$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: suWh8ks3AiQcKLtyRoSXgTyl6Cj6Ix40esDSrtFFhKc= Subject key identifier: AF:95:FD:36:19:D7:CC:69:D7:FD:A8:9C:5D:5C:FD:05:A4:43:A7:74 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 09BE Signing time: Mon 20 Oct 2025 20:52:15 +0000 Manifest this update: Mon 20 Oct 2025 20:52:14 +0000 Manifest next update: Mon 27 Oct 2025 20:52:14 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: 2lr8rNa2OE6g+tw95d0KTUMHS++ffTtg2nIQszH23mI=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Oct 20 20:52:14 2025 GMT Not After : Oct 27 20:52:14 2025 GMT Subject: CN=68f6a0ff-bb78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ea:5c:55:8a:e9:80:a0:11:78:7c:45:a2:a8: 98:a4:12:4a:27:4d:db:1b:af:3c:17:bd:8f:04:63: 5c:0f:65:26:58:c9:d3:37:d7:88:73:ac:38:4c:ea: d1:56:a1:d6:0f:cc:a8:41:ef:bb:1b:e0:6c:7e:70: d2:84:d9:ef:b4:4c:19:3a:5c:70:5f:06:3a:15:91: 32:89:d9:2f:82:f1:77:40:bf:65:b4:63:d4:0b:92: 6d:eb:4d:10:f5:aa:ff:61:ce:ee:b0:6d:2e:97:c0: 36:57:ad:3a:9b:47:ae:41:c9:60:18:95:c4:86:36: c3:8d:a6:d3:eb:3d:c8:d5:fd:87:84:63:bf:a6:aa: 8c:ad:1e:39:9b:c2:c7:18:ec:13:ea:9a:66:fa:ee: 94:96:0f:07:08:e9:c0:31:f6:1e:6d:b9:86:98:24: e5:8b:42:5b:7f:29:b5:af:f0:9f:4e:a8:b8:b5:88: e1:71:b3:34:4d:fd:0f:7a:47:62:9c:d6:60:66:68: 83:30:a6:f1:e2:37:ea:02:c5:1b:ab:d8:61:0e:4f: b2:99:46:b4:81:8b:13:9d:b7:d6:fe:35:30:dc:5d: 3d:0a:42:96:42:b6:8c:8e:4f:73:7c:ed:77:ed:1f: 0c:d8:c8:3d:be:66:59:30:06:d5:d2:92:05:3a:77: 9c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:95:FD:36:19:D7:CC:69:D7:FD:A8:9C:5D:5C:FD:05:A4:43:A7:74 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fc:66:8a:fd:bd:7c:ce:80:1c:ea:05:b2:ae:f0:fb:24:ff: e5:8e:eb:88:3f:9f:53:01:0d:cf:0f:4b:c8:b4:59:69:fa:90: 11:4e:dc:af:80:cc:d9:c2:39:c4:63:5e:2f:1a:1f:f7:8a:4a: ed:8e:39:49:63:e5:e9:67:78:9e:47:b4:2f:4a:8e:eb:96:0a: d1:2e:69:0c:c6:a4:01:cc:0d:db:1d:e9:da:6f:f2:56:99:72: 12:a5:23:e9:f2:21:aa:7f:e2:d7:14:ee:3e:e5:db:2c:35:1d: ba:d3:13:dd:32:cb:1b:67:6b:82:51:60:1b:a9:2e:65:77:f1: 7c:0a:db:42:c3:d0:7f:99:4d:fc:21:cd:92:24:11:57:b7:95: d9:aa:0f:9d:95:a4:86:ca:41:5d:98:f1:05:b9:7a:ed:85:9d: 85:d8:04:26:3a:a0:b7:01:88:db:1d:71:e5:a1:01:59:51:d1: 4f:f0:b3:6f:41:8e:2a:ad:0a:6a:96:d0:b5:7d:2e:96:bc:e6: 4f:e4:5f:4f:b7:00:ef:ab:9c:8b:1a:27:2d:69:4b:31:bc:c8: 25:1f:b0:be:98:24:a7:fa:36:d8:f1:9e:97:8a:43:cd:42:b0: 70:ce:1d:de:03:ec:ab:23:c3:3b:bb:5f:3a:73:38:13:cb:85: ea:18:c2:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUxMDIwMjA1MjE0WhcNMjUxMDI3MjA1MjE0WjAYMRYwFAYD VQQDEw02OGY2YTBmZi1iYjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OpcVYrpgKAReHxFoqiYpBJKJ03bG688F72PBGNcD2UmWMnTN9eIc6w4TOrR VqHWD8yoQe+7G+BsfnDShNnvtEwZOlxwXwY6FZEyidkvgvF3QL9ltGPUC5Jt600Q 9ar/Yc7usG0ul8A2V606m0euQclgGJXEhjbDjabT6z3I1f2HhGO/pqqMrR45m8LH GOwT6ppm+u6Ulg8HCOnAMfYebbmGmCTli0Jbfym1r/CfTqi4tYjhcbM0Tf0Pekdi nNZgZmiDMKbx4jfqAsUbq9hhDk+ymUa0gYsTnbfW/jUw3F09CkKWQraMjk9zfO13 7R8M2Mg9vmZZMAbV0pIFOnecgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+V/TYZ 18xp1/2onF1c/QWkQ6d0MB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB/GaK/b18zoAc6gWyrvD7JP/ljuuIP59TAQ3PD0vItFlp+pARTtyv gMzZwjnEY14vGh/3ikrtjjlJY+XpZ3ieR7QvSo7rlgrRLmkMxqQBzA3bHenab/JW mXISpSPp8iGqf+LXFO4+5dssNR260xPdMssbZ2uCUWAbqS5ld/F8CttCw9B/mU38 Ic2SJBFXt5XZqg+dlaSGykFdmPEFuXrthZ2F2AQmOqC3AYjbHXHloQFZUdFP8LNv QY4qrQpqltC1fS6WvOZP5F9PtwDvq5yLGictaUsxvMglH7C+mCSn+jbY8Z6XikPN QrBwzh3eA+yrI8M7u186czgTy4XqGMKy -----END CERTIFICATE-----Generated at Tue Oct 21 02:36:53 2025 by rpki-client