$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft File: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft (raw, json) Hash identifier: TZDfPx3kN8774LEbXblOxZBYy4MbVggyE00VCmxX83k= Subject key identifier: 86:F0:F5:D8:48:F6:2F:7B:E2:70:BB:04:9F:56:B9:90:B7:84:0F:C2 Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft Manifest number: 035C Signing time: Sun 19 Oct 2025 03:01:20 +0000 Manifest this update: Sun 19 Oct 2025 03:01:20 +0000 Manifest next update: Sun 26 Oct 2025 03:01:20 +0000 Files and hashes: 1: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl (hash: qCUoHB8rJxwRemDv2AlqfogsxAhk+5PQ78en6+0yVXg=) 2: B6EB7E8ED14511EC89527642C4F9AE02.roa (hash: zOa4PF6DbTNRPznC3F2BR2cHewtdmnvs1jqCDBbkuO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5, serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Oct 19 03:01:20 2025 GMT Not After : Oct 26 03:01:20 2025 GMT Subject: CN=68f45480-c297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:11:d5:29:ff:32:95:b0:ec:82:99:f5:54: 48:6f:99:b3:e6:34:87:7d:06:06:31:47:e3:dc:0f: 9e:e7:e3:2d:8a:3f:d4:eb:fe:f6:f2:67:b9:fe:11: 1b:cc:de:7b:19:d5:dc:a2:0a:0b:19:5c:2c:fe:a1: a1:71:32:61:7a:5a:a2:6e:ba:ec:89:19:db:3b:c9: 89:61:fb:38:ed:38:b3:22:d7:4d:9e:ef:16:73:fa: 7e:c8:90:03:c9:af:6c:d7:f3:db:a7:eb:ac:bd:90: f2:53:95:ab:ab:e0:54:05:73:e3:d9:29:61:02:54: 38:77:98:7d:99:ed:95:9d:cc:26:7f:b0:81:d1:bf: f2:25:99:17:49:9d:22:28:2a:7b:8c:39:1a:8e:ff: 43:1e:30:9c:30:c7:c2:1f:c6:13:9b:79:fd:11:57: 00:bd:c2:26:22:57:0f:28:9b:d4:c2:34:b0:35:d9: 80:bc:d1:cf:7d:79:62:ad:af:e9:dc:c5:e4:95:a0: 74:7a:15:5b:1f:43:50:1a:29:c4:53:43:9e:e1:c5: f6:76:10:ab:b2:d2:21:f5:97:db:b6:cc:aa:a6:88: f7:12:f3:1c:f1:d3:41:14:00:ca:aa:2f:f0:c2:cd: c1:b4:49:b1:c5:a5:77:b8:bc:3c:8b:35:63:96:d5: 6b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F0:F5:D8:48:F6:2F:7B:E2:70:BB:04:9F:56:B9:90:B7:84:0F:C2 X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:3a:50:2d:8a:7d:1b:6b:61:d0:5f:b3:a0:99:00:0a:44:d6: 04:70:bd:0b:50:1f:d7:66:4e:32:96:7c:63:e8:b0:b7:1c:f4: 85:09:e7:c4:ff:b8:f0:0f:8c:b9:06:4a:8a:c6:88:10:b0:18: 61:41:12:93:1a:40:9b:9f:fe:a4:e2:80:a1:61:c5:00:2c:13: a3:ef:8f:66:f9:43:6a:ef:d5:fd:5e:4c:91:5e:fd:52:c4:db: 48:e9:0f:6d:2e:04:78:39:bb:a2:04:6e:b4:f5:9a:87:67:6f: 5e:53:2e:eb:32:e7:7c:ac:0e:9a:d2:0f:59:03:9f:95:65:29: 66:6c:72:bc:62:9b:93:2d:6c:59:56:eb:40:3a:c7:85:43:9e: ed:c5:12:43:3b:61:1f:35:3d:60:13:92:f3:bd:ec:ca:b8:f9: c2:c5:c2:8b:15:47:2d:ab:ce:03:6c:eb:b8:be:4f:9f:ad:f4: 55:94:aa:ba:8b:a2:3f:b6:7f:03:44:db:25:3e:b8:72:28:89: 14:b7:bf:b6:8b:42:08:5d:59:c2:c7:5a:6c:56:de:d6:26:95: 8f:41:b3:c7:cd:d2:37:49:b3:ee:dd:fa:31:7b:e1:04:0c:b4: 9c:07:c0:4c:75:83:3c:93:0c:75:e0:32:1b:1b:c2:eb:a6:da: 09:f9:84:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjUxMDE5MDMwMTIwWhcNMjUxMDI2MDMwMTIwWjAYMRYwFAYD VQQDEw02OGY0NTQ4MC1jMjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nwR1Sn/MpWw7IKZ9VRIb5mz5jSHfQYGMUfj3A+e5+Mtij/U6/728me5/hEb zN57GdXcogoLGVws/qGhcTJhelqibrrsiRnbO8mJYfs47TizItdNnu8Wc/p+yJAD ya9s1/Pbp+usvZDyU5Wrq+BUBXPj2SlhAlQ4d5h9me2Vncwmf7CB0b/yJZkXSZ0i KCp7jDkajv9DHjCcMMfCH8YTm3n9EVcAvcImIlcPKJvUwjSwNdmAvNHPfXlira/p 3MXklaB0ehVbH0NQGinEU0Oe4cX2dhCrstIh9Zfbtsyqpoj3EvMc8dNBFADKqi/w ws3BtEmxxaV3uLw8izVjltVrhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbw9dhI 9i974nC7BJ9WuZC3hA/CMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURGNS9DMjQwQjc5NEQxNDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBD UlV4WC1EN3NQazlFcDZpM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIOlAtin0ba2HQX7OgmQAKRNYEcL0LUB/XZk4ylnxj6LC3HPSFCefE /7jwD4y5BkqKxogQsBhhQRKTGkCbn/6k4oChYcUALBOj749m+UNq79X9XkyRXv1S xNtI6Q9tLgR4ObuiBG609ZqHZ29eUy7rMud8rA6a0g9ZA5+VZSlmbHK8YpuTLWxZ VutAOseFQ57txRJDO2EfNT1gE5LzvezKuPnCxcKLFUctq84DbOu4vk+frfRVlKq6 i6I/tn8DRNslPrhyKIkUt7+2i0IIXVnCx1psVt7WJpWPQbPHzdI3SbPu3foxe+EE DLScB8BMdYM8kwx14DIbG8LrptoJ+YTU -----END CERTIFICATE-----Generated at Mon Oct 20 09:38:13 2025 by rpki-client