$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft File: PQaSnY1eH2juI-yj-UjP96LklbM.mft (raw, json) Hash identifier: jdPONrM5rYPyGVFBVl23BmasV6cYg8tFUwe++7gd+cE= Subject key identifier: AF:F3:FC:C7:EF:9A:9E:B7:7E:DC:25:E5:21:86:96:95:1D:FC:3A:44 Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft Manifest number: 0B23 Signing time: Sat 18 Oct 2025 20:14:00 +0000 Manifest this update: Sat 18 Oct 2025 20:14:00 +0000 Manifest next update: Sat 25 Oct 2025 20:14:00 +0000 Files and hashes: 1: PQaSnY1eH2juI-yj-UjP96LklbM.crl (hash: nYVv4rXDaqhwNFgOzxmwXryI4nt/E9s4PwZ+ZdnxO4A=) 2: 4140D222AB0511F0AD64C814C4F9AE02.roa (hash: OQA1xcKI/hiAbUi76rdd20yEjY2R6araSSWLUXcKQG8=) 3: 41D7A1D4AB0511F0AD64C814C4F9AE02.roa (hash: rmQtPBzLnmMnKWqEbpn/ZFyPKybx/x0dYiK1HD1kfdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Oct 18 20:14:00 2025 GMT Not After : Oct 25 20:14:00 2025 GMT Subject: CN=68f3f508-b3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:dc:92:23:9a:97:eb:01:a2:c9:e2:f0:62: 03:67:34:86:6d:47:11:09:8b:3c:50:60:12:5f:c1: 51:d3:69:06:5d:96:8f:37:27:cd:86:cf:66:39:d3: 42:fc:ca:13:c9:d4:40:c2:0f:25:f2:ff:44:6d:d2: f9:41:f7:7a:fb:dd:c4:16:6e:2b:61:23:14:6e:da: b7:b5:f9:b2:b2:12:6a:8f:13:32:46:be:62:fd:14: fd:16:3d:c9:25:b9:61:47:0a:c7:34:f6:78:38:ed: 6c:dc:b3:dd:cd:fd:22:17:89:c9:f4:77:4a:9e:02: 1d:37:4c:37:3d:4d:a5:f4:97:a5:43:ef:e5:d1:a8: 03:ed:45:58:7a:7d:a6:26:62:88:fe:98:b7:fe:c8: cd:c9:c7:89:5c:ad:77:6f:64:32:93:b5:26:67:88: ec:0c:84:c6:66:80:2f:9f:b5:4b:df:f1:5e:d8:f5: 67:68:8d:ea:53:1e:f2:5a:84:52:7e:d1:52:c4:89: 7d:26:5f:b1:f9:71:27:e0:cb:55:35:3d:eb:d0:82: a4:a0:d5:82:94:31:1c:34:dd:7e:98:25:eb:06:f6: 03:76:37:a7:70:64:f2:37:41:d5:cf:0a:84:a4:c5: 72:56:80:bb:e7:8d:71:2f:47:05:f3:f7:27:1f:9e: 58:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F3:FC:C7:EF:9A:9E:B7:7E:DC:25:E5:21:86:96:95:1D:FC:3A:44 X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ea:b0:ae:30:3c:c4:8c:d3:be:33:35:28:52:d7:7a:d1:ac: b0:cc:c3:6d:70:c7:a5:93:a4:60:78:5a:3b:5b:6c:f6:86:bf: 3f:34:3c:f0:c2:a0:ac:df:33:54:54:30:70:57:e9:19:04:a1: 6c:55:ae:b9:0c:13:e1:98:7a:a9:aa:34:79:b8:ad:31:9d:a6: c4:2d:ed:06:db:d4:b5:e1:96:d8:53:5d:18:26:94:7c:17:df: a1:3a:30:79:91:fb:64:54:63:5d:6f:8a:1b:34:6d:93:22:84: 15:ed:7d:8c:15:42:ea:ab:1f:fe:77:ee:81:58:77:15:8c:0c: 36:29:09:b9:a8:66:91:2d:ff:4b:6a:73:0f:8c:93:d8:05:98: e8:c8:12:4f:4c:b6:d2:14:86:89:d1:30:5d:8e:8e:ba:dd:62: 86:f2:87:31:ce:b4:3f:31:85:b6:a6:9b:eb:c9:a6:ff:1b:ea: 84:b1:a9:4e:9f:78:2a:0f:80:46:be:b7:51:41:c0:99:4e:69: 98:79:81:39:ef:d9:e2:f0:c9:f4:97:83:3b:92:14:50:19:87: ab:37:89:07:a2:70:b6:95:e9:c5:30:0f:38:0b:7c:2c:b5:f5: 68:15:39:ff:32:3c:ae:2d:c8:ab:ca:3b:92:6d:c5:b6:64:42: 4b:97:52:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNTEwMTgyMDE0MDBaFw0yNTEwMjUyMDE0MDBaMBgxFjAUBgNV BAMTDTY4ZjNmNTA4LWIzY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+YNySI5qX6wGiyeLwYgNnNIZtRxEJizxQYBJfwVHTaQZdlo83J82Gz2Y500L8 yhPJ1EDCDyXy/0Rt0vlB93r73cQWbithIxRu2re1+bKyEmqPEzJGvmL9FP0WPckl uWFHCsc09ng47Wzcs93N/SIXicn0d0qeAh03TDc9TaX0l6VD7+XRqAPtRVh6faYm Yoj+mLf+yM3Jx4lcrXdvZDKTtSZniOwMhMZmgC+ftUvf8V7Y9WdojepTHvJahFJ+ 0VLEiX0mX7H5cSfgy1U1PevQgqSg1YKUMRw03X6YJesG9gN2N6dwZPI3QdXPCoSk xXJWgLvnjXEvRwXz9ycfnlhfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr/P8x++a nrd+3CXlIYaWlR38OkQwHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE Q0Q5LzQxMEJCQzE0NEU2QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJq dUkteWotVWpQOTZMa2xiTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB3qsK4wPMSM074zNShS13rRrLDMw21wx6WTpGB4WjtbbPaGvz80PPDC oKzfM1RUMHBX6RkEoWxVrrkME+GYeqmqNHm4rTGdpsQt7Qbb1LXhlthTXRgmlHwX 36E6MHmR+2RUY11vihs0bZMihBXtfYwVQuqrH/537oFYdxWMDDYpCbmoZpEt/0tq cw+Mk9gFmOjIEk9MttIUhonRMF2OjrrdYobyhzHOtD8xhbamm+vJpv8b6oSxqU6f eCoPgEa+t1FBwJlOaZh5gTnv2eLwyfSXgzuSFFAZh6s3iQeicLaV6cUwDzgLfCy1 9WgVOf8yPK4tyKvKO5JtxbZkQkuXUpI= -----END CERTIFICATE-----Generated at Mon Oct 20 12:22:50 2025 by rpki-client