$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: 4XtzuiYvRBAfut5D5+MRy1NUVqXGXB4u5D+VHAvfOeA= Subject key identifier: 57:95:F4:2E:71:9E:BC:5A:C2:A2:44:10:BC:16:E3:D0:27:4E:80:0D Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 0192 Signing time: Wed 05 Nov 2025 03:42:01 +0000 Manifest this update: Wed 05 Nov 2025 03:42:00 +0000 Manifest next update: Wed 12 Nov 2025 03:42:00 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: 3tOaBe7RZohC1CalDV5qPN5srwpiRdj/5NcbO/ltiQ8=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Nov 5 03:42:00 2025 GMT Not After : Nov 12 03:42:00 2025 GMT Subject: CN=690ac789-3ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ec:5e:bb:e5:95:fd:33:18:62:f9:c9:ec:ca: ff:e3:ff:4f:1d:db:51:a2:0e:36:97:51:38:48:88: 10:9a:d9:2b:12:b4:b2:12:98:a7:a0:c1:22:68:fb: 16:62:e6:f7:38:26:2f:85:af:b5:c8:61:66:c2:7b: a5:51:dc:76:6b:ca:02:42:ff:ce:8c:27:69:7a:b4: 91:ea:48:37:34:a1:eb:12:28:88:b8:5b:f8:bb:1a: 6b:3e:4c:5e:61:7d:e9:61:48:97:9a:29:32:de:f5: 4a:5a:e4:a8:ef:e8:ee:c0:8a:be:e6:03:ef:be:ea: 8d:51:c1:11:b5:5d:1f:cc:2b:20:91:55:5b:b6:4b: 6b:26:41:c7:2c:28:93:0f:57:73:ed:4b:e9:3f:84: 02:cc:76:5a:75:c2:5e:06:19:e5:03:97:88:4c:ef: 29:3e:d4:c3:eb:36:1d:12:9b:71:8a:6c:6f:66:bd: d5:e2:6d:20:33:29:c0:24:03:2d:67:21:d8:17:bc: ef:29:97:e5:0c:dd:31:62:bf:cf:cc:99:da:1d:26: 68:38:55:c2:8d:df:d4:a2:ad:97:39:5b:b7:aa:b5: 41:db:78:f5:b4:2a:65:c4:b2:59:d4:83:d9:05:3c: ff:69:a1:da:e6:aa:27:07:92:5a:29:88:c6:77:6f: d2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:95:F4:2E:71:9E:BC:5A:C2:A2:44:10:BC:16:E3:D0:27:4E:80:0D X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d6:67:91:1f:18:3b:9d:13:bd:41:de:80:26:a4:6d:58:42: 3a:61:58:88:a7:2e:02:72:66:0c:0d:04:ba:78:68:3a:85:09: 1e:12:dc:58:94:50:73:ac:51:bf:a0:36:f4:75:a4:43:38:32: 73:17:ef:4a:85:60:52:a0:05:12:d0:e4:38:57:e1:16:48:bc: 65:fd:02:a7:7c:6d:90:18:ea:ca:c7:65:61:eb:99:38:0c:91: e2:70:13:9c:7e:bc:9c:3e:74:a4:ab:e2:db:cd:57:a3:e7:41: c0:ea:d2:31:5c:e6:2f:16:68:87:cb:d1:50:27:c7:1f:43:b7: a8:a1:0d:fb:69:67:e9:26:b9:26:52:d8:1f:b8:a2:3f:f7:67: d6:f6:c3:84:44:53:c5:7f:c0:0c:7d:9f:a9:23:24:7c:f3:28: 96:09:b3:9e:1a:1c:0e:46:65:46:92:bd:dd:cc:e4:af:45:42: 4c:83:ca:51:1b:87:97:62:b1:e0:09:6d:e4:e2:26:55:35:55: 9d:34:81:94:20:98:ba:44:e5:93:01:79:c8:63:d5:eb:16:33: 75:37:70:4c:d4:ce:d1:2e:b2:bd:27:68:09:bf:ae:e2:c8:d5: 98:33:11:31:e7:72:4e:b8:97:7e:4f:b2:61:68:ab:e9:d9:67: 95:95:80:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUxMTA1MDM0MjAwWhcNMjUxMTEyMDM0MjAwWjAYMRYwFAYD VQQDEw02OTBhYzc4OS0zZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+xeu+WV/TMYYvnJ7Mr/4/9PHdtRog42l1E4SIgQmtkrErSyEpinoMEiaPsW Yub3OCYvha+1yGFmwnulUdx2a8oCQv/OjCdperSR6kg3NKHrEiiIuFv4uxprPkxe YX3pYUiXmiky3vVKWuSo7+juwIq+5gPvvuqNUcERtV0fzCsgkVVbtktrJkHHLCiT D1dz7UvpP4QCzHZadcJeBhnlA5eITO8pPtTD6zYdEptximxvZr3V4m0gMynAJAMt ZyHYF7zvKZflDN0xYr/PzJnaHSZoOFXCjd/Uoq2XOVu3qrVB23j1tCplxLJZ1IPZ BTz/aaHa5qonB5JaKYjGd2/SFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeV9C5x nrxawqJEELwW49AnToANMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf1meRHxg7nRO9Qd6AJqRtWEI6YViIpy4CcmYMDQS6eGg6hQkeEtxY lFBzrFG/oDb0daRDODJzF+9KhWBSoAUS0OQ4V+EWSLxl/QKnfG2QGOrKx2Vh65k4 DJHicBOcfrycPnSkq+LbzVej50HA6tIxXOYvFmiHy9FQJ8cfQ7eooQ37aWfpJrkm UtgfuKI/92fW9sOERFPFf8AMfZ+pIyR88yiWCbOeGhwORmVGkr3dzOSvRUJMg8pR G4eXYrHgCW3k4iZVNVWdNIGUIJi6ROWTAXnIY9XrFjN1N3BM1M7RLrK9J2gJv67i yNWYMxEx53JOuJd+T7JhaKvp2WeVlYDk -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:24 2025 by rpki-client