$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: UkcxEmIB8zXM01OinYzfmjIyhTr7j8jJgbxaGsfS+tY= Subject key identifier: 5D:93:9D:6A:78:B5:CD:C9:EF:A5:C9:2A:EB:37:6A:9D:0E:13:6E:36 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 0498 Signing time: Sun 19 Oct 2025 01:54:43 +0000 Manifest this update: Sun 19 Oct 2025 01:54:42 +0000 Manifest next update: Sun 26 Oct 2025 01:54:42 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: 2lAEVcsbgoUL3S1bOKv9RJ6cVXYE5CcOTA8EB1o2F+o=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Oct 19 01:54:42 2025 GMT Not After : Oct 26 01:54:42 2025 GMT Subject: CN=68f444e3-ed49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:ad:56:73:30:cf:1c:b5:a2:d7:1c:ca:ee: af:38:cd:81:de:66:dc:e7:85:7d:7c:55:e0:39:d7: 5a:34:ad:bf:df:31:30:81:84:dc:9e:77:c7:04:d8: e1:7e:be:6f:60:3c:e1:10:2f:09:f0:2c:fb:cb:49: 6a:27:d9:33:68:4f:e1:68:49:9d:ee:d5:11:6b:41: 28:e8:2d:fb:b6:f1:c6:af:80:0b:ca:cf:c0:09:87: a3:c2:6b:4c:43:e5:72:84:e2:99:64:a3:bd:0e:c9: 4a:c3:a7:5d:6a:3a:5e:5b:05:a8:c1:a7:0f:ed:62: 9e:36:d3:a3:36:23:37:3e:c2:6f:36:cf:5e:bc:5b: 22:d7:96:00:a2:c6:56:4a:82:47:9a:34:07:09:ab: 15:ba:0f:05:5a:04:89:e4:84:8f:90:7c:8e:7a:31: 57:83:ca:c8:f5:e1:0a:38:51:82:0d:16:3e:01:34: a5:08:58:39:2c:fb:b9:b9:f1:d9:48:55:6e:e3:ac: e4:09:01:d9:7e:42:76:25:57:16:bc:55:80:ca:d6: af:5c:3e:ba:61:cf:26:29:c6:a0:71:57:89:a2:74: f1:ff:81:bc:54:a9:b4:63:48:0a:52:ef:c6:da:c5: c6:11:37:25:0a:60:0d:01:9b:2c:94:3c:71:71:d8: e0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:93:9D:6A:78:B5:CD:C9:EF:A5:C9:2A:EB:37:6A:9D:0E:13:6E:36 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:74:87:8b:89:25:20:e3:76:61:dd:e7:a9:71:46:73:7e:26: 39:48:fa:85:e0:bc:92:03:17:38:92:f8:3e:fd:6e:ad:64:51: 7b:f2:56:4b:cc:81:44:ab:82:50:31:f5:23:2c:43:f8:53:65: 36:86:68:c6:30:13:82:09:93:e9:17:ee:7a:9a:e8:fd:c0:f3: d4:fe:26:f9:28:d6:f8:e4:35:0c:dc:76:94:d0:39:b7:5e:e7: 81:16:53:d4:74:0d:f0:04:7b:7c:45:ef:f0:8f:c4:7e:46:e7: 42:ed:c6:8d:a1:9f:30:5e:2c:7c:0a:62:b3:6e:cb:f4:6a:ea: 24:a7:1d:3f:e8:f4:4c:c6:c9:a5:33:fe:cd:fc:59:ff:ef:15: 3a:56:0a:d0:15:4b:ec:65:80:f5:3b:d8:bc:be:5c:3e:fe:35: ac:8d:5a:8e:fd:1e:f4:cd:c1:c2:54:cf:bb:4c:a2:a7:ab:00: 34:f5:76:7c:eb:d1:01:fe:ea:9a:c9:c0:e2:cd:5d:9e:91:5f: e6:50:79:e9:e7:a0:b5:1e:66:b2:95:56:4d:75:b7:eb:d8:37: d9:f0:b0:e7:c5:ab:95:c9:8f:9c:33:e8:f4:74:33:50:3c:d7: 59:64:97:71:f3:95:30:5f:b9:16:58:8e:23:48:ee:70:3a:29: 37:b9:7e:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUxMDE5MDE1NDQyWhcNMjUxMDI2MDE1NDQyWjAYMRYwFAYD VQQDEw02OGY0NDRlMy1lZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPytVnMwzxy1otccyu6vOM2B3mbc54V9fFXgOddaNK2/3zEwgYTcnnfHBNjh fr5vYDzhEC8J8Cz7y0lqJ9kzaE/haEmd7tURa0Eo6C37tvHGr4ALys/ACYejwmtM Q+VyhOKZZKO9DslKw6ddajpeWwWowacP7WKeNtOjNiM3PsJvNs9evFsi15YAosZW SoJHmjQHCasVug8FWgSJ5ISPkHyOejFXg8rI9eEKOFGCDRY+ATSlCFg5LPu5ufHZ SFVu46zkCQHZfkJ2JVcWvFWAytavXD66Yc8mKcagcVeJonTx/4G8VKm0Y0gKUu/G 2sXGETclCmANAZsslDxxcdjgCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2TnWp4 tc3J76XJKus3ap0OE242MB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkdIeLiSUg43Zh3eepcUZzfiY5SPqF4LySAxc4kvg+/W6tZFF78lZL zIFEq4JQMfUjLEP4U2U2hmjGMBOCCZPpF+56muj9wPPU/ib5KNb45DUM3HaU0Dm3 XueBFlPUdA3wBHt8Re/wj8R+RudC7caNoZ8wXix8CmKzbsv0auokpx0/6PRMxsml M/7N/Fn/7xU6VgrQFUvsZYD1O9i8vlw+/jWsjVqO/R70zcHCVM+7TKKnqwA09XZ8 69EB/uqaycDizV2ekV/mUHnp56C1HmaylVZNdbfr2DfZ8LDnxauVyY+cM+j0dDNQ PNdZZJdx85UwX7kWWI4jSO5wOik3uX4P -----END CERTIFICATE-----Generated at Mon Oct 20 17:04:46 2025 by rpki-client