$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: Qqx0lyyfgBI9XFNXIQp2vjJJCiAtnBvwsKzmtRc/mnQ= Subject key identifier: 9B:48:37:D7:73:4D:6C:96:AE:C8:8E:53:16:21:FB:B5:91:E9:0F:71 Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2A8F Signing time: Sat 18 Oct 2025 17:25:33 +0000 Manifest this update: Sat 18 Oct 2025 17:25:32 +0000 Manifest next update: Sat 25 Oct 2025 17:25:32 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: /ccHd5e/25pvQv22hhy6bIZjGUwxGI+4at/Me+37Doo=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: DSrMI7Nowx4RDukf/foMtUodJX/NiInBR6IMaoe7AeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Oct 18 17:25:32 2025 GMT Not After : Oct 25 17:25:32 2025 GMT Subject: CN=68f3cd8c-4b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:b4:47:ed:5c:a3:ea:49:57:75:d8:13:12: 7a:cc:27:32:0b:32:14:eb:d1:38:25:1f:56:3d:8d: b2:a7:01:70:ee:10:42:bb:1a:09:a4:46:c1:b5:ce: ac:b2:df:78:8b:da:f9:4b:2a:f9:47:41:70:5a:ee: 70:e1:d4:9d:a0:42:ab:3a:5c:ab:a0:c2:2c:d7:12: 96:68:50:70:70:15:b8:92:3d:85:bd:b5:e1:96:6c: 6f:81:17:0c:9e:96:7e:44:dc:78:56:9e:dc:58:fd: 73:dc:68:9f:e6:57:41:e8:ec:41:7c:74:e2:3a:de: c5:ff:32:fd:09:11:c1:ae:b3:aa:7e:e7:e9:ac:aa: 4a:14:c6:4e:96:e5:1a:32:95:e1:b7:76:d4:51:8b: 83:22:66:1d:32:de:67:a2:47:a5:f7:73:42:bb:09: 60:48:0e:54:35:53:56:3c:9d:44:fb:e1:f8:47:8f: fb:26:14:ee:1d:c4:30:59:78:df:a5:3f:26:20:d4: f6:8b:d8:38:c0:23:44:13:98:9c:dc:8f:00:ad:85: a5:48:fa:5e:3d:f1:b7:01:3e:61:52:51:68:0e:6a: c4:55:57:d7:d5:98:38:51:e7:cc:18:87:77:0d:f5: ee:6a:17:02:b0:83:86:82:72:00:f8:89:11:2e:44: fd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:48:37:D7:73:4D:6C:96:AE:C8:8E:53:16:21:FB:B5:91:E9:0F:71 X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:2a:9d:6a:ec:73:ec:a5:c1:d7:9e:72:6d:d9:07:4a:93:c5: a6:ef:89:2c:22:fc:f2:ed:03:22:0e:96:37:dc:4e:7b:b7:b5: 44:14:cc:3c:ea:4c:e9:0d:01:48:ea:91:d5:09:a7:d6:09:98: ad:15:ea:f2:4a:6b:50:06:39:55:da:88:3c:78:b6:ac:0b:3d: 6f:18:80:0c:53:be:bd:bb:a4:72:02:3b:9a:dd:68:96:73:9b: 1c:0a:be:16:fc:32:f4:57:e8:a7:2a:08:86:a5:31:ad:3d:a2: 55:eb:5f:70:08:be:2d:a5:66:cd:64:a1:2e:71:4a:5b:69:89: 5d:85:bd:c8:70:bb:2f:87:8b:b3:d5:0f:19:91:cc:6a:b8:19: df:e8:cb:76:c2:64:3b:26:c3:1e:c1:f0:dc:dc:3f:01:51:a3: 65:f9:2c:d3:6b:89:40:b0:72:cb:a2:72:af:d0:79:64:d6:ea: 47:1c:5f:3b:7d:39:c8:27:08:cf:c5:de:39:5a:cb:e3:0f:88: 2c:d5:b2:49:a4:1f:ab:f5:04:ed:d5:f4:7e:96:cf:0c:5d:93: 23:e7:a2:2e:09:61:2a:93:45:a8:b5:4e:43:5f:cc:aa:d9:cd: c5:1d:74:18:05:33:ed:96:e8:69:14:a9:82:92:6a:77:f5:6b: 5b:9a:6d:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUxMDE4MTcyNTMyWhcNMjUxMDI1MTcyNTMyWjAYMRYwFAYD VQQDEw02OGYzY2Q4Yy00YjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAK0R+1co+pJV3XYExJ6zCcyCzIU69E4JR9WPY2ypwFw7hBCuxoJpEbBtc6s st94i9r5Syr5R0FwWu5w4dSdoEKrOlyroMIs1xKWaFBwcBW4kj2FvbXhlmxvgRcM npZ+RNx4Vp7cWP1z3Gif5ldB6OxBfHTiOt7F/zL9CRHBrrOqfufprKpKFMZOluUa MpXht3bUUYuDImYdMt5nokel93NCuwlgSA5UNVNWPJ1E++H4R4/7JhTuHcQwWXjf pT8mINT2i9g4wCNEE5ic3I8ArYWlSPpePfG3AT5hUlFoDmrEVVfX1Zg4UefMGId3 DfXuahcCsIOGgnIA+IkRLkT9dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtIN9dz TWyWrsiOUxYh+7WR6Q9xMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Kp1q7HPspcHXnnJt2QdKk8Wm74ksIvzy7QMiDpY33E57t7VEFMw8 6kzpDQFI6pHVCafWCZitFerySmtQBjlV2og8eLasCz1vGIAMU769u6RyAjua3WiW c5scCr4W/DL0V+inKgiGpTGtPaJV619wCL4tpWbNZKEucUpbaYldhb3IcLsvh4uz 1Q8ZkcxquBnf6Mt2wmQ7JsMewfDc3D8BUaNl+SzTa4lAsHLLonKv0Hlk1upHHF87 fTnIJwjPxd45WsvjD4gs1bJJpB+r9QTt1fR+ls8MXZMj56IuCWEqk0WotU5DX8yq 2c3FHXQYBTPtluhpFKmCkmp39Wtbmm3i -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:48 2025 by rpki-client