$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: gct1sdl/maYvcW9wMx1wNP8w78/QIYX9/Z1zwr58ad8= Subject key identifier: 13:FC:40:E4:0F:44:4B:BB:27:31:59:12:23:11:4D:49:93:8A:74:65 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 01E4 Signing time: Sun 19 Oct 2025 05:03:47 +0000 Manifest this update: Sun 19 Oct 2025 05:03:46 +0000 Manifest next update: Sun 26 Oct 2025 05:03:46 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: dhwHiN+guqZfLdrxJiDeZTmoJ32bd1hFp++uSDFkNEM=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Oct 19 05:03:46 2025 GMT Not After : Oct 26 05:03:46 2025 GMT Subject: CN=68f47132-f5dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0e:ed:e2:17:b9:78:47:c9:01:7a:a7:83:a2: e6:01:d6:b3:ee:c7:0a:61:d6:b7:c9:a1:30:93:ec: 6a:aa:62:d3:2b:b5:89:dc:65:d2:62:a2:83:9f:2d: dc:57:38:26:2e:63:70:08:18:e1:4f:68:d7:0c:e2: 29:4b:aa:34:25:1c:1a:fd:3c:9a:b0:14:b7:25:6e: 42:08:b7:37:fc:a8:45:e8:14:3e:3f:d9:ac:7a:88: 89:d7:25:f2:9c:0e:95:a0:e4:d9:26:40:74:a6:9e: 2e:dc:c3:e4:bc:f4:8f:48:37:04:2e:d2:58:02:b9: 6f:8f:85:d5:54:0c:5a:95:4e:34:7e:08:6b:b2:27: 31:79:e4:f8:18:14:39:25:5a:ae:8f:36:69:79:53: 63:7f:53:86:de:23:d1:c9:88:ae:ab:a9:50:1e:ac: 9b:43:ef:df:2a:42:a5:3b:be:9b:b5:1f:b9:a3:06: c3:b9:a0:55:e3:8f:5d:e7:b7:fb:fe:23:88:6f:e9: 44:b7:f1:96:62:33:dc:c1:82:20:67:a3:fe:91:25: 5f:13:4e:4f:84:f7:6e:61:bd:94:07:96:b9:23:4b: cd:c1:7e:70:d6:b1:78:bc:81:9b:46:8b:0e:7d:75: 3e:d1:83:a8:83:eb:ae:b0:52:84:4c:03:f9:fa:c0: 58:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FC:40:E4:0F:44:4B:BB:27:31:59:12:23:11:4D:49:93:8A:74:65 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c7:68:89:9b:24:e5:bc:42:58:ad:af:bb:a8:4c:10:07:fd: 6b:7f:03:c6:82:0b:63:9d:ab:80:d9:05:c2:70:a5:f3:0f:f6: 56:d3:49:15:d5:25:5c:a9:19:2c:90:7d:65:b6:dc:21:0b:06: 00:c5:d7:b9:84:1d:99:c7:cc:cb:71:c9:3f:74:16:1d:86:51: f2:1c:f0:6f:1b:7e:55:3c:12:93:ca:4a:af:c2:c9:c7:0c:9f: 30:c3:fe:c8:55:bb:28:9d:6a:fc:f4:ee:e1:8a:51:f7:dc:e0: bc:a7:ab:43:83:c9:b5:ce:5f:0e:53:61:79:96:6f:73:05:3f: 97:fa:f0:94:59:7b:4b:f9:32:d8:48:f4:b2:d8:37:2e:bf:13: fb:8e:dc:80:5b:8d:ca:38:1d:10:28:f8:c2:ea:b8:9f:f8:b4: 06:4f:ac:ce:2b:a6:f2:60:e5:c5:4e:46:06:e7:9a:f8:13:11: ff:ad:fd:32:8f:da:57:48:6e:72:d8:74:3a:3b:f2:f0:d3:1c: 55:f7:85:72:8e:30:be:51:d3:04:60:42:24:68:3f:5b:6c:5e: d0:3f:61:90:21:be:e2:ae:37:0d:e0:66:51:a1:bc:67:2c:b1: a3:1e:42:46:ec:83:22:7a:22:43:65:f0:76:1a:59:11:77:5c: 33:4e:84:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUxMDE5MDUwMzQ2WhcNMjUxMDI2MDUwMzQ2WjAYMRYwFAYD VQQDEw02OGY0NzEzMi1mNWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA7t4he5eEfJAXqng6LmAdaz7scKYda3yaEwk+xqqmLTK7WJ3GXSYqKDny3c VzgmLmNwCBjhT2jXDOIpS6o0JRwa/TyasBS3JW5CCLc3/KhF6BQ+P9mseoiJ1yXy nA6VoOTZJkB0pp4u3MPkvPSPSDcELtJYArlvj4XVVAxalU40fghrsicxeeT4GBQ5 JVqujzZpeVNjf1OG3iPRyYiuq6lQHqybQ+/fKkKlO76btR+5owbDuaBV449d57f7 /iOIb+lEt/GWYjPcwYIgZ6P+kSVfE05PhPduYb2UB5a5I0vNwX5w1rF4vIGbRosO fXU+0YOog+uusFKETAP5+sBYzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBP8QOQP REu7JzFZEiMRTUmTinRlMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSx2iJmyTlvEJYra+7qEwQB/1rfwPGggtjnauA2QXCcKXzD/ZW00kV 1SVcqRkskH1lttwhCwYAxde5hB2Zx8zLcck/dBYdhlHyHPBvG35VPBKTykqvwsnH DJ8ww/7IVbsonWr89O7hilH33OC8p6tDg8m1zl8OU2F5lm9zBT+X+vCUWXtL+TLY SPSy2DcuvxP7jtyAW43KOB0QKPjC6rif+LQGT6zOK6byYOXFTkYG55r4ExH/rf0y j9pXSG5y2HQ6O/Lw0xxV94VyjjC+UdMEYEIkaD9bbF7QP2GQIb7irjcN4GZRobxn LLGjHkJG7IMieiJDZfB2GlkRd1wzToQ2 -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:07 2025 by rpki-client