$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft File: pih1evOkgoa9_fg6tOZOJNguDGs.mft (raw, json) Hash identifier: 3NK21Y1B5QRWpHvcnyHji4TFar4QSCnf7AzxB0Ap/28= Subject key identifier: DA:67:06:55:76:79:7E:52:D5:F5:E5:DC:C6:D1:46:67:B0:D1:3E:E8 Authority key identifier: A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B Certificate issuer: /CN=A91C4FBE/serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft Manifest number: 16 Signing time: Mon 03 Nov 2025 07:53:00 +0000 Manifest this update: Mon 03 Nov 2025 07:53:00 +0000 Manifest next update: Mon 10 Nov 2025 07:53:00 +0000 Files and hashes: 1: pih1evOkgoa9_fg6tOZOJNguDGs.crl (hash: XlBYfCPaiOojnZ09QYGMgn+CiStDk3WM+aisIliFSq0=) 2: 0B4BDC0E993311F08534326BC4F9AE02.roa (hash: yiX43samODsVfp7MYQJH26jbQ0swF124TZPClYLXMXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FBE, serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Validity Not Before: Nov 3 07:53:00 2025 GMT Not After : Nov 10 07:53:00 2025 GMT Subject: CN=69085f5c-70ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:61:ad:ac:8c:1a:7c:cd:4d:1c:07:7b:61:85: b9:b6:07:f2:55:03:cf:c8:82:95:c4:6f:d2:f7:a9: d0:b3:56:bc:c8:39:2e:92:f3:51:5d:59:4d:1a:40: 14:87:ac:c9:8b:60:27:37:a4:da:82:be:f6:33:cb: 66:29:b7:b2:f5:e2:10:60:03:67:62:7a:a2:0a:fa: a4:09:fe:0b:2b:15:e8:44:6c:35:ca:52:12:2b:69: 6c:8e:bf:63:d0:12:df:b9:c1:cc:9c:53:a9:55:2c: ba:bc:37:2b:f3:ce:c6:32:2a:4a:e1:ce:87:3c:44: 29:68:8c:bd:fe:38:31:6c:b4:de:f6:d7:6e:62:9d: f0:88:46:af:8c:35:a3:78:81:db:61:93:fb:fc:dc: 9e:a9:13:02:34:b8:dc:ec:0c:0d:01:8f:4c:03:5b: 1f:a7:37:6d:9d:7a:11:8b:83:42:ee:63:b7:d3:09: 6f:8d:d5:c2:08:e3:c0:33:f1:c8:d9:bf:19:3f:2c: 86:10:87:38:cc:e2:98:7f:49:6a:e5:28:64:f8:20: 6a:9f:bd:d6:bf:31:1e:ec:6c:49:a3:bc:42:bc:44: d6:39:7a:b2:04:a7:2e:98:d2:6d:fd:f9:ad:5d:75: b6:49:39:90:10:ba:b6:fe:91:0c:83:dd:09:f3:22: 1a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:67:06:55:76:79:7E:52:D5:F5:E5:DC:C6:D1:46:67:B0:D1:3E:E8 X509v3 Authority Key Identifier: keyid:A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:81:cc:c4:cd:14:e6:17:9c:83:f5:34:2d:8d:f5:94:b5:ff: eb:96:57:d8:b4:f7:8f:bc:8c:86:e0:c9:a8:45:5b:0c:45:f7: 68:85:f5:23:08:95:94:3f:98:a0:75:83:95:bb:b2:42:76:8f: f2:78:d0:f4:96:cf:6a:db:e3:63:9a:55:c8:72:28:09:84:ff: dd:f1:f7:a0:1f:c9:d8:41:df:5a:98:21:04:92:f4:24:9f:7a: c4:fb:85:f0:40:91:17:67:72:3b:bd:33:37:78:ae:49:3a:cf: 68:60:84:35:80:4f:b2:37:66:95:2a:0e:2d:1d:62:54:61:5f: 98:c5:7f:06:40:d3:f4:f4:37:2f:c0:a2:e4:ae:7a:13:5f:39: 14:48:f5:86:bd:4a:48:55:ea:48:9d:1c:53:29:7f:7d:09:af: 44:08:9d:36:16:84:f8:d8:71:b1:5b:08:92:44:c9:5e:49:31: 5a:e0:9d:ca:e1:05:4c:fb:97:9c:c0:8f:92:db:f0:e2:36:3b: 18:4c:78:07:5e:9a:ba:2c:18:a3:48:86:2e:07:a3:05:7c:48: 3c:6a:87:51:93:f9:74:d9:d4:40:f7:d6:da:ea:39:d1:4d:e8: 75:cb:30:e0:a1:bf:e5:3e:50:65:5d:49:cf:cf:be:26:09:41: 14:bc:b7:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEZCRTExMC8GA1UEBRMoQTYyODc1N0FGM0E0ODI4NkJERkRGODNBQjRFNjRFMjRE ODJFMEM2QjAeFw0yNTExMDMwNzUzMDBaFw0yNTExMTAwNzUzMDBaMBgxFjAUBgNV BAMTDTY5MDg1ZjVjLTcwY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoYa2sjBp8zU0cB3thhbm2B/JVA8/IgpXEb9L3qdCzVrzIOS6S81FdWU0aQBSH rMmLYCc3pNqCvvYzy2Ypt7L14hBgA2dieqIK+qQJ/gsrFehEbDXKUhIraWyOv2PQ Et+5wcycU6lVLLq8NyvzzsYyKkrhzoc8RClojL3+ODFstN72125infCIRq+MNaN4 gdthk/v83J6pEwI0uNzsDA0Bj0wDWx+nN22dehGLg0LuY7fTCW+N1cII48Az8cjZ vxk/LIYQhzjM4ph/SWrlKGT4IGqfvda/MR7sbEmjvEK8RNY5erIEpy6Y0m39+a1d dbZJOZAQurb+kQyD3QnzIhrPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2mcGVXZ5 flLV9eXcxtFGZ7DRPugwHwYDVR0jBBgwFoAUpih1evOkgoa9/fg6tOZOJNguDGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RkJFLzI1RTgyNkFFOTkz MjExRjBBMzU0QkE2OUM0RjlBRTAyL3BpaDFldk9rZ29hOV9mZzZ0T1pPSk5ndURH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGloMWV2T2tnb2E5X2ZnNnRPWk9KTmd1REdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 RkJFLzI1RTgyNkFFOTkzMjExRjBBMzU0QkE2OUM0RjlBRTAyL3BpaDFldk9rZ29h OV9mZzZ0T1pPSk5ndURHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCBzMTNFOYXnIP1NC2N9ZS1/+uWV9i094+8jIbgyahFWwxF92iF9SMI lZQ/mKB1g5W7skJ2j/J40PSWz2rb42OaVchyKAmE/93x96AfydhB31qYIQSS9CSf esT7hfBAkRdncju9Mzd4rkk6z2hghDWAT7I3ZpUqDi0dYlRhX5jFfwZA0/T0Ny/A ouSuehNfORRI9Ya9SkhV6kidHFMpf30Jr0QInTYWhPjYcbFbCJJEyV5JMVrgncrh BUz7l5zAj5Lb8OI2OxhMeAdemrosGKNIhi4HowV8SDxqh1GT+XTZ1ED31trqOdFN 6HXLMOChv+U+UGVdSc/PviYJQRS8t1c= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:50 2025 by rpki-client