$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: 2O9ZzmPkfF7UxhlhN3FD1OLRV1Q7Isria6ULXUXvWgo= Subject key identifier: E0:D3:C9:1D:E3:D1:D1:33:24:F5:22:3A:7D:92:8A:0D:1B:3B:73:D4 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 06C1 Signing time: Sat 18 Oct 2025 23:34:45 +0000 Manifest this update: Sat 18 Oct 2025 23:34:44 +0000 Manifest next update: Sat 25 Oct 2025 23:34:44 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: +8xKLmwigKqIwyYrZOIfiGuCa1DNR7M2/tpVpJEQFmg=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: TyaeGX842kMEGDRBcupYe577AZgEgKGiqyo02h56Luk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Oct 18 23:34:44 2025 GMT Not After : Oct 25 23:34:44 2025 GMT Subject: CN=68f42414-9793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5a:c2:da:67:31:6d:86:7f:28:3a:2a:9a:38: 12:a0:cd:a3:ff:2c:97:d4:2b:a9:43:8f:5f:ff:9b: c0:56:0b:58:38:93:eb:b0:e5:a1:da:55:8b:d4:01: 48:1d:c0:24:f0:1d:98:4f:e9:a0:6f:5c:b1:86:c1: ff:92:db:04:d8:3c:6d:18:97:86:9d:d5:79:be:ba: d0:16:7f:8b:2d:c8:a2:98:b6:13:dd:37:7e:fe:62: aa:db:63:c4:a3:b7:9b:5b:ba:17:95:53:31:d3:da: 5e:a1:06:41:8e:ff:a6:61:33:5f:32:b1:a0:28:95: af:e0:cb:32:32:c4:44:cc:af:b8:87:1d:6f:75:49: e8:00:23:f6:af:46:c2:46:3c:3d:ca:37:7d:d6:a3: 1f:14:a2:67:32:3a:cf:4d:d4:46:87:23:48:7e:db: c9:38:4a:77:ad:2b:7b:d9:c6:95:b7:b6:10:38:f7: 52:cb:ce:80:fe:84:13:b2:f3:00:6c:7d:a7:8d:e0: 6d:28:04:78:bf:e6:cf:0d:3f:d3:15:71:42:67:15: 3f:f1:38:be:c8:3f:9d:7d:e6:22:1b:68:cd:41:dd: 8e:e9:8e:3e:6d:15:87:1c:f2:2a:69:f8:b7:71:3a: 64:98:2c:75:a8:5c:96:be:ef:e2:f5:61:15:28:6a: e2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D3:C9:1D:E3:D1:D1:33:24:F5:22:3A:7D:92:8A:0D:1B:3B:73:D4 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:13:74:14:de:6b:02:f0:97:86:a1:6e:c2:b2:3a:a9:b3:df: 2b:12:72:70:4e:44:61:84:64:fa:57:9b:35:c1:51:e2:f8:5f: 75:7f:2b:8c:e0:f8:33:cd:28:c9:bf:c6:78:96:a9:5e:8a:0f: 3b:0e:9a:89:c9:83:ee:4e:17:b5:fc:81:0f:43:ab:ad:e2:45: 99:78:24:3f:af:ae:f1:be:47:3b:72:ab:27:bb:4f:7d:f2:9b: fb:c6:07:7e:e1:7c:c4:1d:07:68:5d:e0:c1:1f:4b:5e:18:42: 39:18:63:c9:a8:34:c6:73:5d:c2:ea:27:cc:c7:da:a2:41:41: 42:83:f2:29:29:e0:27:b6:64:a3:e0:f1:9e:47:4f:35:49:19: 91:73:ec:48:78:73:39:de:3a:10:46:64:9d:75:e9:0f:cb:03: 50:c7:4d:0b:b3:59:a9:cb:d8:8a:ab:ec:9a:db:54:ce:4b:44: bf:e7:3c:07:73:74:46:c7:81:a3:d7:c3:41:52:20:91:c7:65: 0b:39:b5:75:20:65:91:3c:e7:42:ea:fb:e9:51:b6:98:d5:d3: b0:a8:e6:a3:d3:0e:68:7a:ab:ab:c2:3b:c0:41:80:a0:23:e7: dd:c0:d9:cd:74:39:c5:5d:66:c7:f9:78:b9:af:a4:6e:97:af: 75:95:06:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUxMDE4MjMzNDQ0WhcNMjUxMDI1MjMzNDQ0WjAYMRYwFAYD VQQDEw02OGY0MjQxNC05NzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlrC2mcxbYZ/KDoqmjgSoM2j/yyX1CupQ49f/5vAVgtYOJPrsOWh2lWL1AFI HcAk8B2YT+mgb1yxhsH/ktsE2DxtGJeGndV5vrrQFn+LLciimLYT3Td+/mKq22PE o7ebW7oXlVMx09peoQZBjv+mYTNfMrGgKJWv4MsyMsREzK+4hx1vdUnoACP2r0bC Rjw9yjd91qMfFKJnMjrPTdRGhyNIftvJOEp3rSt72caVt7YQOPdSy86A/oQTsvMA bH2njeBtKAR4v+bPDT/TFXFCZxU/8Ti+yD+dfeYiG2jNQd2O6Y4+bRWHHPIqafi3 cTpkmCx1qFyWvu/i9WEVKGrikQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODTyR3j 0dEzJPUiOn2Sig0bO3PUMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzE3QU3msC8JeGoW7Csjqps98rEnJwTkRhhGT6V5s1wVHi+F91fyuM 4PgzzSjJv8Z4lqleig87DpqJyYPuThe1/IEPQ6ut4kWZeCQ/r67xvkc7cqsnu099 8pv7xgd+4XzEHQdoXeDBH0teGEI5GGPJqDTGc13C6ifMx9qiQUFCg/IpKeAntmSj 4PGeR081SRmRc+xIeHM53joQRmSddekPywNQx00Ls1mpy9iKq+ya21TOS0S/5zwH c3RGx4Gj18NBUiCRx2ULObV1IGWRPOdC6vvpUbaY1dOwqOaj0w5oequrwjvAQYCg I+fdwNnNdDnFXWbH+Xi5r6Rul691lQZk -----END CERTIFICATE-----Generated at Mon Oct 20 19:24:53 2025 by rpki-client