$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: VJioNjUnrtcNtXYwViCsSt0ZRtxOJ0vu6thgowhKSBw= Subject key identifier: BF:9C:61:B7:4E:9C:CF:5F:E1:74:4D:0F:07:06:85:64:06:E9:D2:EE Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 01F7 Signing time: Mon 03 Nov 2025 02:27:47 +0000 Manifest this update: Mon 03 Nov 2025 02:27:47 +0000 Manifest next update: Mon 10 Nov 2025 02:27:46 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: d1WAkgzz3+fW+vKjv05xVJtqmmD/Bqgthud4wQF1iaQ=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: m/OLPsM6ynBix8nuh4bjX0QKg8+81tb5WXXf1UHLuyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Nov 3 02:27:47 2025 GMT Not After : Nov 10 02:27:46 2025 GMT Subject: CN=69081323-9386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:4c:0b:ce:4d:86:fe:97:73:6e:2a:c2:91: 04:87:13:70:53:85:a1:e7:0a:91:cd:5d:8a:51:3c: 93:9c:79:25:80:89:2b:09:10:0d:70:02:0a:8d:41: 1b:96:84:57:93:f2:85:e4:1a:4e:20:6b:45:14:0d: b2:e4:3d:80:6e:91:73:50:37:41:fa:63:63:dc:04: fa:87:b5:87:89:b4:81:40:f4:31:51:41:ae:6a:1c: 18:62:90:30:8e:42:4f:46:d7:85:69:22:55:e1:b9: f9:b1:e5:74:88:1f:7d:37:e7:a5:ac:cd:61:31:a0: ee:44:87:ed:d3:a0:e0:a1:cc:2c:1b:f0:84:a8:eb: d7:61:df:78:4f:ed:22:a9:50:35:a1:80:ae:92:ef: 9c:8b:06:0a:86:a9:b7:db:08:b5:b5:a4:a4:66:30: 89:5b:14:42:6e:48:cf:cf:45:b9:8b:5d:03:06:ee: d5:c7:4f:22:3a:d0:1f:b3:8d:14:4a:c2:24:a9:b6: 97:b4:37:80:95:a2:cb:29:17:1a:eb:e1:2e:69:fa: 78:c1:d1:3a:65:71:5b:51:2e:51:ae:b2:0a:c4:c1: ea:7d:b2:5d:27:73:65:69:bd:dd:d8:c0:d7:33:eb: 2a:df:b9:54:3f:9a:80:fc:b7:2a:20:40:6b:84:04: 30:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9C:61:B7:4E:9C:CF:5F:E1:74:4D:0F:07:06:85:64:06:E9:D2:EE X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:00:58:6a:67:2b:09:b0:81:cf:a9:7f:58:81:db:94:fd:23: fc:b3:e8:0d:77:10:b7:ee:f3:f6:87:9d:e6:50:cd:25:0d:10: d7:e1:24:9c:95:03:6d:cc:7d:69:aa:c6:e6:60:e2:0d:32:15: cf:f2:7f:32:d1:7c:b4:3d:00:24:22:b0:4f:c9:cf:b5:9a:d4: 4e:0e:17:f9:29:95:e0:be:d8:98:e9:41:4d:5f:29:9e:e4:27: 79:a2:b7:7f:29:18:b9:0a:0d:29:35:7a:d6:a6:c6:bc:f1:71: 51:6b:47:5f:96:d6:84:3e:17:9e:c0:34:80:64:ba:2b:8d:fb: 06:9f:73:f0:0f:48:d4:48:f7:96:5c:91:7f:6f:90:34:b6:1f: c5:6a:84:7f:bd:b4:13:16:49:84:75:ff:b5:d0:96:9b:bc:49: 06:f3:75:27:c4:6c:8f:2c:31:9a:6a:81:80:78:86:50:a4:c7: 3e:25:34:b7:51:6a:bf:bd:29:56:2c:19:38:3d:51:5e:5a:7e: e4:08:55:cd:d8:29:00:5b:04:9b:f4:fe:9e:a1:ee:97:83:5a: ad:07:5f:e4:e8:d1:85:6f:fd:5c:61:6c:af:1e:8d:34:7a:d4: 4d:eb:cc:38:90:e9:02:68:73:48:6f:36:82:5c:fa:55:bb:3d: 6c:9f:28:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUxMTAzMDIyNzQ3WhcNMjUxMTEwMDIyNzQ2WjAYMRYwFAYD VQQDEw02OTA4MTMyMy05Mzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtJMC85Nhv6Xc24qwpEEhxNwU4Wh5wqRzV2KUTyTnHklgIkrCRANcAIKjUEb loRXk/KF5BpOIGtFFA2y5D2AbpFzUDdB+mNj3AT6h7WHibSBQPQxUUGuahwYYpAw jkJPRteFaSJV4bn5seV0iB99N+elrM1hMaDuRIft06DgocwsG/CEqOvXYd94T+0i qVA1oYCuku+ciwYKhqm32wi1taSkZjCJWxRCbkjPz0W5i10DBu7Vx08iOtAfs40U SsIkqbaXtDeAlaLLKRca6+Euafp4wdE6ZXFbUS5RrrIKxMHqfbJdJ3Nlab3d2MDX M+sq37lUP5qA/LcqIEBrhAQwjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+cYbdO nM9f4XRNDwcGhWQG6dLuMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpAFhqZysJsIHPqX9YgduU/SP8s+gNdxC37vP2h53mUM0lDRDX4SSc lQNtzH1pqsbmYOINMhXP8n8y0Xy0PQAkIrBPyc+1mtRODhf5KZXgvtiY6UFNXyme 5Cd5ord/KRi5Cg0pNXrWpsa88XFRa0dfltaEPheewDSAZLorjfsGn3PwD0jUSPeW XJF/b5A0th/FaoR/vbQTFkmEdf+10JabvEkG83UnxGyPLDGaaoGAeIZQpMc+JTS3 UWq/vSlWLBk4PVFeWn7kCFXN2CkAWwSb9P6eoe6Xg1qtB1/k6NGFb/1cYWyvHo00 etRN68w4kOkCaHNIbzaCXPpVuz1snyhV -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:40 2025 by rpki-client