$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: KL8nrSvhouVz5y/G0wzcJRoUT+WakkivM3D84N3OvDQ= Subject key identifier: DB:4F:49:B9:1C:AA:76:98:D5:83:D4:A0:28:0B:81:09:D5:B7:E1:C9 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0DCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0DC1 Signing time: Mon 20 Oct 2025 18:25:24 +0000 Manifest this update: Mon 20 Oct 2025 18:25:23 +0000 Manifest next update: Mon 27 Oct 2025 18:25:23 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: pACYdUTa3nuKIqPLd7h5WIOPAKLW893wrALUiOi13VA=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: 5AhgINS9PwniKFtC6UdMhxxWx5F0pu9QmvKHh6K5mSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3531 (0xdcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Oct 20 18:25:23 2025 GMT Not After : Oct 27 18:25:23 2025 GMT Subject: CN=68f67e94-241e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:94:62:d5:55:0a:9d:1c:39:2f:19:a4:86:75: 39:75:5d:39:fd:34:c2:e9:dd:ab:57:3d:54:ff:8a: 1c:3c:19:8c:d8:90:1b:7a:2f:c5:36:fd:62:d6:a1: 51:2f:45:5e:74:eb:ba:45:5b:49:73:9c:10:c9:88: a0:17:7f:39:c2:4c:68:22:c6:6b:4b:62:7b:ba:bf: f1:00:0c:7f:25:b5:cc:59:64:b5:ee:94:d9:0d:4f: 82:7e:34:e2:db:27:62:28:83:b3:fe:22:73:13:db: c5:f1:cc:e1:a1:14:5f:b8:1f:08:ce:1f:5e:b4:1b: 6a:8f:5f:08:34:30:a8:46:b5:9b:d4:59:68:dc:34: 8e:12:05:23:fd:ae:ed:3f:e7:ef:72:f3:2f:21:64: e9:3e:a8:c6:6f:c1:d4:92:f3:12:5d:1d:58:fe:9f: c5:39:e8:3d:49:d4:70:86:b7:30:52:35:33:a7:c9: 67:52:3e:90:b9:88:44:7b:c8:3e:d4:4f:ad:93:7e: e1:95:62:92:63:3a:49:89:ad:7d:ed:41:88:e2:87: 42:9d:b6:b8:be:f1:62:93:a6:44:e4:34:38:14:26: 7b:5c:cc:c5:a0:bf:fb:17:c4:bc:c9:e0:1e:37:cf: 16:a1:53:0a:eb:9d:c3:d1:84:9d:17:b9:5f:7c:6e: ad:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4F:49:B9:1C:AA:76:98:D5:83:D4:A0:28:0B:81:09:D5:B7:E1:C9 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c6:18:8c:e4:62:fd:3d:75:6e:a0:80:e8:3c:13:a8:d9:c5: 21:8a:48:05:09:57:5e:f3:06:03:9f:f1:b5:53:2e:d1:37:6e: 30:c8:eb:10:f5:de:fc:64:a3:3c:eb:75:0f:b5:ba:fc:a1:73: aa:62:66:33:a9:e3:10:99:53:2b:4d:5d:1b:59:4f:b9:00:ef: 81:35:03:1d:8e:48:18:2f:8c:b5:4d:29:27:76:2c:82:97:d1: 2d:97:52:17:18:5f:fb:2c:b5:25:31:fa:e3:f6:52:2b:08:f3: bb:d4:77:05:22:55:d6:9b:13:0d:8a:3d:6b:76:4c:fc:be:db: 85:55:c8:d8:52:3d:a9:03:d2:7c:95:2d:27:e5:c6:52:00:b2: f9:6a:e7:e5:0f:d9:9e:d9:5e:4d:62:c2:7d:1a:d3:50:4c:4c: d3:fb:36:cb:7a:b2:5c:b8:7c:73:0e:22:84:29:50:e2:10:2c: 72:3b:50:4e:37:8d:10:5d:bb:3b:25:52:d4:5a:b4:b4:72:59: c1:75:b9:ed:07:ab:f5:aa:93:11:9d:a8:9c:49:f6:ef:ec:b7: bb:1c:1b:12:1c:67:6f:b6:6f:8d:c4:3a:06:94:15:4e:1d:fa: 13:aa:21:f2:b2:0b:61:b0:d5:94:20:a9:a2:3a:6c:aa:e4:71: 58:d2:db:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUxMDIwMTgyNTIzWhcNMjUxMDI3MTgyNTIzWjAYMRYwFAYD VQQDEw02OGY2N2U5NC0yNDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5Ri1VUKnRw5LxmkhnU5dV05/TTC6d2rVz1U/4ocPBmM2JAbei/FNv1i1qFR L0VedOu6RVtJc5wQyYigF385wkxoIsZrS2J7ur/xAAx/JbXMWWS17pTZDU+CfjTi 2ydiKIOz/iJzE9vF8czhoRRfuB8Izh9etBtqj18INDCoRrWb1Flo3DSOEgUj/a7t P+fvcvMvIWTpPqjGb8HUkvMSXR1Y/p/FOeg9SdRwhrcwUjUzp8lnUj6QuYhEe8g+ 1E+tk37hlWKSYzpJia197UGI4odCnba4vvFik6ZE5DQ4FCZ7XMzFoL/7F8S8yeAe N88WoVMK653D0YSdF7lffG6tewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtPSbkc qnaY1YPUoCgLgQnVt+HJMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZxhiM5GL9PXVuoIDoPBOo2cUhikgFCVde8wYDn/G1Uy7RN24wyOsQ 9d78ZKM863UPtbr8oXOqYmYzqeMQmVMrTV0bWU+5AO+BNQMdjkgYL4y1TSkndiyC l9Etl1IXGF/7LLUlMfrj9lIrCPO71HcFIlXWmxMNij1rdkz8vtuFVcjYUj2pA9J8 lS0n5cZSALL5auflD9me2V5NYsJ9GtNQTEzT+zbLerJcuHxzDiKEKVDiECxyO1BO N40QXbs7JVLUWrS0clnBdbntB6v1qpMRnaicSfbv7Le7HBsSHGdvtm+NxDoGlBVO HfoTqiHysgthsNWUIKmiOmyq5HFY0tsc -----END CERTIFICATE-----Generated at Mon Oct 20 22:41:34 2025 by rpki-client