$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft File: pnlJEZesgi4NGBlxE3pGfSfCsCw.mft (raw, json) Hash identifier: uFr7d5lWGHkHqLuSkJr6rFiBsElAIlbVIsOPnXCe48U= Subject key identifier: 49:8F:FD:92:5B:86:9D:DD:8A:C9:51:7E:E0:D5:DC:A5:78:BB:A7:9F Authority key identifier: A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C Certificate issuer: /CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Certificate serial: 119D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft Manifest number: 1189 Signing time: Wed 22 Oct 2025 17:37:04 +0000 Manifest this update: Wed 22 Oct 2025 17:37:03 +0000 Manifest next update: Wed 29 Oct 2025 17:37:03 +0000 Files and hashes: 1: pnlJEZesgi4NGBlxE3pGfSfCsCw.crl (hash: hl0J/a9unJUP4gdC10FlmB7WfskoW4CmEF4I2v4HMM8=) 2: DB4085480A3A11E999FA296FC4F9AE02.roa (hash: 16660dDxZH468UZss0VebZFnv/Ql37+WVYt3vkRrUmQ=) 3: 041E1E420A3811E9BE336267C4F9AE02.roa (hash: Spb+pH4GvP2Ukki1wFpymghuHWZTFJjsX3H/le8aCzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4509 (0x119d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0F1, serialNumber=A679491197AC822E0D181971137A467D27C2B02C Validity Not Before: Oct 22 17:37:03 2025 GMT Not After : Oct 29 17:37:03 2025 GMT Subject: CN=68f91640-7145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:24:73:c9:71:ce:80:ee:d7:ef:8e:48:a7:b0: 57:9c:bc:b1:0d:62:e2:1a:16:a9:4f:22:9d:01:ca: 58:a5:3c:13:b7:a0:cb:cb:77:37:8c:18:33:2f:1a: a2:3a:40:81:91:2b:de:b7:82:71:b6:58:5a:24:84: d0:41:19:cc:ee:69:13:a3:2b:45:42:70:8b:75:c3: 00:56:11:16:3e:94:f7:12:c4:a2:bb:c9:06:b8:15: 34:fd:e3:01:ae:d2:2b:65:28:82:e7:c8:75:9a:fa: 07:7f:be:77:13:4d:5e:38:60:0c:27:50:41:6b:98: ab:82:e7:e2:b7:34:73:d0:16:eb:4e:d9:fd:dc:7a: bf:36:80:30:3b:02:65:28:cb:7d:ae:a4:6b:a1:21: 80:5b:aa:f6:0c:e7:27:be:b9:38:5c:ec:17:ec:37: d6:ae:cb:83:03:89:b7:6a:43:f5:87:4f:97:26:9c: 5d:8c:b4:65:1f:ec:93:98:1d:69:f3:7e:46:9e:48: 3c:ad:87:d6:4f:66:e5:aa:3e:f5:e8:53:1c:f5:09: c8:36:83:bf:bb:aa:59:e5:8e:24:77:e8:0d:f7:4d: d3:2f:ce:18:5f:5b:05:a6:5e:23:32:f9:83:3d:e0: 58:41:1b:00:7a:8e:f2:ff:4b:90:8e:71:1d:cd:ea: 9c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8F:FD:92:5B:86:9D:DD:8A:C9:51:7E:E0:D5:DC:A5:78:BB:A7:9F X509v3 Authority Key Identifier: keyid:A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:c1:f7:74:8f:26:f8:ab:c3:02:8c:5e:a9:9e:3b:9d:a0:ae: dc:7e:e8:3b:e5:d7:8f:7a:23:b5:89:08:ca:95:4d:e9:19:9c: ae:f5:65:39:45:79:b1:3b:ab:ba:6b:30:14:dd:0c:20:53:f6: ab:c5:57:14:66:0d:78:10:26:34:f3:c4:c0:76:4a:bd:3f:b3: 56:53:51:a6:05:f9:90:e9:4c:a0:48:75:41:15:78:cb:ce:d3: 21:f1:6f:85:8f:f8:db:46:4f:93:bf:73:5e:69:9e:c7:f2:f9: 86:db:1c:eb:9d:57:97:ff:62:95:6d:8c:19:bb:9d:b6:35:94: 6a:a4:79:72:9e:a5:ee:89:02:63:da:1d:45:5b:20:99:d6:15: c1:e3:80:58:3a:75:ea:91:59:8a:4c:cd:47:43:88:9e:cd:a9: d2:06:b8:f9:cd:fd:a3:45:99:03:76:48:52:8b:bf:4b:1b:f2: 04:82:31:9a:66:10:d2:b3:cd:cd:f8:f0:d5:37:0a:3f:bb:d1: 9f:f8:73:6e:82:41:0a:31:1c:ca:89:17:ca:08:20:f4:f8:06: 5c:72:56:d0:67:5a:04:81:a0:ae:96:32:a2:06:48:0f:b0:29: ef:e1:fc:7f:e2:e6:4c:e8:3a:5a:5b:cc:18:84:9c:03:b0:cd: 9b:63:5d:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwRjExMTAvBgNVBAUTKEE2Nzk0OTExOTdBQzgyMkUwRDE4MTk3MTEzN0E0NjdE MjdDMkIwMkMwHhcNMjUxMDIyMTczNzAzWhcNMjUxMDI5MTczNzAzWjAYMRYwFAYD VQQDEw02OGY5MTY0MC03MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCRzyXHOgO7X745Ip7BXnLyxDWLiGhapTyKdAcpYpTwTt6DLy3c3jBgzLxqi OkCBkSvet4JxtlhaJITQQRnM7mkToytFQnCLdcMAVhEWPpT3EsSiu8kGuBU0/eMB rtIrZSiC58h1mvoHf753E01eOGAMJ1BBa5irgufitzRz0BbrTtn93Hq/NoAwOwJl KMt9rqRroSGAW6r2DOcnvrk4XOwX7DfWrsuDA4m3akP1h0+XJpxdjLRlH+yTmB1p 835Gnkg8rYfWT2blqj716FMc9QnINoO/u6pZ5Y4kd+gN903TL84YX1sFpl4jMvmD PeBYQRsAeo7y/0uQjnEdzeqcVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmP/ZJb hp3dislRfuDV3KV4u6efMB8GA1UdIwQYMBaAFKZ5SRGXrIIuDRgZcRN6Rn0nwrAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBGMS80MEIxM0JDMDBB MzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dpNE5HQmx4RTNwR2ZTZkNz Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BubEpFWmVzZ2k0TkdCbHhFM3BHZlNmQ3NDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBGMS80MEIxM0JDMDBBMzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dp NE5HQmx4RTNwR2ZTZkNzQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZwfd0jyb4q8MCjF6pnjudoK7cfug75dePeiO1iQjKlU3pGZyu9WU5 RXmxO6u6azAU3QwgU/arxVcUZg14ECY088TAdkq9P7NWU1GmBfmQ6UygSHVBFXjL ztMh8W+Fj/jbRk+Tv3NeaZ7H8vmG2xzrnVeX/2KVbYwZu522NZRqpHlynqXuiQJj 2h1FWyCZ1hXB44BYOnXqkVmKTM1HQ4iezanSBrj5zf2jRZkDdkhSi79LG/IEgjGa ZhDSs83N+PDVNwo/u9Gf+HNugkEKMRzKiRfKCCD0+AZcclbQZ1oEgaCuljKiBkgP sCnv4fx/4uZM6DpaW8wYhJwDsM2bY11U -----END CERTIFICATE-----Generated at Thu Oct 23 01:27:11 2025 by rpki-client