$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: TuPq5d6NA9YBkcDjJ1KFvbtjOIE2/WS4h5XdzRA76AU= Subject key identifier: 12:25:1D:7A:97:26:67:6C:09:49:4A:3B:E0:7E:8C:D8:81:0E:C2:66 Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 0583 Signing time: Sun 02 Nov 2025 23:14:10 +0000 Manifest this update: Sun 02 Nov 2025 23:14:09 +0000 Manifest next update: Sun 09 Nov 2025 23:14:09 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: fldmvpYSIe7hNd+l17hpU6WV1qnJ3zbEhPdBjjzs3kg=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: CnaozKo0w+oDNLtVLnsapD7Ti4dTXp4OsMG95HJSOiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB, serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Nov 2 23:14:09 2025 GMT Not After : Nov 9 23:14:09 2025 GMT Subject: CN=6907e5c1-c0d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:34:5e:b4:a5:d0:da:2b:4e:d9:bd:80:44: 78:fe:7f:8c:0e:79:04:8a:8e:03:32:3b:5e:e9:5a: bd:97:49:ab:71:c2:bf:31:f1:a6:9c:d8:92:3c:35: bd:02:05:61:0e:72:3c:53:bb:44:ae:08:0b:75:7d: 34:4a:5e:43:54:8a:fe:f9:d4:a3:1c:6e:c9:d0:4d: 51:de:5d:1c:09:ab:f8:81:84:97:6b:15:57:bb:d2: 92:21:24:a5:73:39:b4:ce:d7:89:a1:83:91:c8:24: b2:e8:a9:cd:bc:16:2c:6c:61:92:90:49:96:80:ca: e9:57:a1:82:17:68:90:04:f5:71:e3:d5:7b:1c:6a: 92:1c:bf:a2:68:94:9f:95:a4:ab:53:ad:de:b2:6e: 5d:b8:49:bf:64:07:13:60:69:83:2c:a2:f2:11:11: f8:ce:dc:0d:84:ee:16:bb:6c:ae:ea:5b:66:a0:2e: 4c:f6:51:f1:2f:94:f7:f4:97:cf:ee:25:53:99:a7: 46:38:18:ca:ba:eb:c3:a6:e5:59:4d:de:c8:13:3b: 3a:f1:9a:a7:b8:a1:d5:72:ca:f4:29:7c:01:ad:df: 4f:a4:a9:9a:67:8d:03:b4:f9:c0:3c:33:18:b2:ba: a0:22:74:ab:2e:7c:b0:6d:88:71:65:82:f9:12:1c: 3f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:25:1D:7A:97:26:67:6C:09:49:4A:3B:E0:7E:8C:D8:81:0E:C2:66 X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:44:01:e2:cf:b3:cb:2c:c7:70:6b:26:1d:a7:9f:64:19:02: 83:e6:af:51:11:1b:cf:f0:bc:89:65:1c:70:f3:70:39:e1:39: 70:9b:65:1d:78:69:26:a7:d3:66:59:a0:38:d7:b3:c6:85:83: ba:06:59:8d:d8:15:a9:cf:6c:d4:54:f0:3c:2b:c1:97:5b:eb: 66:13:3d:26:34:81:45:12:63:78:2d:f4:1a:20:2f:b7:1d:b4: 48:40:94:50:b3:e9:4e:ad:dd:ec:e4:73:9e:f7:c6:31:06:16: 83:47:ad:c7:e0:61:c5:c0:fb:8b:4a:b3:e4:78:f1:f9:0a:fe: 57:1a:78:7c:cb:76:ef:ae:86:50:81:a6:e4:1c:cb:c7:cf:16: 1f:45:13:58:cd:0c:6d:ab:d9:8c:58:a9:f4:e3:60:12:55:97: 9f:0f:f7:06:61:a4:b0:b9:3e:af:ae:c5:71:7e:52:56:16:b3: 02:a8:51:f6:d2:77:00:73:f6:34:5c:1c:b9:45:3d:17:1c:17: 78:5e:cf:0c:13:84:f6:0e:6a:ae:6f:83:a5:c0:82:d3:de:d7: 5d:bb:ff:0b:38:00:14:16:e6:d3:30:82:a6:da:0b:06:2b:64: 39:36:35:30:4b:53:93:97:6f:b6:bb:78:e6:7c:c7:62:43:a3: 65:6c:3e:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjUxMTAyMjMxNDA5WhcNMjUxMTA5MjMxNDA5WjAYMRYwFAYD VQQDEw02OTA3ZTVjMS1jMGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOo0XrSl0NorTtm9gER4/n+MDnkEio4DMjte6Vq9l0mrccK/MfGmnNiSPDW9 AgVhDnI8U7tErggLdX00Sl5DVIr++dSjHG7J0E1R3l0cCav4gYSXaxVXu9KSISSl czm0zteJoYORyCSy6KnNvBYsbGGSkEmWgMrpV6GCF2iQBPVx49V7HGqSHL+iaJSf laSrU63esm5duEm/ZAcTYGmDLKLyERH4ztwNhO4Wu2yu6ltmoC5M9lHxL5T39JfP 7iVTmadGOBjKuuvDpuVZTd7IEzs68ZqnuKHVcsr0KXwBrd9PpKmaZ40DtPnAPDMY srqgInSrLnywbYhxZYL5Ehw/RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIlHXqX JmdsCUlKO+B+jNiBDsJmMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDRAHiz7PLLMdwayYdp59kGQKD5q9RERvP8LyJZRxw83A54Tlwm2Ud eGkmp9NmWaA417PGhYO6BlmN2BWpz2zUVPA8K8GXW+tmEz0mNIFFEmN4LfQaIC+3 HbRIQJRQs+lOrd3s5HOe98YxBhaDR63H4GHFwPuLSrPkePH5Cv5XGnh8y3bvroZQ gabkHMvHzxYfRRNYzQxtq9mMWKn042ASVZefD/cGYaSwuT6vrsVxflJWFrMCqFH2 0ncAc/Y0XBy5RT0XHBd4Xs8ME4T2Dmqub4OlwILT3tddu/8LOAAUFubTMIKm2gsG K2Q5NjUwS1OTl2+2u3jmfMdiQ6NlbD4x -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:36 2025 by rpki-client