$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: i1E0eUGyvC/y3sJccXnWFZh+oZXK1P7orfRUXYzGwgk= Subject key identifier: FA:67:E8:03:2D:F7:5F:49:D1:ED:E5:61:EF:CE:C7:A8:1B:E2:3D:C2 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BE2 Signing time: Sat 18 Oct 2025 19:42:32 +0000 Manifest this update: Sat 18 Oct 2025 19:42:31 +0000 Manifest next update: Sat 25 Oct 2025 19:42:31 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: 0l8CPmlO8Cq7JMFyD9oCqC50LzJbScxZ3RzsKumJFqA=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Oct 18 19:42:31 2025 GMT Not After : Oct 25 19:42:31 2025 GMT Subject: CN=68f3eda8-1d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:32:90:19:0c:b2:db:ed:bd:b4:c2:d9:18: 97:58:9e:10:af:9c:5e:64:cc:f6:78:5b:c5:89:40: ae:51:ed:60:98:45:b3:40:61:89:2a:c3:54:61:0f: c6:66:db:82:46:04:9c:aa:33:9b:65:a2:3b:ac:5f: a1:79:da:9c:64:ee:08:05:d8:cf:6f:57:3c:76:47: 90:79:d1:1f:b4:6e:b7:dd:97:e9:64:42:23:37:60: 01:4b:25:f1:4e:b3:5c:5a:ea:56:ab:6a:fc:2a:43: d1:c5:3a:38:47:f0:b6:a3:3f:3c:55:9e:12:13:c4: c5:33:78:ac:be:d0:75:3a:df:22:6f:1c:0d:7f:f9: e6:9d:db:7e:66:ea:fb:3b:fe:07:a8:3b:4e:62:01: 5f:45:6a:3a:b7:5d:b7:d8:3b:76:81:4e:08:98:4d: 10:c0:48:ed:6c:db:ff:a1:1e:5b:e5:01:2b:59:39: a9:ba:d9:6e:65:15:47:28:2e:ec:ce:19:57:34:50: 37:c4:3f:93:39:11:02:83:29:3a:a8:e0:7e:0b:9c: 3a:42:36:62:d2:f5:36:7b:25:f9:73:1d:13:52:38: 0a:cd:2b:45:66:ac:8f:4f:ed:d7:fa:5d:65:0c:d1: c2:68:36:c6:f6:c3:75:ee:b5:14:b6:ce:b0:1a:2d: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:67:E8:03:2D:F7:5F:49:D1:ED:E5:61:EF:CE:C7:A8:1B:E2:3D:C2 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:ab:bf:9a:f1:02:e9:9c:39:ef:99:bc:54:fa:00:08:e0:53: c6:bc:73:d1:d6:34:94:95:9d:3d:8b:f6:2f:3f:01:d6:22:97: 78:11:51:a1:c9:38:19:0d:10:72:a4:9b:60:91:b3:f7:15:6d: df:e9:f8:e6:ef:6c:03:40:a3:69:84:83:5d:a0:48:49:27:a5: b9:f0:07:c4:a9:3a:58:b0:b4:77:4b:03:10:12:08:20:82:76: 1c:4a:bf:3e:d5:96:73:72:6d:35:f7:d6:71:5e:c4:5d:3c:eb: 76:29:98:a2:03:84:15:84:59:dc:32:72:ce:56:38:76:9a:0b: 0b:34:74:79:8d:9d:5d:46:13:87:af:d7:80:50:d1:1c:58:07: f3:37:2a:c8:6d:7e:06:31:86:e2:1b:9e:94:ef:89:bd:07:18: d4:62:14:99:c1:58:e5:6c:7f:60:3b:ee:c0:2e:84:5f:04:b7: aa:df:95:d3:b7:6b:67:6c:d4:14:8a:43:c1:a4:45:bf:b1:0d: 86:7a:e2:cb:b7:60:04:21:0b:e9:43:fb:48:d2:16:8d:e0:27: d1:c6:00:89:f5:68:d2:34:a6:1c:48:2f:7a:65:f9:13:77:c1: 22:28:6d:45:e4:00:06:f2:87:e1:c9:d2:ad:ca:2e:42:64:dc: ca:89:7b:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUxMDE4MTk0MjMxWhcNMjUxMDI1MTk0MjMxWjAYMRYwFAYD VQQDEw02OGYzZWRhOC0xZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxS4ykBkMstvtvbTC2RiXWJ4Qr5xeZMz2eFvFiUCuUe1gmEWzQGGJKsNUYQ/G ZtuCRgScqjObZaI7rF+hedqcZO4IBdjPb1c8dkeQedEftG633ZfpZEIjN2ABSyXx TrNcWupWq2r8KkPRxTo4R/C2oz88VZ4SE8TFM3isvtB1Ot8ibxwNf/nmndt+Zur7 O/4HqDtOYgFfRWo6t1232Dt2gU4ImE0QwEjtbNv/oR5b5QErWTmputluZRVHKC7s zhlXNFA3xD+TORECgyk6qOB+C5w6QjZi0vU2eyX5cx0TUjgKzStFZqyPT+3X+l1l DNHCaDbG9sN17rUUts6wGi2FzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpn6AMt 919J0e3lYe/Ox6gb4j3CMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIq7+a8QLpnDnvmbxU+gAI4FPGvHPR1jSUlZ09i/YvPwHWIpd4EVGh yTgZDRBypJtgkbP3FW3f6fjm72wDQKNphINdoEhJJ6W58AfEqTpYsLR3SwMQEggg gnYcSr8+1ZZzcm0199ZxXsRdPOt2KZiiA4QVhFncMnLOVjh2mgsLNHR5jZ1dRhOH r9eAUNEcWAfzNyrIbX4GMYbiG56U74m9BxjUYhSZwVjlbH9gO+7ALoRfBLeq35XT t2tnbNQUikPBpEW/sQ2GeuLLt2AEIQvpQ/tI0haN4CfRxgCJ9WjSNKYcSC96ZfkT d8EiKG1F5AAG8ofhydKtyi5CZNzKiXsC -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:54 2025 by rpki-client