$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: hH0vb8dEK8HCBGVSWSKn2e7UqOJpjfE9KwOY32NKGTo= Subject key identifier: C7:1B:27:1A:C9:D6:6B:7B:F3:93:8D:6F:DB:06:4D:4C:29:35:80:33 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07B8 Signing time: Tue 04 Nov 2025 21:25:58 +0000 Manifest this update: Tue 04 Nov 2025 21:25:57 +0000 Manifest next update: Tue 11 Nov 2025 21:25:57 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: JLU0gRoMcaC6ElQLgJHgLdjfAj9oqCmxsVSBKtuKpcE=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1984 (0x7c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Nov 4 21:25:57 2025 GMT Not After : Nov 11 21:25:57 2025 GMT Subject: CN=690a6f65-1ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:4f:50:05:71:f9:a6:e2:e6:ac:63:7f:7d: 41:ba:7e:52:6e:94:9d:30:4f:ca:33:c9:f3:30:37: ef:6e:8e:59:6f:1e:87:18:eb:02:79:54:9f:02:97: f1:4a:43:03:ce:9d:26:bb:bf:fa:f2:1b:b0:87:47: b5:44:9a:ed:ac:6c:4b:41:eb:e2:79:66:5e:5c:de: 8b:12:87:27:9c:8f:05:9b:22:46:cb:95:c3:9e:07: b5:f8:0f:72:af:37:2b:4a:e8:f4:c6:5f:80:90:63: af:01:73:4b:10:dd:53:7c:83:37:ee:72:a9:76:0c: ac:1a:d1:73:e1:ac:de:93:a8:74:51:24:7c:38:d0: 90:28:b9:be:3f:e0:f5:47:e8:69:88:ad:1b:01:95: 11:c0:c5:ff:10:8d:e2:a4:2d:57:f0:b7:a3:66:ae: 6d:f3:e6:ef:94:f4:d7:41:d2:46:aa:76:c6:a3:94: b5:bc:8e:04:6d:0c:5b:35:a2:54:60:d9:82:2d:6f: ee:ad:ad:6a:be:61:9a:4b:8b:eb:90:cc:40:c1:10: b8:24:b9:08:ca:ce:40:60:27:52:ed:3f:f8:03:7c: ec:10:08:23:b5:65:bf:49:dd:8d:77:a3:84:40:19: a8:ac:88:c6:60:2e:77:58:0a:38:15:69:63:20:0c: d0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:1B:27:1A:C9:D6:6B:7B:F3:93:8D:6F:DB:06:4D:4C:29:35:80:33 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:4f:fb:ff:4b:24:aa:64:3e:1a:07:66:0e:b4:33:42:dc:24: de:b4:c1:4c:04:ab:ba:a1:13:2e:20:0b:23:e7:7b:51:2d:94: fe:e5:e8:49:fb:71:eb:f5:6d:17:ea:8c:cd:51:79:e4:56:ed: 64:0f:ff:fa:75:1b:b7:db:ce:30:db:72:a6:44:f6:53:30:e5: 55:ef:4f:c2:07:e9:4c:70:4f:aa:55:dd:45:d6:47:c3:3f:ae: 2f:fc:b3:3d:6a:37:a0:21:9f:f4:3d:39:33:df:e6:a5:a0:79: 93:c1:15:fc:79:d4:37:09:19:5c:b8:b4:7e:ea:41:1e:a5:28: 60:44:d6:8f:c8:eb:49:80:e9:d2:19:01:ff:ee:02:3b:0a:f0: 50:a7:8c:90:de:30:5e:3d:f3:ba:0b:e3:bd:98:c0:03:b1:bd: 44:44:b5:c7:d5:27:92:4c:30:96:22:a7:4a:02:35:3c:5d:86: 52:c2:a4:b8:f7:a5:7f:f6:6d:4d:62:3b:88:39:9a:ee:a2:3a: 8b:9a:52:66:c5:24:47:40:52:3a:ee:05:78:3d:cc:83:c4:e3: 46:a6:17:a4:55:85:78:8d:ff:45:32:8a:16:5c:84:2c:35:73: 89:2f:24:4d:54:97:fa:9d:65:f6:3a:c9:49:63:8b:50:95:6a: ca:29:1c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUxMTA0MjEyNTU3WhcNMjUxMTExMjEyNTU3WjAYMRYwFAYD VQQDEw02OTBhNmY2NS0xY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4NPUAVx+abi5qxjf31Bun5SbpSdME/KM8nzMDfvbo5Zbx6HGOsCeVSfApfx SkMDzp0mu7/68huwh0e1RJrtrGxLQevieWZeXN6LEocnnI8FmyJGy5XDnge1+A9y rzcrSuj0xl+AkGOvAXNLEN1TfIM37nKpdgysGtFz4azek6h0USR8ONCQKLm+P+D1 R+hpiK0bAZURwMX/EI3ipC1X8LejZq5t8+bvlPTXQdJGqnbGo5S1vI4EbQxbNaJU YNmCLW/ura1qvmGaS4vrkMxAwRC4JLkIys5AYCdS7T/4A3zsEAgjtWW/Sd2Nd6OE QBmorIjGYC53WAo4FWljIAzQBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcbJxrJ 1mt785ONb9sGTUwpNYAzMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIT/v/SySqZD4aB2YOtDNC3CTetMFMBKu6oRMuIAsj53tRLZT+5ehJ +3Hr9W0X6ozNUXnkVu1kD//6dRu3284w23KmRPZTMOVV70/CB+lMcE+qVd1F1kfD P64v/LM9ajegIZ/0PTkz3+aloHmTwRX8edQ3CRlcuLR+6kEepShgRNaPyOtJgOnS GQH/7gI7CvBQp4yQ3jBePfO6C+O9mMADsb1ERLXH1SeSTDCWIqdKAjU8XYZSwqS4 96V/9m1NYjuIOZruojqLmlJmxSRHQFI67gV4PcyDxONGphekVYV4jf9FMooWXIQs NXOJLyRNVJf6nWX2OslJY4tQlWrKKRxG -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:11 2025 by rpki-client