$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: 3ZImO8P0TDc8FbT817B4wPZlOvyaKppHZh3RnHIhZeI= Subject key identifier: F1:16:7A:04:90:2F:6B:1D:F3:0B:E9:A0:97:1D:45:F6:9D:42:96:43 Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 085B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2AA7 Signing time: Sun 02 Nov 2025 16:56:14 +0000 Manifest this update: Sun 02 Nov 2025 16:56:13 +0000 Manifest next update: Sun 09 Nov 2025 16:56:13 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: 8ijZaB2z8lzxaNe7r4FRsZThENiSBf7oOyj899Cux/o=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: DSrMI7Nowx4RDukf/foMtUodJX/NiInBR6IMaoe7AeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Nov 2 16:56:13 2025 GMT Not After : Nov 9 16:56:13 2025 GMT Subject: CN=69078d2d-095c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:bd:e2:71:ec:8e:4b:df:25:15:61:57:e0: 85:7d:fc:8e:f3:db:f8:07:71:48:01:ad:ad:63:6c: 23:bc:e7:2f:33:97:b5:ad:06:8a:7e:2b:97:73:67: d8:4d:e7:d2:b1:fe:b8:73:96:f2:9c:f6:b0:91:67: 57:12:6d:61:34:d3:dd:bf:a4:cb:09:13:7c:93:e0: b2:15:69:43:ee:5b:73:73:8a:6b:a2:0a:01:ba:41: 82:77:f5:f7:ff:eb:36:f2:a7:55:04:b6:68:61:97: 2b:6b:a9:d0:a4:e9:3a:16:dc:43:15:94:fb:bd:69: a3:d6:ee:86:9d:0c:85:7a:2b:57:d5:ec:5f:c9:d7: 13:44:ec:93:a4:25:cc:de:45:a5:99:16:5f:b5:5f: 58:5c:3b:65:c4:48:e2:f4:81:f5:39:b1:4b:67:e6: a3:8a:1b:c9:77:71:22:68:b8:1f:72:75:8f:5e:0a: 7a:8c:df:0f:a8:ad:84:0f:9b:67:90:72:65:a1:db: b9:7c:0e:f1:e2:a7:4e:d6:ab:df:43:b0:e0:57:6f: af:ae:c5:d8:e5:cc:03:80:2b:4b:b4:a6:8a:3b:aa: 1c:7c:b5:94:11:c1:eb:6a:cf:d4:9e:92:bc:f2:a8: 04:75:f0:a4:60:ce:ad:c2:10:73:ce:2c:76:4d:6b: 37:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:16:7A:04:90:2F:6B:1D:F3:0B:E9:A0:97:1D:45:F6:9D:42:96:43 X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:50:82:46:48:a9:69:98:f2:e4:aa:85:dc:e9:ad:a0:14:8e: 05:fa:78:f2:b9:28:8d:5a:21:2f:5c:37:0d:99:18:df:9f:91: 4d:c6:49:5d:00:95:d5:7e:d8:11:21:81:40:52:ea:9a:16:52: e0:08:a0:b2:28:43:69:dc:f9:fa:80:fa:f1:6e:a4:9e:43:d2: ce:1f:f2:02:bf:96:5d:ff:4a:4f:aa:38:dc:67:59:9f:30:da: 0d:da:96:f5:4a:9b:b7:9f:fc:7a:64:be:d6:b3:31:8e:3d:f5: f4:fd:fe:4a:8d:f4:c6:7e:ae:c5:58:c6:1b:59:38:ec:9f:92: f7:71:de:e2:09:a2:95:15:b5:9f:7c:0b:e2:d8:de:a5:64:20: e1:4f:74:90:08:91:ef:b5:30:0b:5a:98:8b:02:c1:0e:fc:a9: c1:9e:9d:35:67:10:6f:5c:79:92:cd:95:61:6d:79:9f:dd:cf: ee:01:0b:ba:c3:75:1b:0e:ea:f6:26:78:21:f9:bb:2a:7a:8f: 04:23:a5:62:23:3b:2f:30:58:37:9c:1a:ff:2a:ba:0f:43:cf: 6a:04:0e:9c:7a:9b:44:62:99:52:ec:4f:45:3d:e0:92:93:f0: 0e:54:21:01:4f:cc:44:aa:61:b0:ed:80:86:a8:4c:d1:5c:e0: a6:ca:95:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUxMTAyMTY1NjEzWhcNMjUxMTA5MTY1NjEzWjAYMRYwFAYD VQQDEw02OTA3OGQyZC0wOTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+m94nHsjkvfJRVhV+CFffyO89v4B3FIAa2tY2wjvOcvM5e1rQaKfiuXc2fY TefSsf64c5bynPawkWdXEm1hNNPdv6TLCRN8k+CyFWlD7ltzc4progoBukGCd/X3 /+s28qdVBLZoYZcra6nQpOk6FtxDFZT7vWmj1u6GnQyFeitX1exfydcTROyTpCXM 3kWlmRZftV9YXDtlxEji9IH1ObFLZ+ajihvJd3EiaLgfcnWPXgp6jN8PqK2ED5tn kHJlodu5fA7x4qdO1qvfQ7DgV2+vrsXY5cwDgCtLtKaKO6ocfLWUEcHras/UnpK8 8qgEdfCkYM6twhBzzix2TWs3BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEWegSQ L2sd8wvpoJcdRfadQpZDMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3UIJGSKlpmPLkqoXc6a2gFI4F+njyuSiNWiEvXDcNmRjfn5FNxkld AJXVftgRIYFAUuqaFlLgCKCyKENp3Pn6gPrxbqSeQ9LOH/ICv5Zd/0pPqjjcZ1mf MNoN2pb1Spu3n/x6ZL7WszGOPfX0/f5KjfTGfq7FWMYbWTjsn5L3cd7iCaKVFbWf fAvi2N6lZCDhT3SQCJHvtTALWpiLAsEO/KnBnp01ZxBvXHmSzZVhbXmf3c/uAQu6 w3UbDur2Jngh+bsqeo8EI6ViIzsvMFg3nBr/KroPQ89qBA6ceptEYplS7E9FPeCS k/AOVCEBT8xEqmGw7YCGqEzRXOCmypV5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:38 2025 by rpki-client