:e7:24:c6:90:8b:a6:d0:75:fe:4a:b2:1a:ee:74:22: 4a:ac:13:a2:37:4a:a5:95:93:f0:6f:2f:f8:8f:d9:f4:5f:d4: c6:61:ae:dd:62:91:8f:aa:5f:b5:61:63:a1:96:82:19:e3:d4: 2f:ce:05:26:3d:1d:cd:2f:57:1d:d8:ed:a4:cb:66:46:2e:03: b2:0d:2c:a2:81:3a:1a:a0:b0:51:df:1e:a1:28:95:77:5c:e4: b0:2b:2e:cb:f5:8c:a5:af:17:12:ca:56:a0:e6:c9:f9:73:3a: b5:1a:d4:a2:a2:19:41:0c:f3:89:f0:33:d3:fd:40:e5:55:5b: a2:21:df:51:c3:c5:b9:96:f9:06:6a:11:ef:cc:85:80:25:6b: 8b:1c:6d:48:68:b7:24:e4:58:c9:56:a3:ec:71:d7:95:82:ed: 9c:00:4e:0f:47:40:0d:a1:66:39:30:46:9b:8a:75:75:fa:0a: 5b:e0:6f:2e:0a:9e:75:c6:a3:17:a5:dc:63:ab:1c:37:8b:84: 43:16:ee:3a:df:62:20:0f:ff:20:2d:16:ef:e9:95:1c:72:47: ce:e0:4d:d3:b3:e1:c4:e7:f5:3c:87:60:74:dc:54:18:21:06: 7f:51:c2:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwOTA0MTkxMjI0WhcNMjUwOTExMTkxMjI0WjAYMRYwFAYD VQQDEw02OGI5ZTQ5OC02ZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrAKbM4qHs3vzKL5ys+HHMWy4/ZpECXW6yLyM12Jj9vpgirBOeVppkj3Gx+D kU0mrhT0hp5ZChOi7v1au5HTyzM40A85+8NUuHSZpldcA8profdfHs3n7Kw0Dotn C7yp+sI58JmVD2p8U9csbKkITpXsW76YvbunHOpCmi0lC5fl0trQcgBN1+2iUV7e Toff9vklbY9wmM3lAJ2u8pd1N3Yf7aC/vLtO5go6JE4by5H5XZfX5OW0+lvnJk+O VVP76/m3fM4aPGpdmB1d2hBwLZoq/xde69FOgdBKfQR8VZzsCJlDmtN3b7BdGRCk qV5srv/P8Wd5UYC6jRtf1MdVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt53BVK LrgYb2Lasyfsbdm2t4JYMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChiH8Bbok58hg/TqUFvMnyhpCgJD7nJMaQi6bQdf5KshrudCJKrBOi N0qllZPwby/4j9n0X9TGYa7dYpGPql+1YWOhloIZ49QvzgUmPR3NL1cd2O2ky2ZG LgOyDSyigToaoLBR3x6hKJV3XOSwKy7L9YylrxcSylag5sn5czq1GtSiohlBDPOJ 8DPT/UDlVVuiId9Rw8W5lvkGahHvzIWAJWuLHG1IaLck5FjJVqPscdeVgu2cAE4P R0ANoWY5MEabinV1+gpb4G8uCp51xqMXpdxjqxw3i4RDFu4632IgD/8gLRbv6ZUc ckfO4E3Ts+HE5/U8h2B03FQYIQZ/UcKe -----END CERTIFICATE-----Generated at Sat Sep 6 17:23:58 2025 by rpki-client