$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: EvGpFChNT86xBVTw79vmBSPA3EkyhtRFBDwhFxRjlAE= Subject key identifier: 64:17:45:BE:A4:AB:2C:48:99:05:FA:9B:31:9D:C9:AE:F1:CD:9D:B9 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34E1 Signing time: Sun 02 Nov 2025 14:25:27 +0000 Manifest this update: Sun 02 Nov 2025 14:25:26 +0000 Manifest next update: Sun 09 Nov 2025 14:25:26 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: ifxwhqdqItKc7T09gEl48CSKhqvLy0QIn8hlCokXsLw=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Nov 2 14:25:26 2025 GMT Not After : Nov 9 14:25:26 2025 GMT Subject: CN=690769d7-1878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:66:a4:1c:78:82:c0:d1:29:29:a9:1e:44:c9: 2c:dc:e5:b7:c3:16:50:82:a0:24:b5:42:ae:17:0a: 26:56:50:a8:3b:40:b1:41:de:28:d2:e0:9f:82:87: f4:7d:b9:93:e9:37:72:04:3f:3b:b7:67:2e:bf:39: 87:53:bd:bf:89:8f:36:e0:df:00:27:cf:55:80:07: 1d:02:ed:4c:40:09:b2:d5:19:38:10:ce:7f:96:90: 23:dc:c4:72:25:5e:44:17:e6:02:0e:3f:ed:cd:91: e5:66:54:6c:7b:33:9f:61:e6:7f:3b:c0:28:0e:1c: 9a:88:d8:69:4d:1b:58:1a:2d:21:e1:8f:e7:2b:93: 87:74:77:72:4d:4a:e5:59:89:e4:d5:5a:5c:28:25: ef:65:ae:e9:7d:90:bc:45:08:12:c0:7a:a7:e4:f2: 26:c2:46:18:db:5c:e2:8e:45:e1:fa:dc:8b:64:e3: 6d:92:d3:22:d6:f4:b5:f4:a4:0b:59:20:01:ba:03: e0:73:cf:66:65:4b:c6:fa:de:7c:4b:e1:aa:20:1b: b5:9e:ea:dd:43:64:e0:1b:99:4a:58:49:5e:98:84: 64:aa:25:4b:22:12:d7:05:be:ad:73:af:83:f4:4b: 70:05:df:27:54:ce:0c:28:70:39:ea:5a:b0:db:1c: 17:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:17:45:BE:A4:AB:2C:48:99:05:FA:9B:31:9D:C9:AE:F1:CD:9D:B9 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a8:eb:94:c7:97:7d:cb:77:ba:6e:b1:c4:0d:94:4a:c2:1f: 1c:df:c8:00:3f:f2:cf:22:0f:13:b4:8a:d9:5b:2c:31:4f:51: b3:3c:a2:49:4f:1a:1f:7c:ea:92:ed:b1:3a:21:51:c4:2c:16: 62:83:19:0c:30:0e:89:2a:7c:25:f7:bc:6f:64:6a:59:c4:c0: e5:4e:5d:6f:4d:75:f9:67:db:fe:97:4f:8d:f6:18:7d:55:8e: ef:f9:4a:39:57:2b:27:b5:d5:3c:9b:5d:2c:b7:c2:89:f2:dc: b1:cb:ce:39:13:4f:d9:91:f8:ee:ea:0f:a3:e1:65:80:53:09: 3c:e0:4f:39:11:f5:b2:2d:e2:4c:32:ea:73:73:27:25:19:e3: 02:b0:ef:09:51:b6:c7:d7:62:c4:e6:b0:3d:66:9a:c1:48:14: 89:27:a5:13:6e:a5:a0:0c:90:4f:4e:1d:4f:6f:22:a6:e7:e1: 24:aa:e5:41:25:ee:05:24:bc:93:b7:82:b4:28:35:f6:60:06: 6a:ef:3e:db:12:34:b4:a7:8b:28:98:a8:4c:09:3f:18:06:8d: 5b:7d:6a:9d:da:31:f1:82:be:aa:d8:f0:ca:de:0a:33:2d:f2: be:5e:db:47:e5:45:4d:69:b3:55:40:a7:c6:70:fa:a1:0e:2c: 12:eb:1e:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUxMTAyMTQyNTI2WhcNMjUxMTA5MTQyNTI2WjAYMRYwFAYD VQQDEw02OTA3NjlkNy0xODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2makHHiCwNEpKakeRMks3OW3wxZQgqAktUKuFwomVlCoO0CxQd4o0uCfgof0 fbmT6TdyBD87t2cuvzmHU72/iY824N8AJ89VgAcdAu1MQAmy1Rk4EM5/lpAj3MRy JV5EF+YCDj/tzZHlZlRsezOfYeZ/O8AoDhyaiNhpTRtYGi0h4Y/nK5OHdHdyTUrl WYnk1VpcKCXvZa7pfZC8RQgSwHqn5PImwkYY21zijkXh+tyLZONtktMi1vS19KQL WSABugPgc89mZUvG+t58S+GqIBu1nurdQ2TgG5lKWElemIRkqiVLIhLXBb6tc6+D 9EtwBd8nVM4MKHA56lqw2xwXCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQXRb6k qyxImQX6mzGdya7xzZ25MB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLqOuUx5d9y3e6brHEDZRKwh8c38gAP/LPIg8TtIrZWywxT1GzPKJJ TxoffOqS7bE6IVHELBZigxkMMA6JKnwl97xvZGpZxMDlTl1vTXX5Z9v+l0+N9hh9 VY7v+Uo5VysntdU8m10st8KJ8tyxy845E0/Zkfju6g+j4WWAUwk84E85EfWyLeJM MupzcyclGeMCsO8JUbbH12LE5rA9ZprBSBSJJ6UTbqWgDJBPTh1PbyKm5+EkquVB Je4FJLyTt4K0KDX2YAZq7z7bEjS0p4somKhMCT8YBo1bfWqd2jHxgr6q2PDK3goz LfK+XttH5UVNabNVQKfGcPqhDiwS6x6X -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:12 2025 by rpki-client