$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: MzEyzfKNS6SEjvoQ5S36ttJKBeSoocOkVJg14M9nGJk= Subject key identifier: 80:28:29:C9:FD:0B:06:EE:AF:17:7B:8F:0D:A3:D0:07:AF:68:4F:C3 Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 0590 Signing time: Tue 04 Nov 2025 23:16:31 +0000 Manifest this update: Tue 04 Nov 2025 23:16:31 +0000 Manifest next update: Tue 11 Nov 2025 23:16:31 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: g2XFbgR7Qt6D+z9VWkmCu0yjvDo3eT/DD1h6FsDL0Xc=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: R8hfJ5cUDeHXSHt31Yaxeq/Vdh/2fKfS7Ifq3y/hy0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Nov 4 23:16:31 2025 GMT Not After : Nov 11 23:16:31 2025 GMT Subject: CN=690a894f-5f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2c:20:c6:33:bd:2c:fe:06:46:47:04:f8:fb: 6c:05:13:bf:39:94:45:dd:ba:74:79:90:c1:27:08: b8:b2:66:5f:17:d0:ed:ad:d0:95:64:e4:36:43:54: 35:fa:26:15:a8:66:72:0c:cf:16:4b:54:c7:02:a9: e1:4e:83:c9:08:d8:49:cb:f9:58:55:cd:24:c3:bc: ed:af:15:e3:94:1e:e8:a7:98:50:92:21:b0:49:ba: ef:5b:ac:32:8b:ce:00:09:75:f7:9a:f2:57:45:85: 7e:91:b9:f3:55:b1:76:d7:c4:c7:4f:82:a5:27:68: 67:fb:e4:66:da:10:00:dd:89:96:11:d5:72:c4:f2: 75:d4:a8:c0:cc:3c:6e:9b:08:0b:f8:b5:e3:03:ff: a2:2c:b1:d4:ed:e6:87:78:fd:3a:4a:5d:7d:7b:1c: b2:c5:cd:75:b8:02:80:ad:f3:2a:f8:1c:01:bb:c0: 3e:57:04:b2:2f:9c:88:18:4f:7f:1c:9b:29:73:35: 38:ec:0a:e8:b7:04:62:ff:04:15:d8:79:c0:61:3f: 4a:94:ec:80:ba:bf:4e:2c:51:ea:d9:7d:a8:78:7a: a1:61:83:c5:a3:90:ee:d0:13:65:4f:89:48:02:fa: c3:9a:01:dc:33:68:2a:4c:16:3d:63:f7:cf:4c:b8: 64:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:28:29:C9:FD:0B:06:EE:AF:17:7B:8F:0D:A3:D0:07:AF:68:4F:C3 X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:95:7f:97:9b:93:b0:2a:e4:bb:19:e9:33:60:4b:c4:ca:f6: 88:64:0f:a9:63:cb:ee:64:5b:e9:5f:2f:f9:49:c0:09:57:9e: 45:7f:9c:e2:c6:b5:cc:76:e6:43:f0:9d:30:1d:c4:c9:68:1e: 36:50:8b:b9:ce:f6:7d:a6:03:52:76:b5:1d:97:55:95:9f:61: 11:9f:8b:db:ae:93:23:78:da:80:8c:ae:11:e0:48:58:04:50: 4f:0e:e2:a2:f1:b3:02:6e:13:e5:fa:a0:9a:d8:19:b8:eb:82: 9d:8e:f9:42:de:6c:cd:36:ac:a5:c8:5d:90:7c:44:ce:fb:70: 39:15:c6:ac:34:0d:58:91:d9:9b:9c:22:ba:36:b3:33:f9:54: e7:c8:82:20:41:af:6b:47:86:3b:54:e8:eb:64:c3:8c:2f:93: 5a:58:88:49:9c:34:13:c8:ca:8d:c9:96:c8:50:8d:bc:a4:3f: 9c:f9:91:71:6f:3c:b4:f8:f6:48:02:1a:62:b6:7c:2a:ae:e4: 63:a9:c9:6a:00:a0:ad:75:ad:f2:46:da:8c:02:90:d5:ca:29: 75:75:39:e4:69:a1:c7:db:b7:f7:9d:bd:84:11:18:f1:3d:6f: 47:3f:4e:54:2f:3f:71:77:85:20:2e:5f:76:5f:ce:0b:8b:2d: ed:a4:1b:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjUxMTA0MjMxNjMxWhcNMjUxMTExMjMxNjMxWjAYMRYwFAYD VQQDEw02OTBhODk0Zi01ZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoywgxjO9LP4GRkcE+PtsBRO/OZRF3bp0eZDBJwi4smZfF9DtrdCVZOQ2Q1Q1 +iYVqGZyDM8WS1THAqnhToPJCNhJy/lYVc0kw7ztrxXjlB7op5hQkiGwSbrvW6wy i84ACXX3mvJXRYV+kbnzVbF218THT4KlJ2hn++Rm2hAA3YmWEdVyxPJ11KjAzDxu mwgL+LXjA/+iLLHU7eaHeP06Sl19exyyxc11uAKArfMq+BwBu8A+VwSyL5yIGE9/ HJspczU47ArotwRi/wQV2HnAYT9KlOyAur9OLFHq2X2oeHqhYYPFo5Du0BNlT4lI AvrDmgHcM2gqTBY9Y/fPTLhkUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAoKcn9 Cwburxd7jw2j0AevaE/DMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAilX+Xm5OwKuS7GekzYEvEyvaIZA+pY8vuZFvpXy/5ScAJV55Ff5zi xrXMduZD8J0wHcTJaB42UIu5zvZ9pgNSdrUdl1WVn2ERn4vbrpMjeNqAjK4R4EhY BFBPDuKi8bMCbhPl+qCa2Bm464KdjvlC3mzNNqylyF2QfETO+3A5FcasNA1Ykdmb nCK6NrMz+VTnyIIgQa9rR4Y7VOjrZMOML5NaWIhJnDQTyMqNyZbIUI28pD+c+ZFx bzy0+PZIAhpitnwqruRjqclqAKCtda3yRtqMApDVyil1dTnkaaHH27f3nb2EERjx PW9HP05ULz9xd4UgLl92X84Liy3tpBs9 -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:06 2025 by rpki-client