$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: 2V9x/aVG+bqXidnuYeEoGH0n7bzGAYl59ngq1armo80= Subject key identifier: EE:F4:7A:98:E5:79:03:19:C7:24:63:30:91:44:0A:F7:4D:86:9D:84 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: A3 Signing time: Mon 03 Nov 2025 06:17:16 +0000 Manifest this update: Mon 03 Nov 2025 06:17:14 +0000 Manifest next update: Mon 10 Nov 2025 06:17:14 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: 9iCY5+8AIegSlW52ccnzdwYwdk36EItuFcrGzVqriC0=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Nov 3 06:17:14 2025 GMT Not After : Nov 10 06:17:14 2025 GMT Subject: CN=690848eb-91db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c4:d6:a8:9f:34:c7:49:78:a3:02:76:ba:51: 57:4a:21:22:78:85:0d:3c:c1:92:96:93:55:2e:7b: 2b:f1:36:c1:79:c9:da:64:fc:78:69:dc:b4:b2:b8: f7:4b:a5:3c:1a:4a:05:64:4e:a0:a2:7a:1d:e6:91: 04:84:05:ed:2b:13:7e:be:cd:a8:51:34:78:99:7e: 2a:41:1a:70:8d:27:03:e9:07:52:a7:05:ba:e3:2f: 9e:33:cd:04:f1:f7:2b:69:10:5e:c7:77:24:b5:e6: 64:2a:26:ee:ac:9b:bb:9d:3b:c3:43:e6:66:be:5a: a8:8c:f6:dc:f8:78:d0:3e:66:b7:a8:a5:4e:b0:f9: 33:ec:89:d3:9b:12:0c:38:14:d5:d3:db:c9:6a:80: 75:f7:c0:02:5e:a0:f4:80:92:94:59:25:e3:81:5a: d1:bf:68:08:5a:cd:1d:df:2a:c1:66:f0:db:51:84: 7c:a2:da:26:91:b0:5f:13:f2:43:1c:f0:de:41:b6: b2:54:1d:de:51:65:ec:bd:f4:64:87:45:e3:eb:09: 0a:94:85:79:13:91:58:15:89:3c:78:72:91:da:63: 6a:d0:8f:17:36:8f:84:c5:0b:2f:d4:0c:8d:4e:0d: 10:12:b7:43:90:22:a5:da:6a:e1:5e:73:f1:6e:92: 68:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F4:7A:98:E5:79:03:19:C7:24:63:30:91:44:0A:F7:4D:86:9D:84 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:92:04:47:12:fc:0f:ff:04:14:01:36:e8:00:7d:b2:35:02: 2b:49:fe:11:12:b7:ab:3b:ca:bc:ed:12:16:d5:a1:c5:c5:06: 74:a7:ee:48:22:46:30:a1:d0:c9:17:f4:b8:1c:d6:99:43:50: 47:ba:3b:b4:b9:20:05:f7:ec:fa:7f:e0:40:94:30:87:24:1c: e4:24:4a:ea:d2:aa:9c:1d:63:1e:74:11:9e:6a:f8:21:f0:13: f0:e1:f3:e5:63:17:66:0b:39:b4:e1:74:8d:09:ba:e2:e8:5a: a9:07:62:23:92:22:2e:15:8f:93:b2:3c:e2:6e:33:e2:c1:ae: c9:85:61:fc:45:02:a4:7a:78:28:c0:7c:97:3e:7e:6e:2e:54: e2:d9:72:6a:e0:5c:60:02:2b:f8:6d:c1:7a:cc:a7:af:bf:d6: 22:aa:96:80:d3:84:fc:81:33:55:14:e4:bc:f5:98:5a:fe:c7: 11:41:94:5d:42:6c:10:c5:68:bb:06:81:3a:d4:b4:39:ee:60: 77:0a:78:4e:2f:47:4b:b0:b7:ea:7d:b0:e6:0a:a2:25:d5:64: 4a:e6:37:6f:ce:00:69:d2:75:d9:a2:94:47:25:ac:58:21:27: a7:f1:df:44:f9:a4:e8:60:0a:ef:ad:b3:3e:e4:33:b3:16:ef: 0c:cb:7c:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUxMTAzMDYxNzE0WhcNMjUxMTEwMDYxNzE0WjAYMRYwFAYD VQQDEw02OTA4NDhlYi05MWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssTWqJ80x0l4owJ2ulFXSiEieIUNPMGSlpNVLnsr8TbBecnaZPx4ady0srj3 S6U8GkoFZE6gonod5pEEhAXtKxN+vs2oUTR4mX4qQRpwjScD6QdSpwW64y+eM80E 8fcraRBex3ckteZkKiburJu7nTvDQ+ZmvlqojPbc+HjQPma3qKVOsPkz7InTmxIM OBTV09vJaoB198ACXqD0gJKUWSXjgVrRv2gIWs0d3yrBZvDbUYR8otomkbBfE/JD HPDeQbayVB3eUWXsvfRkh0Xj6wkKlIV5E5FYFYk8eHKR2mNq0I8XNo+ExQsv1AyN Tg0QErdDkCKl2mrhXnPxbpJopwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO70epjl eQMZxyRjMJFECvdNhp2EMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFkgRHEvwP/wQUATboAH2yNQIrSf4RErerO8q87RIW1aHFxQZ0p+5I IkYwodDJF/S4HNaZQ1BHuju0uSAF9+z6f+BAlDCHJBzkJErq0qqcHWMedBGeavgh 8BPw4fPlYxdmCzm04XSNCbri6FqpB2IjkiIuFY+TsjzibjPiwa7JhWH8RQKkengo wHyXPn5uLlTi2XJq4FxgAiv4bcF6zKevv9YiqpaA04T8gTNVFOS89Zha/scRQZRd QmwQxWi7BoE61LQ57mB3CnhOL0dLsLfqfbDmCqIl1WRK5jdvzgBp0nXZopRHJaxY ISen8d9E+aToYArvrbM+5DOzFu8My3zd -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:14 2025 by rpki-client