$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: v3S8WwPxHDs1UC76sXz1Qnu1Iqgpvhjce50Zcbsl5Ho= Subject key identifier: 5C:75:39:3D:05:34:8D:15:21:FF:B4:9A:6D:BD:50:69:D9:D2:DB:06 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34CF Signing time: Sun 02 Nov 2025 15:09:22 +0000 Manifest this update: Sun 02 Nov 2025 15:09:22 +0000 Manifest next update: Sun 09 Nov 2025 15:09:22 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: d7Qp5FIZYy5Wb3JmY59JfkDZltxz5Wfg4X3cNAhRdyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13522 (0x34d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Nov 2 15:09:22 2025 GMT Not After : Nov 9 15:09:22 2025 GMT Subject: CN=69077422-88d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:56:9d:48:68:78:ed:f6:5a:4f:36:da:b9:f0: 2d:b3:45:d5:57:09:1c:0c:9e:6d:35:39:7d:48:71: b8:5a:5e:8a:2e:f4:d2:da:84:bc:29:b1:4e:97:ff: d1:8c:49:6d:e2:c8:7a:72:08:6c:bd:95:fc:46:17: d4:db:94:7d:d0:ff:d1:d0:d8:c0:64:49:06:b3:b1: a9:e3:bd:71:42:97:e5:87:68:95:22:f2:d5:79:e5: 98:70:e6:e5:f8:93:85:ac:d8:dd:a0:ac:eb:85:7e: 9f:d1:c1:51:96:55:c4:5c:fb:a1:a0:32:2c:e4:d4: cd:fe:90:c7:10:65:40:e2:e9:5d:b2:63:51:fa:bd: bf:bb:85:ed:e0:f4:60:bc:c6:66:e1:1e:c6:2c:5f: ec:90:93:e5:ff:77:b7:7a:1d:cd:51:82:5b:ef:77: ba:e9:ab:82:aa:94:42:97:19:70:c0:3e:28:81:c2: ad:f0:aa:f3:53:1c:b6:23:9c:9f:d6:a8:3f:f3:84: a1:0c:b2:7e:02:25:93:13:64:3c:95:73:de:f1:71: 11:86:7e:42:5d:dc:4f:cc:ba:cc:ab:fc:6d:6f:d0: 43:be:f4:f6:e1:c1:ba:91:0d:93:f8:d5:54:ae:e8: a9:60:f0:fa:91:65:2b:f2:eb:8b:0d:3f:af:f6:38: a8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:75:39:3D:05:34:8D:15:21:FF:B4:9A:6D:BD:50:69:D9:D2:DB:06 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5b:60:7e:0c:cf:ce:34:94:11:7a:7b:c1:b8:c4:19:3e:ef: e7:69:2b:d6:bd:ce:41:59:87:2e:9c:f6:5c:14:22:51:3d:9f: b5:f9:b6:61:e3:80:ff:64:34:f9:6f:e3:39:d4:c1:32:22:df: a7:85:3c:ce:9a:cb:47:91:c8:80:aa:9c:0c:92:e3:a2:89:30: d4:72:cc:d2:62:2e:6d:43:0b:84:8b:fd:be:8e:26:0c:1a:e0: ae:2a:4c:7d:9b:a8:6b:3b:c9:a0:94:cd:01:96:96:3e:84:b4: dd:8d:14:33:40:5c:09:cd:25:6b:26:b4:d8:9c:86:ab:f2:39: 6e:b3:76:dc:20:96:fd:7d:40:be:f5:dd:ba:f8:aa:37:9f:5b: f0:90:71:e9:c1:ae:69:3f:cf:c1:4a:a2:01:98:46:b1:51:02: 91:f7:1d:eb:17:cd:3f:22:64:c2:7d:46:45:b1:34:84:d3:55: 6c:d9:96:85:b7:43:bc:38:f9:cd:b9:a2:05:fd:de:d7:d2:dd: b4:3b:16:cb:39:9e:24:0c:d2:a6:52:b1:89:e8:bb:ef:db:70: 78:85:a3:6d:5f:0a:85:a1:cb:4f:9f:00:c7:26:d3:a1:bd:24: 0b:e4:90:dc:a5:c4:36:66:b8:41:7d:e2:34:93:db:c9:6a:d5: e6:a1:d3:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUxMTAyMTUwOTIyWhcNMjUxMTA5MTUwOTIyWjAYMRYwFAYD VQQDEw02OTA3NzQyMi04OGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFadSGh47fZaTzbaufAts0XVVwkcDJ5tNTl9SHG4Wl6KLvTS2oS8KbFOl//R jElt4sh6cghsvZX8RhfU25R90P/R0NjAZEkGs7Gp471xQpflh2iVIvLVeeWYcObl +JOFrNjdoKzrhX6f0cFRllXEXPuhoDIs5NTN/pDHEGVA4uldsmNR+r2/u4Xt4PRg vMZm4R7GLF/skJPl/3e3eh3NUYJb73e66auCqpRClxlwwD4ogcKt8KrzUxy2I5yf 1qg/84ShDLJ+AiWTE2Q8lXPe8XERhn5CXdxPzLrMq/xtb9BDvvT24cG6kQ2T+NVU ruipYPD6kWUr8uuLDT+v9jiohQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx1OT0F NI0VIf+0mm29UGnZ0tsGMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwW2B+DM/ONJQRenvBuMQZPu/naSvWvc5BWYcunPZcFCJRPZ+1+bZh 44D/ZDT5b+M51MEyIt+nhTzOmstHkciAqpwMkuOiiTDUcszSYi5tQwuEi/2+jiYM GuCuKkx9m6hrO8mglM0BlpY+hLTdjRQzQFwJzSVrJrTYnIar8jlus3bcIJb9fUC+ 9d26+Ko3n1vwkHHpwa5pP8/BSqIBmEaxUQKR9x3rF80/ImTCfUZFsTSE01Vs2ZaF t0O8OPnNuaIF/d7X0t20OxbLOZ4kDNKmUrGJ6Lvv23B4haNtXwqFoctPnwDHJtOh vSQL5JDcpcQ2ZrhBfeI0k9vJatXmodMe -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:22 2025 by rpki-client