$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: jvxj/WPztALzR3myVx1xRvJ1NACLjohMa15G+uFloEU= Subject key identifier: 8E:58:2D:BE:C0:69:00:56:74:80:49:56:BA:C5:03:6C:70:2F:76:4E Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 07E0 Signing time: Sat 18 Oct 2025 22:22:33 +0000 Manifest this update: Sat 18 Oct 2025 22:22:33 +0000 Manifest next update: Sat 25 Oct 2025 22:22:33 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: Y+/nfxj3WzCcAsbdSe+B2PP3eEaH4XphNdNVipMwJMk=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Oct 18 22:22:33 2025 GMT Not After : Oct 25 22:22:33 2025 GMT Subject: CN=68f41329-ad22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:42:5d:27:15:f7:ed:e2:08:31:1c:81:1b: 3f:26:c6:dc:30:66:7c:22:d7:a2:87:c2:f1:1c:00: fd:f8:49:65:22:ef:a3:23:73:85:7f:b5:c4:65:fa: c2:e5:22:77:f4:3f:3c:6d:06:4e:f8:17:c3:7d:5e: 5e:15:ba:96:4b:f0:db:92:96:f5:8a:cd:69:b8:b8: 20:63:2c:03:7c:96:a1:f9:e5:8e:4a:bc:63:e9:b0: f9:3b:56:a2:61:f4:4d:2e:4a:c6:51:de:ad:1c:39: e1:87:48:e3:5a:99:47:e9:60:1b:e5:bb:ea:3d:53: c7:a3:e5:6f:e2:f2:2a:4d:88:68:7e:da:4a:3b:67: d1:0f:d0:2a:d4:8d:e9:34:91:8e:13:af:87:c4:33: 1d:6b:ea:8c:10:9c:5c:57:bc:22:72:0a:14:05:15: 5e:81:64:83:33:d0:fd:cf:c0:34:04:39:e8:07:25: cc:75:9b:67:8c:5a:44:31:93:49:c6:03:bb:a4:46: ff:bc:3c:5e:ef:94:aa:ad:0f:21:58:a2:8f:87:e7: 90:f8:ed:de:89:d1:29:9f:04:7c:06:8c:f5:b7:d6: 2a:d6:c4:59:be:51:08:a8:cc:a4:18:a5:1d:f2:f4: 20:8d:57:75:b4:85:80:0a:5a:f5:7c:65:77:85:45: 97:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:58:2D:BE:C0:69:00:56:74:80:49:56:BA:C5:03:6C:70:2F:76:4E X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5e:a3:f9:f0:4e:ff:6a:9c:30:54:96:29:d3:e7:4f:af:9c: 33:f6:98:5e:97:f7:bb:51:62:9a:09:ef:bd:d2:cc:b8:82:9d: a4:d1:72:be:d1:23:7c:0b:86:c6:20:33:53:f5:e0:70:ee:1c: 77:1d:c5:84:45:d7:a3:8d:f0:3e:ce:05:b5:d0:93:bf:87:15: af:85:ba:a0:45:63:6b:3d:50:67:19:68:15:90:5d:9e:34:8d: e4:65:bc:87:29:36:69:85:70:74:02:34:a1:ba:2e:5f:a3:e2: 23:a9:66:48:ad:44:8f:7f:69:8c:18:9e:1e:3f:13:31:de:5f: 1b:52:b4:17:6b:5c:a4:69:00:a8:37:7a:8e:64:88:6e:e2:72: 17:6e:7a:18:f8:f9:98:f0:bd:de:ce:ce:be:ba:a4:8c:0d:a0: 46:d2:5b:82:b6:a5:c6:cf:36:fd:50:36:8a:83:2e:1c:52:62: 25:7d:02:73:04:29:e1:69:f0:48:50:04:51:d9:67:e8:06:54: fd:de:c0:a4:0e:d5:10:cf:79:ee:6f:30:ce:ae:9c:25:0f:12: fb:96:23:35:69:ac:ae:68:a2:d4:71:54:95:05:9e:bb:30:57: 80:a4:c6:d4:55:69:95:04:5f:0a:89:e7:24:5c:2f:99:a3:86: f0:e8:8f:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUxMDE4MjIyMjMzWhcNMjUxMDI1MjIyMjMzWjAYMRYwFAYD VQQDEw02OGY0MTMyOS1hZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqB5CXScV9+3iCDEcgRs/JsbcMGZ8Iteih8LxHAD9+EllIu+jI3OFf7XEZfrC 5SJ39D88bQZO+BfDfV5eFbqWS/Dbkpb1is1puLggYywDfJah+eWOSrxj6bD5O1ai YfRNLkrGUd6tHDnhh0jjWplH6WAb5bvqPVPHo+Vv4vIqTYhoftpKO2fRD9Aq1I3p NJGOE6+HxDMda+qMEJxcV7wicgoUBRVegWSDM9D9z8A0BDnoByXMdZtnjFpEMZNJ xgO7pEb/vDxe75SqrQ8hWKKPh+eQ+O3eidEpnwR8Boz1t9Yq1sRZvlEIqMykGKUd 8vQgjVd1tIWAClr1fGV3hUWXAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5YLb7A aQBWdIBJVrrFA2xwL3ZOMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsXqP58E7/apwwVJYp0+dPr5wz9phel/e7UWKaCe+90sy4gp2k0XK+ 0SN8C4bGIDNT9eBw7hx3HcWERdejjfA+zgW10JO/hxWvhbqgRWNrPVBnGWgVkF2e NI3kZbyHKTZphXB0AjShui5fo+IjqWZIrUSPf2mMGJ4ePxMx3l8bUrQXa1ykaQCo N3qOZIhu4nIXbnoY+PmY8L3ezs6+uqSMDaBG0luCtqXGzzb9UDaKgy4cUmIlfQJz BCnhafBIUARR2WfoBlT93sCkDtUQz3nubzDOrpwlDxL7liM1aayuaKLUcVSVBZ67 MFeApMbUVWmVBF8KieckXC+Zo4bw6I/1 -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:34 2025 by rpki-client