$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: tIVkA9VIBnzfo/1StCwkZhv+5l0phWEHnwdrPdJ9Hdc= Subject key identifier: 47:66:1F:E5:57:9C:9F:B4:2A:62:3E:26:F4:25:F7:8F:DB:5E:E2:66 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 9C Signing time: Sun 19 Oct 2025 09:34:56 +0000 Manifest this update: Sun 19 Oct 2025 09:34:56 +0000 Manifest next update: Sun 26 Oct 2025 09:34:56 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: GLJWBOS32imPFotdUZUphseZkjNPSHVw0eugWQyiWyA=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Oct 19 09:34:56 2025 GMT Not After : Oct 26 09:34:56 2025 GMT Subject: CN=68f4b0c0-5c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:52:8d:06:5b:7f:94:10:e0:4b:75:a0:0c:59: 2d:2c:30:d3:cd:26:58:f0:af:3f:fe:6b:ba:76:0d: f1:66:f7:d0:5c:7b:93:b2:f1:d5:6d:bd:bc:e5:cb: 96:e5:6e:6e:a9:33:84:27:32:5b:23:f2:66:48:4f: f4:de:ac:fe:7c:b0:a4:2f:b6:f2:93:cc:eb:fa:b7: 6d:e4:a3:be:42:0d:ea:e6:12:c4:9f:ee:0f:a5:39: 25:96:73:32:0b:26:eb:8d:74:3d:2d:81:be:df:e3: 35:ab:2e:c9:0e:c6:98:25:c7:90:f4:e0:31:c4:3e: 43:af:db:a3:9b:84:e3:fe:fc:9d:f7:f7:09:48:0d: e4:df:27:fe:43:f9:57:c8:4c:50:8a:12:67:20:e8: f0:13:a4:49:6f:14:9b:0c:ad:a3:4e:10:c6:b4:dd: a6:b0:f8:36:48:cf:c6:30:55:ba:0c:39:22:7e:4d: b2:8a:d1:1f:b9:ee:98:73:44:61:c5:31:f8:11:fa: a4:d4:bb:bd:bb:55:cf:fc:3a:42:8f:3a:b6:22:b8: 0a:d7:3a:cf:f4:c6:d5:e9:39:b1:da:7e:78:60:78: 1b:24:63:e1:3a:45:96:3a:9a:86:f2:b5:13:d8:18: 69:05:fd:5d:a1:5e:71:cc:e3:c6:a8:25:b6:ee:ea: e4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:66:1F:E5:57:9C:9F:B4:2A:62:3E:26:F4:25:F7:8F:DB:5E:E2:66 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:a2:3e:9a:0b:a0:35:b0:44:6c:89:58:da:e5:02:9c:66:9e: ac:d1:96:07:bf:ed:92:51:76:40:ff:cd:53:30:00:79:32:f9: 88:fe:74:cf:b0:cb:c2:5a:31:d3:0d:60:51:87:97:cc:13:3a: 55:7a:e5:d3:a5:57:14:92:35:9a:5c:58:d1:26:2f:09:c4:0a: 53:56:6d:86:f1:17:64:cd:5b:d1:21:bb:ea:42:9e:4c:52:32: 6d:33:eb:06:70:13:fb:d3:db:e0:41:8b:e6:a7:9c:8c:b6:34: 87:5f:4f:60:5e:da:73:03:e5:85:55:1a:2f:1a:49:8e:37:63: 3a:c1:13:9b:b3:83:bf:fd:73:c9:3d:b3:71:24:f4:bb:d1:56: fb:30:6c:54:69:6b:ac:eb:2c:8a:b8:d2:6e:03:d6:8c:8d:51: 08:da:8a:89:0e:ba:b2:8a:bb:ab:ee:6b:49:f8:08:38:10:e5: 17:33:b3:80:ad:a6:7b:5d:64:11:e1:a0:d2:a2:15:ea:fe:85: 5d:f5:38:33:0a:f2:9d:1f:6f:03:48:dd:88:98:c6:0b:e3:ca: b9:34:28:f1:58:76:53:69:e4:2d:1e:71:cf:dc:29:7d:2f:ff: ab:3c:6e:db:cf:e1:5d:8c:ee:70:44:81:f6:7b:30:07:42:35: 8d:51:1c:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUxMDE5MDkzNDU2WhcNMjUxMDI2MDkzNDU2WjAYMRYwFAYD VQQDEw02OGY0YjBjMC01YzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VKNBlt/lBDgS3WgDFktLDDTzSZY8K8//mu6dg3xZvfQXHuTsvHVbb285cuW 5W5uqTOEJzJbI/JmSE/03qz+fLCkL7byk8zr+rdt5KO+Qg3q5hLEn+4PpTkllnMy CybrjXQ9LYG+3+M1qy7JDsaYJceQ9OAxxD5Dr9ujm4Tj/vyd9/cJSA3k3yf+Q/lX yExQihJnIOjwE6RJbxSbDK2jThDGtN2msPg2SM/GMFW6DDkifk2yitEfue6Yc0Rh xTH4Efqk1Lu9u1XP/DpCjzq2IrgK1zrP9MbV6Tmx2n54YHgbJGPhOkWWOpqG8rUT 2BhpBf1doV5xzOPGqCW27urkZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdmH+VX nJ+0KmI+JvQl94/bXuJmMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCoj6aC6A1sERsiVja5QKcZp6s0ZYHv+2SUXZA/81TMAB5MvmI/nTP sMvCWjHTDWBRh5fMEzpVeuXTpVcUkjWaXFjRJi8JxApTVm2G8RdkzVvRIbvqQp5M UjJtM+sGcBP709vgQYvmp5yMtjSHX09gXtpzA+WFVRovGkmON2M6wRObs4O//XPJ PbNxJPS70Vb7MGxUaWus6yyKuNJuA9aMjVEI2oqJDrqyirur7mtJ+Ag4EOUXM7OA raZ7XWQR4aDSohXq/oVd9TgzCvKdH28DSN2ImMYL48q5NCjxWHZTaeQtHnHP3Cl9 L/+rPG7bz+FdjO5wRIH2ezAHQjWNURxq -----END CERTIFICATE-----Generated at Mon Oct 20 08:37:33 2025 by rpki-client