$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: Gfm9rzpzPoD/mLrqnovh/vXjXfC8qce20Phf/YI3X4o= Subject key identifier: C3:44:27:49:38:C6:96:FE:32:A4:25:96:A3:1B:C4:CF:0F:E7:5C:1F Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34C7 Signing time: Sat 18 Oct 2025 15:17:13 +0000 Manifest this update: Sat 18 Oct 2025 15:17:13 +0000 Manifest next update: Sat 25 Oct 2025 15:17:13 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: gOwqXBwc1BRgSWcWeTndpW461vvJQTgNlUvzgqI1SwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Oct 18 15:17:13 2025 GMT Not After : Oct 25 15:17:13 2025 GMT Subject: CN=68f3af79-29d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:7e:58:2f:b6:f0:75:1d:d7:d3:17:f0:22: 71:15:5c:ea:2b:8b:e4:2c:99:84:e2:70:e5:43:5a: e9:10:3c:3f:f5:0b:e8:74:02:51:f1:76:60:c1:14: ef:a3:53:4f:70:e1:d8:5d:fc:c6:61:f7:01:9a:e9: 39:f5:f0:1d:bd:b1:6f:a1:19:cc:75:89:c1:05:3d: 17:64:10:97:d2:2d:ff:81:91:02:ea:b6:16:de:25: f1:1a:38:f2:3a:b4:1e:c3:94:ff:1a:c1:bb:70:e1: e2:8b:0e:83:b5:56:8c:4c:d2:2d:f9:9f:92:8c:c0: 2d:a8:d8:6c:40:af:dd:59:61:44:e5:4a:6b:d9:ee: b1:a6:a2:50:f7:ed:af:22:72:82:2d:d0:49:98:4b: f4:be:a9:1e:50:67:f8:2b:37:70:77:4a:5d:85:e6: fd:0c:3e:94:10:fa:b1:ea:63:ad:08:7c:f2:d3:c1: 62:8f:55:55:6a:6d:fe:02:36:17:88:c7:d7:36:c2: 54:ce:7c:cf:04:08:4a:b1:4a:93:19:eb:bb:83:31: df:58:63:e9:5d:9d:94:43:c8:51:89:b9:52:d9:c4: 9f:55:77:d8:d9:e8:e1:1c:bf:6b:08:d1:f5:6f:79: b6:91:40:ac:66:c9:61:86:4b:42:7a:05:65:d8:2c: 0f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:44:27:49:38:C6:96:FE:32:A4:25:96:A3:1B:C4:CF:0F:E7:5C:1F X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:86:ca:08:dc:84:d1:54:67:ec:c4:e1:57:d0:d1:48:30:87: 10:d7:c1:9d:72:85:a0:b1:3a:ac:e3:b9:29:81:52:3f:49:92: 17:98:68:8c:32:bd:f8:59:b8:2c:62:9b:f9:3d:01:63:fb:97: 83:78:14:c2:16:d3:5a:65:8a:36:cd:10:03:0e:82:9b:c0:e2: 50:2a:b0:09:89:57:24:4e:32:21:e9:03:eb:d6:b7:0e:be:d5: c9:ac:5f:7a:15:c2:39:e6:3b:9f:23:24:20:a8:f6:01:6d:14: a5:e0:a8:4e:5d:e2:3a:f4:e0:da:7e:b7:17:bb:f4:21:20:7b: 75:e2:88:ea:8e:66:98:bb:0e:70:31:51:a9:73:80:23:2d:f1: ef:0e:ec:61:ec:9a:7a:40:cf:b0:e4:55:50:20:50:ba:7f:af: a3:b4:0d:54:ce:31:38:a5:94:52:ff:95:b7:e8:14:94:5d:e4: 68:49:c3:df:1f:46:a8:e5:b2:6b:77:1b:e3:1d:28:51:c4:30: ee:83:0a:53:9f:5a:0a:e6:65:e3:9e:2e:25:60:44:7b:22:44: 74:d4:8c:01:01:5a:d5:23:f1:d2:13:a5:84:88:f3:16:61:e3: 72:be:0a:e5:59:0d:f6:b0:55:df:5d:a8:54:a3:11:a7:b5:7e: d5:8c:ec:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUxMDE4MTUxNzEzWhcNMjUxMDI1MTUxNzEzWjAYMRYwFAYD VQQDEw02OGYzYWY3OS0yOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRx+WC+28HUd19MX8CJxFVzqK4vkLJmE4nDlQ1rpEDw/9QvodAJR8XZgwRTv o1NPcOHYXfzGYfcBmuk59fAdvbFvoRnMdYnBBT0XZBCX0i3/gZEC6rYW3iXxGjjy OrQew5T/GsG7cOHiiw6DtVaMTNIt+Z+SjMAtqNhsQK/dWWFE5Upr2e6xpqJQ9+2v InKCLdBJmEv0vqkeUGf4Kzdwd0pdheb9DD6UEPqx6mOtCHzy08Fij1VVam3+AjYX iMfXNsJUznzPBAhKsUqTGeu7gzHfWGPpXZ2UQ8hRiblS2cSfVXfY2ejhHL9rCNH1 b3m2kUCsZslhhktCegVl2CwPXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNEJ0k4 xpb+MqQllqMbxM8P51wfMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAhsoI3ITRVGfsxOFX0NFIMIcQ18GdcoWgsTqs47kpgVI/SZIXmGiM Mr34WbgsYpv5PQFj+5eDeBTCFtNaZYo2zRADDoKbwOJQKrAJiVckTjIh6QPr1rcO vtXJrF96FcI55jufIyQgqPYBbRSl4KhOXeI69ODafrcXu/QhIHt14ojqjmaYuw5w MVGpc4AjLfHvDuxh7Jp6QM+w5FVQIFC6f6+jtA1UzjE4pZRS/5W36BSUXeRoScPf H0ao5bJrdxvjHShRxDDugwpTn1oK5mXjni4lYER7IkR01IwBAVrVI/HSE6WEiPMW YeNyvgrlWQ32sFXfXahUoxGntX7VjOx2 -----END CERTIFICATE-----Generated at Mon Oct 20 12:43:46 2025 by rpki-client