$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: n8aUCGm/d5/Q9UY1HQ/noXIFIbL4cQAqxQ3c0T/RnB0= Subject key identifier: 3D:AF:07:05:4A:35:9B:18:3B:41:99:B7:66:21:A2:72:56:95:66:62 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01C1 Signing time: Sat 18 Oct 2025 19:51:20 +0000 Manifest this update: Sat 18 Oct 2025 19:51:19 +0000 Manifest next update: Sat 25 Oct 2025 19:51:19 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: RDkZxNdvP9J9tD/qA+elRNI5rzAm5xRKwCe+CrTubJU=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Oct 18 19:51:19 2025 GMT Not After : Oct 25 19:51:19 2025 GMT Subject: CN=68f3efb7-0db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7f:1e:cd:aa:ac:18:42:9d:44:2a:65:df:85: 4e:a0:f5:32:14:d0:03:71:4a:0c:4e:17:71:f7:98: 17:b7:ae:96:50:9a:06:82:f3:df:57:40:60:f7:3c: 54:d2:ff:c3:bc:db:3f:49:72:c9:d8:89:b2:1b:a4: 4a:be:57:ba:4a:78:14:06:fc:21:31:02:ba:9b:68: 22:d5:0f:0a:37:61:c1:95:8a:00:f9:18:d4:c6:c4: 99:6b:0e:d6:2f:5a:07:a6:ee:21:a2:75:4c:b6:96: 7b:a7:cc:d9:0d:29:62:eb:bf:06:b2:c1:f8:ca:c8: 63:6e:1e:d2:c6:09:54:a0:1f:42:e3:86:e8:b7:9c: ff:62:3f:6a:b7:79:b1:e9:66:2e:0e:c6:ae:3e:3a: 8d:bd:a9:9a:e5:ee:ee:4e:b0:5e:37:33:19:77:8a: 51:f9:27:23:a6:db:67:ac:2a:10:c1:81:cd:7a:c8: 75:7f:13:71:fa:b3:3c:84:b0:0d:bf:ad:a0:e1:42: a0:8d:57:e4:d1:6c:db:bf:7c:a4:85:96:ab:75:f2: c9:95:65:1b:9d:39:2b:b8:fa:a9:0a:d3:95:06:f6: 18:76:ba:2d:0b:8b:34:09:d9:b1:aa:d0:1c:83:93: 2f:91:43:2f:5d:2b:3a:c2:3f:0f:22:db:ad:2d:65: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AF:07:05:4A:35:9B:18:3B:41:99:B7:66:21:A2:72:56:95:66:62 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:45:bb:21:e5:ef:5e:70:61:d4:c2:2c:a9:f7:23:3b:25:e7: 38:36:94:d4:43:a0:7b:3f:1d:83:68:22:c6:9b:b8:81:41:5f: a0:ff:ac:1a:ab:1e:91:46:d9:c6:5e:61:37:af:d8:9a:3e:1b: 8f:28:75:e6:ab:00:34:25:9e:a6:51:7c:53:44:3c:7c:c8:34: 5a:f5:8e:d5:a9:c3:83:5e:51:de:d2:3b:52:fd:04:45:e7:35: cc:3a:34:b8:57:f0:de:14:28:30:04:47:29:cc:fa:9e:f3:db: f7:22:77:85:49:14:87:25:c2:10:7d:33:9d:cc:90:4c:a9:20: 8f:0b:68:7b:a4:f4:45:e7:93:b5:5f:18:51:29:66:91:db:ca: 79:94:27:97:c5:48:40:f4:8a:5c:74:23:c3:f9:78:7d:5f:04: 60:31:f2:fa:56:bd:ed:87:6b:7d:58:44:a5:75:77:dd:61:05: b6:3a:6c:79:0a:50:8e:b8:44:61:25:67:3d:a5:69:9b:2a:98: 7a:af:ec:6d:59:48:e9:47:51:11:ca:fc:2f:42:3a:70:12:7c: 82:d2:0f:24:f7:9c:d9:39:c9:b7:5b:66:b5:db:1e:1c:45:68: f9:8a:4d:6c:a4:3e:5e:ef:be:6e:ac:e3:de:1d:fc:21:92:a1: 71:34:db:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMDE4MTk1MTE5WhcNMjUxMDI1MTk1MTE5WjAYMRYwFAYD VQQDEw02OGYzZWZiNy0wZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmH8ezaqsGEKdRCpl34VOoPUyFNADcUoMThdx95gXt66WUJoGgvPfV0Bg9zxU 0v/DvNs/SXLJ2ImyG6RKvle6SngUBvwhMQK6m2gi1Q8KN2HBlYoA+RjUxsSZaw7W L1oHpu4honVMtpZ7p8zZDSli678GssH4yshjbh7SxglUoB9C44bot5z/Yj9qt3mx 6WYuDsauPjqNvama5e7uTrBeNzMZd4pR+ScjpttnrCoQwYHNesh1fxNx+rM8hLAN v62g4UKgjVfk0Wzbv3ykhZardfLJlWUbnTkruPqpCtOVBvYYdrotC4s0CdmxqtAc g5MvkUMvXSs6wj8PItutLWXuDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2vBwVK NZsYO0GZt2YhonJWlWZiMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCORbsh5e9ecGHUwiyp9yM7Jec4NpTUQ6B7Px2DaCLGm7iBQV+g/6wa qx6RRtnGXmE3r9iaPhuPKHXmqwA0JZ6mUXxTRDx8yDRa9Y7VqcODXlHe0jtS/QRF 5zXMOjS4V/DeFCgwBEcpzPqe89v3IneFSRSHJcIQfTOdzJBMqSCPC2h7pPRF55O1 XxhRKWaR28p5lCeXxUhA9IpcdCPD+Xh9XwRgMfL6Vr3th2t9WESldXfdYQW2Omx5 ClCOuERhJWc9pWmbKph6r+xtWUjpR1ERyvwvQjpwEnyC0g8k95zZOcm3W2a12x4c RWj5ik1spD5e775urOPeHfwhkqFxNNtD -----END CERTIFICATE-----Generated at Mon Oct 20 16:46:45 2025 by rpki-client