$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: EOiD6S+olWsls5A1wwjKGpbpdRZKfpclkgpqagV7qio= Subject key identifier: D1:57:BB:76:DE:C9:6A:77:9C:9D:3B:23:48:99:3F:7E:AB:3C:1C:2F Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07B0 Signing time: Sat 18 Oct 2025 22:40:08 +0000 Manifest this update: Sat 18 Oct 2025 22:40:07 +0000 Manifest next update: Sat 25 Oct 2025 22:40:07 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: yCE/ZJh+B3k5gYF474w9eegcOjUKiy1MKj//r6DzbCo=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Oct 18 22:40:07 2025 GMT Not After : Oct 25 22:40:07 2025 GMT Subject: CN=68f41748-4aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:10:03:9f:f1:79:40:59:e4:77:b5:7b:b1: 7f:ae:31:eb:05:fb:62:fd:30:00:aa:83:77:8e:6d: a6:1d:59:86:9c:7b:5b:ec:8c:9d:b5:09:b7:88:27: 04:a0:0d:f8:db:36:46:83:10:ae:12:d8:d1:85:64: 82:06:44:d6:eb:5b:6e:cf:63:cc:c6:4c:96:db:e3: da:38:e0:ea:8d:b1:c0:2b:b3:8a:57:42:41:ca:2a: 3b:10:d8:9b:fe:f0:22:43:36:cc:8b:c0:58:63:54: 15:12:b7:c7:1b:69:64:92:f8:cd:aa:90:d5:71:b8: ee:c3:2e:16:e8:cc:e5:52:93:de:ed:a0:5c:3f:84: 95:f8:ff:6c:f2:ec:b1:82:a1:79:76:4a:2c:8f:74: 6a:b9:88:10:e8:af:0e:c9:0c:b9:7e:f1:29:de:29: ac:a6:de:77:f4:41:44:3d:5d:ba:9d:c9:57:09:3f: f3:cc:02:2f:68:cb:5e:01:0b:7f:33:f0:ae:cb:a9: 44:89:76:8a:b7:21:ec:fd:98:05:59:e8:bf:5a:1e: f3:cd:8b:fe:72:fc:f7:ac:90:ae:69:a8:ff:dc:62: 13:59:de:e2:dd:4c:3a:46:db:7e:76:bb:06:6d:ef: 7a:03:7b:4b:85:05:a3:c1:a5:15:92:e5:45:2f:5a: 19:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:57:BB:76:DE:C9:6A:77:9C:9D:3B:23:48:99:3F:7E:AB:3C:1C:2F X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a5:aa:05:d0:02:3b:f6:6f:b7:65:b8:82:7a:05:f3:5a:aa: 25:cb:b0:06:ae:fc:48:7a:7c:c6:60:9a:fb:23:25:50:d2:95: 5d:8d:55:63:30:95:6f:e7:9a:59:50:73:d3:52:a4:6d:08:c7: 48:e5:14:dd:6f:51:85:73:8f:84:9e:45:3a:84:08:22:e4:f6: 9a:ac:03:e7:f1:ee:17:07:de:72:47:a8:8c:fd:b4:ae:d0:9a: 60:28:1a:a1:ef:6f:f2:b3:23:15:5d:91:66:bc:ab:39:84:7f: ca:fc:95:c5:8f:55:fc:80:27:c5:5e:e4:74:c8:36:63:1a:28: 95:eb:40:c8:97:5d:be:4f:6a:82:36:1c:5b:8f:46:5a:1e:31: 0c:0e:40:85:d1:9e:d1:9d:ef:0b:9b:cf:e4:d6:67:ed:79:7b: 0f:08:70:e9:87:e9:a5:73:29:5d:6a:23:54:db:61:bb:d3:0a: c8:5f:0f:da:a6:ca:ee:cd:84:b6:41:de:8a:4e:97:e7:da:b7: 96:42:b8:53:18:6a:b9:97:72:96:41:38:51:9b:43:7a:c3:06: 01:cb:d2:45:93:6f:c3:11:91:e9:8c:92:3e:b3:b7:a8:bd:2c: 88:14:b3:1b:b2:5a:cc:9e:4a:10:70:b2:c4:25:2f:d5:11:bc: 10:61:d0:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUxMDE4MjI0MDA3WhcNMjUxMDI1MjI0MDA3WjAYMRYwFAYD VQQDEw02OGY0MTc0OC00YWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwAQA5/xeUBZ5He1e7F/rjHrBfti/TAAqoN3jm2mHVmGnHtb7IydtQm3iCcE oA342zZGgxCuEtjRhWSCBkTW61tuz2PMxkyW2+PaOODqjbHAK7OKV0JByio7ENib /vAiQzbMi8BYY1QVErfHG2lkkvjNqpDVcbjuwy4W6MzlUpPe7aBcP4SV+P9s8uyx gqF5dkosj3RquYgQ6K8OyQy5fvEp3imspt539EFEPV26nclXCT/zzAIvaMteAQt/ M/Cuy6lEiXaKtyHs/ZgFWei/Wh7zzYv+cvz3rJCuaaj/3GITWd7i3Uw6Rtt+drsG be96A3tLhQWjwaUVkuVFL1oZBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFXu3be yWp3nJ07I0iZP36rPBwvMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtpaoF0AI79m+3ZbiCegXzWqoly7AGrvxIenzGYJr7IyVQ0pVdjVVj MJVv55pZUHPTUqRtCMdI5RTdb1GFc4+EnkU6hAgi5PaarAPn8e4XB95yR6iM/bSu 0JpgKBqh72/ysyMVXZFmvKs5hH/K/JXFj1X8gCfFXuR0yDZjGiiV60DIl12+T2qC Nhxbj0ZaHjEMDkCF0Z7Rne8Lm8/k1mfteXsPCHDph+mlcyldaiNU22G70wrIXw/a psruzYS2Qd6KTpfn2reWQrhTGGq5l3KWQThRm0N6wwYBy9JFk2/DEZHpjJI+s7eo vSyIFLMbslrMnkoQcLLEJS/VEbwQYdAE -----END CERTIFICATE-----Generated at Mon Oct 20 07:57:39 2025 by rpki-client