$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: XkIzWXClWV9nAA18SlfyV+sDYWyFhG5UKnzQOwysyyU= Subject key identifier: E2:2B:3B:CD:45:4B:33:EF:6C:B8:7B:27:5E:9C:CB:F5:7A:18:A3:F7 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 0572 Signing time: Sun 02 Nov 2025 23:16:59 +0000 Manifest this update: Sun 02 Nov 2025 23:16:58 +0000 Manifest next update: Sun 09 Nov 2025 23:16:58 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: iD1IVtinqiHzpQQ0GOJjQ3U5d79/9KS/Ia7Si+5BYFw=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Nov 2 23:16:58 2025 GMT Not After : Nov 9 23:16:58 2025 GMT Subject: CN=6907e66a-c358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:af:0c:93:69:c7:3d:14:c8:ac:c6:97:89: 33:1f:6d:6c:c7:ae:bb:5d:fb:71:fe:83:8b:3d:31: d2:7d:85:d4:25:38:f0:9b:7e:ea:01:dd:47:cb:42: cf:e5:de:f8:db:c8:62:9c:b4:d4:f0:1e:08:a2:98: d6:63:98:85:8f:28:a8:7f:b1:be:be:14:fa:77:0b: 59:bc:03:ef:8b:51:57:53:a8:e0:c0:6b:04:33:fb: 90:9a:38:44:6f:6a:ba:34:65:ae:9b:33:ed:80:ae: 5c:af:67:c2:f6:77:ec:8d:38:c5:26:9f:92:c1:71: d1:c0:74:77:02:36:98:20:43:6c:b7:4f:c3:e2:d6: 1b:e1:dc:43:a1:ef:7a:f9:0d:1f:13:5c:0b:cc:8c: c4:6f:69:b2:03:7e:8a:3f:ca:26:1d:75:35:1a:a4: c8:63:56:a5:e8:36:ed:4c:a8:97:3f:bd:40:fe:21: 95:8b:d5:d5:c2:b9:26:42:4f:e5:64:d3:de:90:93: 60:c3:24:2a:ed:a4:4b:72:df:35:b0:7e:79:61:e5: 0f:40:59:ff:b1:98:73:e8:88:c0:76:76:b1:bb:d4: 0c:9e:8d:a7:78:59:56:ef:fc:25:42:7c:e3:6d:23: 9f:38:76:53:e8:e9:32:91:f7:3e:78:4d:d9:b7:de: 2a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2B:3B:CD:45:4B:33:EF:6C:B8:7B:27:5E:9C:CB:F5:7A:18:A3:F7 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:49:aa:8c:a1:48:8f:6c:48:5d:d1:8e:46:c7:7d:20:fc:66: de:78:a7:d1:8d:f6:98:bf:f5:c3:6a:45:21:78:eb:bd:2c:b0: c8:f5:c4:2d:ed:ae:a8:09:6c:68:f0:12:25:34:59:a9:74:d1: 0b:2e:2a:39:64:4a:61:59:c5:33:08:4e:37:94:7f:33:8c:a8: ec:1f:76:4a:1a:e6:db:eb:2e:56:9a:7d:9a:0c:55:23:75:a0: f6:8e:e2:3c:2a:ef:c9:07:5b:85:f2:a8:c0:28:c6:e5:d5:f1: f5:cf:c0:c3:b1:f2:71:f9:fe:9c:4b:3b:34:17:35:8d:c3:4c: ad:cf:12:e5:99:74:79:09:86:8f:9b:76:92:cd:9e:2d:a3:60: db:0e:3c:1a:fd:c2:fe:33:b1:d5:cf:d0:29:3d:68:6c:9e:38: 7d:26:25:89:db:65:ae:13:8d:09:6a:c0:84:d5:20:1d:e9:bb: 95:d6:3b:64:1b:d9:d6:3c:05:18:bf:64:b6:c8:89:60:1b:84: 7c:12:90:7e:aa:95:37:8b:ed:7a:9c:92:e3:59:bf:0c:7e:9f: e5:80:a7:a6:d1:9f:90:71:5b:1d:f3:f2:11:8e:64:ac:b0:52: 89:57:3d:d7:20:17:2a:48:2d:6d:8f:6b:eb:87:12:65:72:f4: 4d:b0:6e:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUxMTAyMjMxNjU4WhcNMjUxMTA5MjMxNjU4WjAYMRYwFAYD VQQDEw02OTA3ZTY2YS1jMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreCvDJNpxz0UyKzGl4kzH21sx667Xftx/oOLPTHSfYXUJTjwm37qAd1Hy0LP 5d7428hinLTU8B4IopjWY5iFjyiof7G+vhT6dwtZvAPvi1FXU6jgwGsEM/uQmjhE b2q6NGWumzPtgK5cr2fC9nfsjTjFJp+SwXHRwHR3AjaYIENst0/D4tYb4dxDoe96 +Q0fE1wLzIzEb2myA36KP8omHXU1GqTIY1al6DbtTKiXP71A/iGVi9XVwrkmQk/l ZNPekJNgwyQq7aRLct81sH55YeUPQFn/sZhz6IjAdnaxu9QMno2neFlW7/wlQnzj bSOfOHZT6Okykfc+eE3Zt94qIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIrO81F SzPvbLh7J16cy/V6GKP3MB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvSaqMoUiPbEhd0Y5Gx30g/GbeeKfRjfaYv/XDakUheOu9LLDI9cQt 7a6oCWxo8BIlNFmpdNELLio5ZEphWcUzCE43lH8zjKjsH3ZKGubb6y5Wmn2aDFUj daD2juI8Ku/JB1uF8qjAKMbl1fH1z8DDsfJx+f6cSzs0FzWNw0ytzxLlmXR5CYaP m3aSzZ4to2DbDjwa/cL+M7HVz9ApPWhsnjh9JiWJ22WuE40JasCE1SAd6buV1jtk G9nWPAUYv2S2yIlgG4R8EpB+qpU3i+16nJLjWb8Mfp/lgKem0Z+QcVsd8/IRjmSs sFKJVz3XIBcqSC1tj2vrhxJlcvRNsG6P -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:25 2025 by rpki-client