$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: ZqQn4Lq21jFlXzqG+L+McCRI69tQHrTENs58fEEZdlo= Subject key identifier: 17:19:71:32:29:BB:25:F8:E3:C7:69:6E:64:AE:DF:28:24:4C:98:F1 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 0194 Signing time: Sun 19 Oct 2025 06:04:54 +0000 Manifest this update: Sun 19 Oct 2025 06:04:54 +0000 Manifest next update: Sun 26 Oct 2025 06:04:54 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: CHDjdcJeOtosPwgTYYJT2hR+bBAwkktEUjrICsE/EsQ=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Oct 19 06:04:54 2025 GMT Not After : Oct 26 06:04:54 2025 GMT Subject: CN=68f47f86-8c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:81:c0:d6:ed:88:ff:e8:eb:00:38:19:51: c9:09:cc:bd:60:b1:ae:44:98:a5:4f:43:43:fa:8e: cc:0b:3e:5c:e4:67:d4:23:83:7e:7e:e2:28:d9:07: 71:de:52:23:37:90:50:39:10:67:c8:32:5d:15:bc: 6b:6f:3b:8d:0d:a0:fc:c0:fe:27:ad:a0:86:a9:b1: 21:33:2e:86:c1:16:7e:fa:de:28:e9:37:cb:e7:bf: 28:99:0a:77:ed:5c:dd:8f:b9:02:24:9f:23:8f:67: 61:07:c4:01:cf:cb:19:95:4a:ac:3f:ff:1a:a6:b4: 9a:1e:eb:d1:49:03:8e:e9:dc:b4:5b:fe:93:fd:22: 4e:8e:e7:7d:bf:51:c3:3e:76:80:00:72:6f:9e:16: 48:aa:a9:ea:39:4f:14:57:66:bb:16:72:5a:be:d1: 1a:94:eb:7d:2b:c3:66:32:cc:00:8d:18:44:dd:4c: 6d:41:e0:81:16:b1:5f:e3:e6:4e:46:7b:dc:f9:18: 65:a5:a3:3c:07:df:e0:8b:14:5a:d1:ba:89:7d:99: a6:e8:cf:49:db:e7:7d:3c:00:b5:24:e0:09:8c:9e: 2a:87:ec:0d:bf:07:0d:7c:ed:0e:36:3c:03:b8:53: 06:09:e7:9f:30:ad:21:42:d6:1e:fc:2c:0e:50:87: 98:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:19:71:32:29:BB:25:F8:E3:C7:69:6E:64:AE:DF:28:24:4C:98:F1 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:b5:ab:58:9b:76:71:59:22:df:2d:66:e0:e8:24:57:f6:82: db:05:07:c6:c0:5b:44:74:13:c7:b6:b7:0c:d1:22:b9:87:d0: 81:a3:89:80:3c:0f:8a:ff:87:0a:55:f0:e3:73:76:49:dd:3b: 9a:38:8a:5e:ee:84:43:9f:3b:7d:00:f2:d7:c9:7a:a6:5c:e0: 82:34:b9:ac:e6:c3:1c:f9:ac:14:4e:f2:a7:9d:db:83:b3:d3: 03:79:8c:83:1d:9f:d0:fc:b0:6c:e7:cf:65:a6:01:b6:db:9c: b8:c8:c4:4a:c1:95:80:83:f8:2c:ae:31:77:ae:77:8d:da:3a: a6:87:4c:fe:64:ab:0e:b0:b1:9a:75:53:34:35:0d:7d:49:35: 54:b3:ac:36:88:51:d4:ea:5f:71:10:c3:94:ca:2b:7b:0c:0f: 5b:29:0e:03:0b:2e:b0:dc:b3:97:4d:42:c9:f7:46:47:df:30: 1a:55:39:4f:89:a5:10:77:95:1c:69:a9:69:8f:5a:70:c9:e9: 51:bc:fa:6b:56:fd:47:86:88:9b:1b:5b:00:ab:26:0c:0d:26: b7:e1:53:29:64:5d:d6:c2:2f:93:c7:7d:36:7b:15:f5:d4:bd: cb:31:9f:a7:6d:f4:3f:7f:91:8f:af:39:93:4f:00:20:25:32: e2:73:3d:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMDE5MDYwNDU0WhcNMjUxMDI2MDYwNDU0WjAYMRYwFAYD VQQDEw02OGY0N2Y4Ni04YzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCOBwNbtiP/o6wA4GVHJCcy9YLGuRJilT0ND+o7MCz5c5GfUI4N+fuIo2Qdx 3lIjN5BQORBnyDJdFbxrbzuNDaD8wP4nraCGqbEhMy6GwRZ++t4o6TfL578omQp3 7Vzdj7kCJJ8jj2dhB8QBz8sZlUqsP/8aprSaHuvRSQOO6dy0W/6T/SJOjud9v1HD PnaAAHJvnhZIqqnqOU8UV2a7FnJavtEalOt9K8NmMswAjRhE3UxtQeCBFrFf4+ZO Rnvc+RhlpaM8B9/gixRa0bqJfZmm6M9J2+d9PAC1JOAJjJ4qh+wNvwcNfO0ONjwD uFMGCeefMK0hQtYe/CwOUIeY9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcZcTIp uyX448dpbmSu3ygkTJjxMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAntatYm3ZxWSLfLWbg6CRX9oLbBQfGwFtEdBPHtrcM0SK5h9CBo4mA PA+K/4cKVfDjc3ZJ3TuaOIpe7oRDnzt9APLXyXqmXOCCNLms5sMc+awUTvKnnduD s9MDeYyDHZ/Q/LBs589lpgG225y4yMRKwZWAg/gsrjF3rneN2jqmh0z+ZKsOsLGa dVM0NQ19STVUs6w2iFHU6l9xEMOUyit7DA9bKQ4DCy6w3LOXTULJ90ZH3zAaVTlP iaUQd5Ucaalpj1pwyelRvPprVv1HhoibG1sAqyYMDSa34VMpZF3Wwi+Tx302exX1 1L3LMZ+nbfQ/f5GPrzmTTwAgJTLicz2p -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:15 2025 by rpki-client