$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: RsiRrX1W6q2k4CsoCFfTx3zW2SKRZKjmMcRBtWq5QD8= Subject key identifier: C8:26:15:85:21:2C:10:FB:5F:F5:77:98:80:7E:AC:14:30:45:86:8C Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 019E Signing time: Mon 03 Nov 2025 03:47:57 +0000 Manifest this update: Mon 03 Nov 2025 03:47:56 +0000 Manifest next update: Mon 10 Nov 2025 03:47:56 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: qyYllgu+LldbegXpHTVAMK05sDBUijx4TD7Q61gswEM=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: cnJwqqHN4riyku3tEiuuHhIwq5tVnDToY1WIzgvW2u4=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: mLbZptWvG8rYPVjrASGR+2xv7LhlpFkmVBPHSXESb6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Nov 3 03:47:56 2025 GMT Not After : Nov 10 03:47:56 2025 GMT Subject: CN=690825ec-ad9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7e:6b:10:44:e4:c3:25:27:af:f6:b3:26:ce: d5:c5:87:4d:0f:b6:8a:e1:43:52:0c:86:52:ef:30: 0b:c0:bd:04:62:14:ec:ed:fd:bd:5d:d5:c6:98:18: 3e:de:0d:e0:88:71:a2:91:e7:a4:ba:a1:55:da:fb: 84:71:75:43:d5:25:34:f7:07:50:e9:97:87:b4:41: 79:c6:81:92:8d:a6:44:1e:02:00:fc:c9:30:07:97: b7:e5:0a:e5:32:6f:28:57:a0:ad:58:8b:4b:d0:e2: 88:ff:da:47:30:fb:dc:d9:cf:c4:c6:a2:61:13:c6: 84:36:12:ba:4d:23:10:6d:a1:3d:7c:50:f2:47:bb: e9:c9:e8:5d:8b:94:8a:c4:2d:e4:8e:78:fd:e4:8f: 23:a9:9f:16:7a:45:61:c4:72:dd:d7:10:47:03:52: dd:cb:f9:50:ba:ec:e2:f6:7f:3c:75:d5:94:0b:2c: 6d:d7:e5:0a:31:a8:3c:4c:9f:80:1b:62:b0:e2:ce: 5b:af:22:1b:bb:97:4e:9b:f6:6e:43:6a:f4:6f:e4: 3c:87:10:df:64:77:26:ae:08:77:c3:b0:a8:54:62: 2b:ea:e8:94:b5:5d:e5:e9:fd:b5:ab:8f:bc:92:59: 1b:52:31:fd:bc:55:1c:13:e1:be:b3:48:96:9d:4f: fd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:26:15:85:21:2C:10:FB:5F:F5:77:98:80:7E:AC:14:30:45:86:8C X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:46:4d:b2:12:d5:be:ca:75:95:6d:95:cc:1f:d0:c2:e9:7f: 42:73:02:87:a4:9d:f9:09:e9:bb:96:f2:49:da:08:89:d7:72: 7f:b2:52:47:5f:79:c1:af:98:86:bc:24:25:6b:a1:c8:1e:d5: 94:b8:93:f4:02:30:ba:e2:e8:8c:cc:3b:8f:16:92:f3:8f:d1: 54:02:ed:3b:0b:ae:78:45:74:d0:ac:52:1e:c8:7a:83:7f:7d: 82:86:ce:c2:4d:d5:35:51:95:45:29:91:26:9d:4f:24:ad:fa: 7e:75:f0:f1:05:9b:4f:98:f3:5a:6e:2e:55:b2:ff:52:15:b4: 7f:45:a0:9c:b1:d1:a2:e8:b2:0a:71:8d:11:db:44:28:4d:82: a4:b8:87:ec:8a:00:0a:4f:fd:01:75:93:6e:e9:35:13:5d:53: 2e:e9:f4:84:53:10:04:22:05:58:d0:4e:b4:14:a4:0c:9a:9f: 77:14:8b:74:49:a4:39:9a:47:c8:8b:6a:00:64:32:ff:e0:ee: c4:49:a4:9b:8c:77:3c:2b:58:8a:4b:d9:1e:c2:f6:a6:b6:34: 08:25:1e:fd:b3:d9:a0:b5:bf:7b:a5:da:fd:4f:a5:25:05:5d: f8:c6:3c:bd:2f:41:2d:a2:91:38:2a:18:a5:d3:36:08:b7:a2: f0:a3:0a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMTAzMDM0NzU2WhcNMjUxMTEwMDM0NzU2WjAYMRYwFAYD VQQDEw02OTA4MjVlYy1hZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsn5rEETkwyUnr/azJs7VxYdND7aK4UNSDIZS7zALwL0EYhTs7f29XdXGmBg+ 3g3giHGikeekuqFV2vuEcXVD1SU09wdQ6ZeHtEF5xoGSjaZEHgIA/MkwB5e35Qrl Mm8oV6CtWItL0OKI/9pHMPvc2c/ExqJhE8aENhK6TSMQbaE9fFDyR7vpyehdi5SK xC3kjnj95I8jqZ8WekVhxHLd1xBHA1Ldy/lQuuzi9n88ddWUCyxt1+UKMag8TJ+A G2Kw4s5bryIbu5dOm/ZuQ2r0b+Q8hxDfZHcmrgh3w7CoVGIr6uiUtV3l6f21q4+8 klkbUjH9vFUcE+G+s0iWnU/9UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgmFYUh LBD7X/V3mIB+rBQwRYaMMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvRk2yEtW+ynWVbZXMH9DC6X9CcwKHpJ35Cem7lvJJ2giJ13J/slJH X3nBr5iGvCQla6HIHtWUuJP0AjC64uiMzDuPFpLzj9FUAu07C654RXTQrFIeyHqD f32Chs7CTdU1UZVFKZEmnU8krfp+dfDxBZtPmPNabi5Vsv9SFbR/RaCcsdGi6LIK cY0R20QoTYKkuIfsigAKT/0BdZNu6TUTXVMu6fSEUxAEIgVY0E60FKQMmp93FIt0 SaQ5mkfIi2oAZDL/4O7ESaSbjHc8K1iKS9kewvamtjQIJR79s9mgtb97pdr9T6Ul BV34xjy9L0EtopE4Khil0zYIt6Lwowo9 -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:13 2025 by rpki-client