$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: 8P38yn9PpQdc1P1JLXxES+5Evd6LmFXWANLhLbYnRfk= Subject key identifier: 2E:58:85:85:FF:37:9C:1F:DE:76:9D:97:EA:60:6A:84:3D:79:18:1F Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: FD Signing time: Mon 03 Nov 2025 05:09:46 +0000 Manifest this update: Mon 03 Nov 2025 05:09:45 +0000 Manifest next update: Mon 10 Nov 2025 05:09:45 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: 1I+DFzPvaqm9aCZMoT3Wxoze+NpGspMwyewi7TysizQ=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: n9WiQjAGu9O9bLeoq38kpAQ+Tw7nAmw19T1TLy6Ivwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Nov 3 05:09:45 2025 GMT Not After : Nov 10 05:09:45 2025 GMT Subject: CN=69083919-97b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:59:6b:1c:31:7e:99:59:dd:a0:3b:7f:71:54: f8:af:b8:ec:05:1d:d8:b0:fb:2c:70:90:fe:23:4f: 28:6a:33:84:32:5e:e7:bd:a8:aa:b9:a1:d1:d3:42: 04:50:fb:e7:bc:a4:03:d1:f4:a0:a5:52:f3:04:af: b0:8d:29:04:35:7c:f0:00:17:f1:b2:fc:f8:61:d9: bf:28:f8:cb:80:d3:a4:38:f1:e1:6d:d5:28:e6:2b: 65:95:ff:fe:8a:5d:17:26:70:5b:fe:fb:ce:5b:b2: 7d:a3:30:55:19:c7:ad:3c:64:fe:ac:86:8f:97:92: 2d:50:87:ba:08:fa:8c:3f:45:5a:55:f8:a1:22:51: 90:29:58:c6:62:d1:93:39:82:41:61:d9:f9:6e:ba: d6:e5:11:30:d9:e0:2a:78:3f:b3:90:a2:f4:e9:bb: 77:82:40:cd:56:a0:5f:6d:72:32:34:26:03:d1:08: 07:c5:40:60:ed:16:df:37:e1:ce:6a:95:78:b8:df: 68:a7:f4:d0:07:33:39:44:c7:f3:16:bd:22:21:47: 5c:67:4f:7e:af:20:31:fe:74:06:23:63:4d:15:a0: a1:57:aa:a2:9f:89:56:ac:2d:ea:71:b2:85:31:17: d2:6c:99:ed:43:4e:07:19:53:41:7c:f3:56:84:d2: 35:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:58:85:85:FF:37:9C:1F:DE:76:9D:97:EA:60:6A:84:3D:79:18:1F X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:8f:01:3a:6e:a0:0c:a3:c2:a2:3e:c5:c3:71:ff:76:f0:31: 1d:74:f9:69:1f:0c:0d:c6:9c:46:06:72:43:b6:bc:21:81:42: c3:18:7e:cd:68:98:9d:0b:04:88:b6:6d:e9:42:dc:1c:60:3f: 75:f9:66:cd:bd:15:3f:70:f2:86:d6:3b:1e:3c:af:e0:70:ab: 66:7b:d7:40:f3:89:76:39:67:53:50:f4:3a:40:4e:5f:59:78: c1:ef:ad:a5:c5:6d:eb:64:b0:85:b6:ec:9e:5d:d0:6c:50:f5: ca:80:b4:3b:c0:7b:06:f8:21:0d:7e:78:a6:ed:f2:37:35:7a: 76:50:29:ff:dc:c7:49:9d:a6:f0:09:7b:4d:e7:ae:9c:73:47: 4e:e0:53:ba:c3:65:f0:88:52:e4:8e:e1:c4:e2:c6:c2:c9:13: c1:01:bf:2e:aa:ab:70:97:c0:5f:7d:95:22:1f:ed:f7:01:4e: 9b:4c:c9:14:fb:02:5c:4d:51:a4:2a:77:85:92:a9:89:bd:60: 7b:e2:ac:3b:22:ba:3c:a2:25:cb:4d:34:61:4d:32:a1:45:45: 27:04:4c:e4:73:11:ee:26:00:37:9e:99:63:d4:5f:b3:e6:40: a6:a9:ef:b0:cb:f2:6f:95:e6:60:57:b8:6b:19:09:18:32:ac: e1:60:34:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUxMTAzMDUwOTQ1WhcNMjUxMTEwMDUwOTQ1WjAYMRYwFAYD VQQDEw02OTA4MzkxOS05N2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzllrHDF+mVndoDt/cVT4r7jsBR3YsPsscJD+I08oajOEMl7nvaiquaHR00IE UPvnvKQD0fSgpVLzBK+wjSkENXzwABfxsvz4Ydm/KPjLgNOkOPHhbdUo5itllf/+ il0XJnBb/vvOW7J9ozBVGcetPGT+rIaPl5ItUIe6CPqMP0VaVfihIlGQKVjGYtGT OYJBYdn5brrW5REw2eAqeD+zkKL06bt3gkDNVqBfbXIyNCYD0QgHxUBg7RbfN+HO apV4uN9op/TQBzM5RMfzFr0iIUdcZ09+ryAx/nQGI2NNFaChV6qin4lWrC3qcbKF MRfSbJntQ04HGVNBfPNWhNI1ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5YhYX/ N5wf3nadl+pgaoQ9eRgfMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3jwE6bqAMo8KiPsXDcf928DEddPlpHwwNxpxGBnJDtrwhgULDGH7N aJidCwSItm3pQtwcYD91+WbNvRU/cPKG1jsePK/gcKtme9dA84l2OWdTUPQ6QE5f WXjB762lxW3rZLCFtuyeXdBsUPXKgLQ7wHsG+CENfnim7fI3NXp2UCn/3MdJnabw CXtN566cc0dO4FO6w2XwiFLkjuHE4sbCyRPBAb8uqqtwl8BffZUiH+33AU6bTMkU +wJcTVGkKneFkqmJvWB74qw7Iro8oiXLTTRhTTKhRUUnBEzkcxHuJgA3nplj1F+z 5kCmqe+wy/JvleZgV7hrGQkYMqzhYDTr -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:03 2025 by rpki-client