$ rpki-client -vvf rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft File: pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft (raw, json) Hash identifier: MgHuBWveBE/U1QERuMwIt36rjvXk/fK31J3wNMgkD6g= Subject key identifier: C7:41:EC:9E:BB:95:73:D8:F7:E2:C0:70:EE:B1:A8:10:0D:E4:B8:75 Authority key identifier: A4:74:F0:8C:7F:3F:48:8D:5B:90:E1:29:9A:34:9F:F2:51:DD:E1:1F Certificate issuer: /CN=A913D0CA/serialNumber=A474F08C7F3F488D5B90E1299A349FF251DDE11F Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft Manifest number: 4D Signing time: Wed 05 Nov 2025 07:29:48 +0000 Manifest this update: Wed 05 Nov 2025 07:29:48 +0000 Manifest next update: Wed 12 Nov 2025 07:29:48 +0000 Files and hashes: 1: pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl (hash: w/YFeNyadWhZBpAl66HM/f0f8E095W9UQdkUXjL5Z8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D0CA, serialNumber=A474F08C7F3F488D5B90E1299A349FF251DDE11F Validity Not Before: Nov 5 07:29:48 2025 GMT Not After : Nov 12 07:29:48 2025 GMT Subject: CN=690afcec-08a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:09:e2:a6:32:29:f0:8e:f3:eb:72:b8:8a: 65:1a:7c:11:cd:ca:92:c3:11:3b:c4:60:27:a5:1b: dd:7d:a9:25:5c:1f:fb:20:32:10:cf:72:9d:ed:a2: 0f:73:4b:93:b9:cd:8a:b8:be:c9:36:d7:f5:aa:db: 4d:c5:df:d6:4d:e2:ab:06:20:44:b0:50:04:a1:db: 02:a1:d0:50:ba:ad:ec:10:bd:e4:1b:de:99:b5:2f: c2:8d:29:96:32:9b:6f:fa:36:7a:43:1f:36:02:26: 66:0f:f3:c0:d8:a7:7d:91:ba:3e:15:d5:69:7c:d7: 6d:5a:1a:85:6f:cf:68:9c:56:f2:a8:4b:9f:ad:fe: 6f:ad:0e:2a:c0:42:e0:2e:d4:60:80:11:59:40:6a: b2:80:13:50:af:85:fb:23:50:b1:2c:d9:58:6c:25: 2c:81:14:ec:fa:65:1d:f9:60:ad:aa:be:da:2c:63: a3:93:80:89:ad:37:8e:54:36:8d:ae:58:60:33:c4: e2:2b:76:5d:ad:58:5e:ae:5b:00:03:a1:e2:dd:8c: 98:32:ae:72:74:aa:ef:13:50:d6:bd:93:1c:47:15: 7e:5e:d3:db:c1:18:f1:9e:32:d1:db:da:31:bf:fc: cf:69:c6:88:42:75:aa:aa:58:ee:42:1d:27:b5:74: 20:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:41:EC:9E:BB:95:73:D8:F7:E2:C0:70:EE:B1:A8:10:0D:E4:B8:75 X509v3 Authority Key Identifier: keyid:A4:74:F0:8C:7F:3F:48:8D:5B:90:E1:29:9A:34:9F:F2:51:DD:E1:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b1:7e:cd:25:56:c7:21:bb:f5:ad:64:f8:0e:aa:77:43:67: 73:71:7d:66:62:b0:53:0f:01:7b:b2:31:92:24:35:e9:3a:94: c7:6d:2c:a8:d5:81:32:41:6d:d4:1b:58:de:81:b2:96:b5:3c: fd:a2:66:a8:64:48:6d:9a:ce:5a:54:4a:eb:34:22:12:25:63: 54:c5:53:b0:e2:8e:dc:e8:aa:27:fc:a3:b0:33:6f:8d:0b:67: db:f4:73:fd:a7:47:e1:bf:16:d8:92:84:cd:42:1b:37:f1:c1: 6a:f4:96:55:c1:b5:46:db:e5:c7:db:43:42:6a:d7:40:be:bd: 02:92:31:ec:94:db:54:3a:e2:a3:0d:07:cf:cb:0d:b4:47:06: ca:1e:50:41:26:0e:ae:b6:4b:22:dd:49:9d:b4:0d:a8:b0:f8: 74:1d:5a:62:1b:19:d4:4e:79:fe:9a:40:b6:4a:7d:74:e5:cb: 62:a4:95:c4:c3:04:7e:09:ee:18:38:4f:82:d9:93:4a:b7:55: 61:32:5d:cb:73:83:22:f4:d0:42:00:4c:78:89:0e:56:8a:08: e8:42:e3:c1:15:9e:75:26:0f:b9:f8:36:52:df:d1:66:f7:af: 5f:d5:4f:70:82:f2:90:f2:37:fe:9b:0b:1d:61:37:28:4a:d6: bd:33:14:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDBDQTExMC8GA1UEBRMoQTQ3NEYwOEM3RjNGNDg4RDVCOTBFMTI5OUEzNDlGRjI1 MURERTExRjAeFw0yNTExMDUwNzI5NDhaFw0yNTExMTIwNzI5NDhaMBgxFjAUBgNV BAMTDTY5MGFmY2VjLTA4YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTEQnipjIp8I7z63K4imUafBHNypLDETvEYCelG919qSVcH/sgMhDPcp3tog9z S5O5zYq4vsk21/Wq203F39ZN4qsGIESwUASh2wKh0FC6rewQveQb3pm1L8KNKZYy m2/6NnpDHzYCJmYP88DYp32Ruj4V1Wl8121aGoVvz2icVvKoS5+t/m+tDirAQuAu 1GCAEVlAarKAE1CvhfsjULEs2VhsJSyBFOz6ZR35YK2qvtosY6OTgImtN45UNo2u WGAzxOIrdl2tWF6uWwADoeLdjJgyrnJ0qu8TUNa9kxxHFX5e09vBGPGeMtHb2jG/ /M9pxohCdaqqWO5CHSe1dCABAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx0HsnruV c9j34sBw7rGoEA3kuHUwHwYDVR0jBBgwFoAUpHTwjH8/SI1bkOEpmjSf8lHd4R8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMENBL0I3ODg3M0EyNDVC ODExRjA4NEYzNkM1RkM0RjlBRTAyL3BIVHdqSDhfU0kxYmtPRXBtalNmOGxIZDRS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcEhUd2pIOF9TSTFia09FcG1qU2Y4bEhkNFI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MENBL0I3ODg3M0EyNDVCODExRjA4NEYzNkM1RkM0RjlBRTAyL3BIVHdqSDhfU0kx YmtPRXBtalNmOGxIZDRSOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFexfs0lVschu/WtZPgOqndDZ3NxfWZisFMPAXuyMZIkNek6lMdtLKjV gTJBbdQbWN6Bspa1PP2iZqhkSG2azlpUSus0IhIlY1TFU7Dijtzoqif8o7Azb40L Z9v0c/2nR+G/FtiShM1CGzfxwWr0llXBtUbb5cfbQ0Jq10C+vQKSMeyU21Q64qMN B8/LDbRHBsoeUEEmDq62SyLdSZ20Daiw+HQdWmIbGdROef6aQLZKfXTly2KklcTD BH4J7hg4T4LZk0q3VWEyXctzgyL00EIATHiJDlaKCOhC48EVnnUmD7n4NlLf0Wb3 r1/VT3CC8pDyN/6bCx1hNyhK1r0zFO8= -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:37 2025 by rpki-client