$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: oOs+qikZ57X//b40oFkyBn/FfH8IMOo64CNym1tdh1U= Subject key identifier: E6:64:65:67:04:13:4A:19:4B:3B:A8:A4:E3:EC:7D:D5:81:65:D4:C6 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C53 Signing time: Sat 18 Oct 2025 19:23:59 +0000 Manifest this update: Sat 18 Oct 2025 19:23:58 +0000 Manifest next update: Sat 25 Oct 2025 19:23:58 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: AetBVjsqMtRNXUG6WEfFVeZyedvjxC7OpPwFtSo8USE=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Oct 18 19:23:58 2025 GMT Not After : Oct 25 19:23:58 2025 GMT Subject: CN=68f3e94f-1314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:61:94:54:fa:66:b5:95:7d:d6:e4:88:c1:c5: f2:95:42:eb:ff:00:43:c3:e1:c5:93:4c:a6:4a:ac: 67:9e:99:8f:8b:95:a0:67:01:94:70:9e:f7:33:d7: 96:96:0e:a9:b7:e6:13:a9:85:7f:15:79:b4:a2:92: 31:e7:6f:b4:3d:ad:28:7b:b4:14:4e:33:0c:7b:8c: d3:5f:c7:a5:26:5e:0b:0d:58:c9:bd:90:93:de:1a: ee:b8:52:f4:3f:67:11:d7:8d:1a:a8:7b:e3:e2:9c: 69:25:bb:19:4c:3d:b0:3d:43:b8:a9:16:af:f4:35: 55:dc:22:2e:0e:b5:68:cc:fc:5f:53:b4:fe:88:f7: a6:3f:3d:7a:5b:a1:27:ac:ba:33:c9:01:02:7b:7f: fe:f6:9b:2c:71:23:13:02:80:81:4e:dd:9f:02:27: de:1d:32:9c:97:25:6b:c9:15:0c:1f:7e:95:65:19: 1f:d2:9d:f7:b1:01:3c:38:27:d8:bc:03:fd:96:60: 92:b4:65:17:0f:48:9d:9b:e6:5c:0f:cc:84:fa:1b: 14:06:e8:81:a4:b6:1a:20:4b:2f:7a:8d:f6:10:3f: 11:63:e0:36:92:cc:30:fc:d8:49:07:23:e6:50:96: 65:06:8a:ae:e6:78:6b:06:63:d0:32:ac:cd:b9:17: 08:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:64:65:67:04:13:4A:19:4B:3B:A8:A4:E3:EC:7D:D5:81:65:D4:C6 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:02:a6:3c:90:c0:a3:49:b9:c3:40:cd:8c:fe:02:e1:11:83: 6a:83:97:1e:1a:ac:2f:8d:c8:50:41:df:81:65:76:19:c7:60: 3b:97:e0:52:e9:0c:34:b2:c1:f0:2a:75:31:9c:fc:7f:3a:c7: 2c:66:2a:6b:6a:27:70:08:19:9f:e0:66:c8:d2:7a:01:46:ca: e7:75:49:ec:92:5d:de:28:7c:2c:e2:32:e6:d0:c0:63:f5:20: 0f:1b:7a:4b:82:53:43:36:34:a2:fe:05:48:50:7d:2b:57:72: 08:2b:07:20:ab:61:90:03:14:d0:eb:81:49:3a:90:fd:e2:49: dc:6b:f5:53:8c:ae:39:0b:27:15:0e:6b:f7:1f:24:11:1e:54: 17:53:37:b2:89:d8:50:05:e9:49:56:30:0d:b0:f4:35:26:03: 03:02:21:a7:c1:91:67:c0:d8:d0:f7:3e:2a:b6:ec:9d:6a:b4: d8:48:24:d5:6d:82:4a:34:da:5b:89:8c:85:3e:c8:3b:c0:a4: e0:5c:1b:75:e6:1f:44:15:97:6a:1e:c9:91:2d:59:fc:e6:8d: 71:99:09:8c:94:b3:5a:ae:0e:c7:15:60:3b:9d:04:85:03:84: 3a:73:88:1d:19:b5:25:ba:54:2a:1f:32:3f:4f:ed:83:70:fc: 3e:ec:46:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUxMDE4MTkyMzU4WhcNMjUxMDI1MTkyMzU4WjAYMRYwFAYD VQQDEw02OGYzZTk0Zi0xMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmGUVPpmtZV91uSIwcXylULr/wBDw+HFk0ymSqxnnpmPi5WgZwGUcJ73M9eW lg6pt+YTqYV/FXm0opIx52+0Pa0oe7QUTjMMe4zTX8elJl4LDVjJvZCT3hruuFL0 P2cR140aqHvj4pxpJbsZTD2wPUO4qRav9DVV3CIuDrVozPxfU7T+iPemPz16W6En rLozyQECe3/+9psscSMTAoCBTt2fAifeHTKclyVryRUMH36VZRkf0p33sQE8OCfY vAP9lmCStGUXD0idm+ZcD8yE+hsUBuiBpLYaIEsveo32ED8RY+A2ksww/NhJByPm UJZlBoqu5nhrBmPQMqzNuRcIpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZkZWcE E0oZSzuopOPsfdWBZdTGMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrAqY8kMCjSbnDQM2M/gLhEYNqg5ceGqwvjchQQd+BZXYZx2A7l+BS 6Qw0ssHwKnUxnPx/OscsZipraidwCBmf4GbI0noBRsrndUnskl3eKHws4jLm0MBj 9SAPG3pLglNDNjSi/gVIUH0rV3IIKwcgq2GQAxTQ64FJOpD94knca/VTjK45CycV Dmv3HyQRHlQXUzeyidhQBelJVjANsPQ1JgMDAiGnwZFnwNjQ9z4qtuydarTYSCTV bYJKNNpbiYyFPsg7wKTgXBt15h9EFZdqHsmRLVn85o1xmQmMlLNarg7HFWA7nQSF A4Q6c4gdGbUlulQqHzI/T+2DcPw+7EYh -----END CERTIFICATE-----Generated at Mon Oct 20 06:53:03 2025 by rpki-client