$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: yAYWpEo7tG2Y5cUhDVVm20iG5IW+saS8VkiVb092H34= Subject key identifier: B6:B5:D0:95:57:48:1F:81:69:B3:83:3B:99:FE:76:D2:FD:28:01:02 Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 04A5 Signing time: Wed 05 Nov 2025 00:03:07 +0000 Manifest this update: Wed 05 Nov 2025 00:03:07 +0000 Manifest next update: Wed 12 Nov 2025 00:03:07 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: rFgdzSB7Icjc4kF6ecVwtH1Fncxn/mhwYxeiRtpyps8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Nov 5 00:03:07 2025 GMT Not After : Nov 12 00:03:07 2025 GMT Subject: CN=690a943b-1930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:cb:49:8f:e8:29:57:8b:e6:03:45:50:47:a8: 46:f8:1c:84:e1:62:ef:c9:5b:9b:13:ea:db:a6:a4: 13:67:f3:6d:50:9e:e5:64:b5:dd:97:e4:9e:b3:ed: 53:6b:09:cf:07:7f:70:3e:9a:79:6c:05:87:ed:88: 18:0f:41:b1:c4:9c:66:28:59:b2:51:fd:ae:09:58: bb:ba:b9:bc:4f:d6:7c:65:71:81:80:a5:ef:b4:46: 31:cc:f3:35:8d:f7:04:4e:fa:c7:79:43:81:13:4c: 06:18:c7:bf:e1:c0:05:41:92:4c:fb:ae:70:8e:7f: d6:52:90:27:26:1d:86:ed:40:8d:4b:f5:de:5a:e6: ee:70:83:d4:1c:14:e8:7e:0a:38:5d:0b:27:6b:62: 81:b1:57:f7:ab:36:b6:b5:8d:1e:9d:fa:01:7b:15: 9e:d2:4a:15:b9:fe:44:f6:ae:8f:dd:ea:3a:53:0f: 8d:8a:b6:09:95:af:20:e9:62:9b:24:d8:f8:5b:81: 3a:29:69:5c:4c:cc:70:0d:61:c9:84:db:93:68:cb: a0:83:34:bf:f7:d4:fd:30:a5:3b:29:46:a2:33:9b: eb:40:92:1c:50:25:d3:48:87:61:96:cd:a6:f1:54: eb:03:85:b6:7c:ac:28:a9:96:04:45:2b:f8:dd:a0: ec:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B5:D0:95:57:48:1F:81:69:B3:83:3B:99:FE:76:D2:FD:28:01:02 X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:16:e2:71:8c:6d:b5:e2:d8:dd:c3:3a:36:2e:bd:ba:94:f3: c4:ea:88:42:79:0b:43:50:5d:53:47:16:85:b7:9d:00:ec:0c: 51:8d:20:ad:6c:37:1c:28:01:cd:5d:db:e8:d8:8c:59:85:f3: ad:2c:37:b2:f8:84:a8:b3:2c:1e:2c:97:78:09:a7:d3:1a:65: c3:a2:47:99:8e:0d:9d:b2:dc:0a:be:83:0c:10:28:51:94:6e: 8f:78:f2:54:af:8a:f1:1f:70:e7:ab:7c:c2:d3:22:7d:ec:b2: 13:ca:80:5d:8e:19:ce:12:ea:78:1b:6e:4a:a6:d8:28:99:32: d2:3d:c5:00:b7:75:8f:3d:44:1a:4b:19:58:c0:ef:a1:95:98: ff:1a:75:e5:bf:57:6d:9a:60:c2:49:b3:66:ce:39:2f:f2:12: 12:fe:b5:d2:99:00:21:42:9d:c1:4a:f0:b1:c5:be:db:94:45: 81:ef:0d:e4:21:cf:63:29:fb:ca:5c:74:00:85:88:23:bf:79: 70:c1:ec:85:ce:71:3f:08:d9:d6:36:0c:e8:52:20:df:b7:12: 8a:f1:fd:ce:9f:1a:b2:45:71:db:c6:a9:f7:4a:e7:41:2d:9b: 51:97:2a:ba:c8:21:d9:53:1b:cf:56:6c:6b:ae:25:21:92:67: 0c:3a:8b:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUxMTA1MDAwMzA3WhcNMjUxMTEyMDAwMzA3WjAYMRYwFAYD VQQDEw02OTBhOTQzYi0xOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5stJj+gpV4vmA0VQR6hG+ByE4WLvyVubE+rbpqQTZ/NtUJ7lZLXdl+Ses+1T awnPB39wPpp5bAWH7YgYD0GxxJxmKFmyUf2uCVi7urm8T9Z8ZXGBgKXvtEYxzPM1 jfcETvrHeUOBE0wGGMe/4cAFQZJM+65wjn/WUpAnJh2G7UCNS/XeWubucIPUHBTo fgo4XQsna2KBsVf3qza2tY0enfoBexWe0koVuf5E9q6P3eo6Uw+NirYJla8g6WKb JNj4W4E6KWlcTMxwDWHJhNuTaMuggzS/99T9MKU7KUaiM5vrQJIcUCXTSIdhls2m 8VTrA4W2fKwoqZYERSv43aDsSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa10JVX SB+BabODO5n+dtL9KAECMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7FuJxjG214tjdwzo2Lr26lPPE6ohCeQtDUF1TRxaFt50A7AxRjSCt bDccKAHNXdvo2IxZhfOtLDey+ISosyweLJd4CafTGmXDokeZjg2dstwKvoMMEChR lG6PePJUr4rxH3Dnq3zC0yJ97LITyoBdjhnOEup4G25KptgomTLSPcUAt3WPPUQa SxlYwO+hlZj/GnXlv1dtmmDCSbNmzjkv8hIS/rXSmQAhQp3BSvCxxb7blEWB7w3k Ic9jKfvKXHQAhYgjv3lwweyFznE/CNnWNgzoUiDftxKK8f3OnxqyRXHbxqn3SudB LZtRlyq6yCHZUxvPVmxrriUhkmcMOosD -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:20 2025 by rpki-client