$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft File: PByHc0fugnKWNq8POjddORCQ-SE.mft (raw, json) Hash identifier: 3b9BllD7/+5XPQyLrKl/C9+gcWOnYw2jAEFSSigf63I= Subject key identifier: 3A:9C:7D:55:D6:D6:C5:03:0C:D1:79:E2:EA:1F:42:80:F9:F0:C8:84 Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2D3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft Manifest number: 2D04 Signing time: Tue 04 Nov 2025 15:34:07 +0000 Manifest this update: Tue 04 Nov 2025 15:34:06 +0000 Manifest next update: Tue 11 Nov 2025 15:34:06 +0000 Files and hashes: 1: PByHc0fugnKWNq8POjddORCQ-SE.crl (hash: rC9S8S+NBotrTVq7Q2j0ghcKx5NjcJGYTKIR5DlEWBg=) 2: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (hash: utIpka2m9g7rscMzHbDTXQACJUoOh2JMTGT7Uylt93Q=) 3: 14820EDE248611EEB600357DC4F9AE02.roa (hash: uoxhoDVDIdZeIGpmPVYh0+yT+vTsXXRnS1XpZHEpwfY=) 4: DE61D0DC2A7311F08DDC6D17C4F9AE02.roa (hash: wnP6JYClG7n+PNc2XDZbazMvuyyzMgyJZ4q4a/lxzfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11579 (0x2d3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5, serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Nov 4 15:34:06 2025 GMT Not After : Nov 11 15:34:06 2025 GMT Subject: CN=690a1cee-68c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:85:0c:18:b6:99:c5:ce:4e:99:6b:c8:8c:0e: cf:b6:1f:62:d4:42:d7:9d:b4:ac:8f:0a:a9:24:97: 05:fa:a4:42:e5:36:a4:22:45:20:2a:10:99:b0:2f: e3:09:0f:f9:f1:35:88:05:eb:2d:26:d6:83:42:15: c8:34:19:63:40:29:c6:ff:c6:6e:c3:d3:97:84:4a: 75:83:fe:d5:14:40:fc:1f:90:23:3c:0d:39:aa:b5: 19:d4:73:fb:65:a7:22:af:a0:56:0e:4f:36:a4:0b: c6:5e:00:a1:f2:19:ae:bd:0c:47:0a:d1:78:b0:73: d2:5c:8e:f3:a1:9d:64:20:5a:a1:5e:2d:b2:57:62: b7:a5:dc:53:9d:14:72:11:7d:50:ba:1b:89:df:60: 81:5c:8d:3d:0f:40:60:60:88:ac:5e:bd:34:ef:c3: dd:42:08:d9:73:fd:bc:01:41:58:d7:d9:22:e1:4a: bd:e0:12:a8:13:aa:32:57:03:5a:cf:2f:a5:7a:4f: 99:98:5c:2a:14:df:f1:30:83:9e:b1:2c:6f:1c:b2: d5:ba:f3:73:0a:da:5b:8b:cb:cc:85:0b:aa:7a:e5: e6:ba:8c:84:81:16:ec:dc:40:45:42:78:4c:63:dc: 89:c8:d3:5e:94:1a:93:02:25:5b:1b:fd:65:af:a2: e0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9C:7D:55:D6:D6:C5:03:0C:D1:79:E2:EA:1F:42:80:F9:F0:C8:84 X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a9:b9:a2:a9:5d:94:e1:ec:82:12:34:98:71:83:c5:f1:e6: ba:39:85:e1:43:20:59:f6:ed:3c:75:25:d4:56:da:96:bb:7d: e4:18:07:41:34:e7:e0:64:72:7c:b7:c8:8a:c3:0b:bc:44:6b: 6c:5d:c5:7c:9c:50:df:4e:0c:18:d0:f5:5e:64:ed:40:06:5d: 1b:60:a0:54:f1:3f:9e:bc:56:82:f6:90:0a:f1:94:cf:a8:df: 13:a3:ec:d4:51:21:b5:12:55:b6:49:1a:77:b7:ab:82:94:ae: c4:83:be:ba:c8:f6:5e:c9:31:7e:31:0d:81:1f:0b:47:de:e4: 94:22:89:19:dc:38:6d:2f:fb:92:12:33:d0:41:f4:be:5f:fb: 38:d2:be:a0:e1:dc:8c:4f:49:ad:84:11:ac:5e:d3:73:d0:bf: 89:14:13:76:6c:bb:88:6f:33:23:a8:e1:7c:9a:ac:08:0c:b7: f8:57:e4:9c:4b:de:79:0d:a7:94:c1:b7:f9:ec:a7:82:74:4c: cd:ad:7a:ff:09:5d:46:48:f1:d2:b7:3f:f3:ab:75:54:4b:87: b7:44:d6:b6:27:7b:b0:df:8a:1e:8d:b5:01:9f:36:7f:6a:e0: 1c:53:02:d9:89:b9:0f:cc:ce:86:12:1e:cb:50:b2:fa:fc:13: 7a:9e:55:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjUxMTA0MTUzNDA2WhcNMjUxMTExMTUzNDA2WjAYMRYwFAYD VQQDEw02OTBhMWNlZS02OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYUMGLaZxc5OmWvIjA7Pth9i1ELXnbSsjwqpJJcF+qRC5TakIkUgKhCZsC/j CQ/58TWIBestJtaDQhXINBljQCnG/8Zuw9OXhEp1g/7VFED8H5AjPA05qrUZ1HP7 Zacir6BWDk82pAvGXgCh8hmuvQxHCtF4sHPSXI7zoZ1kIFqhXi2yV2K3pdxTnRRy EX1QuhuJ32CBXI09D0BgYIisXr0078PdQgjZc/28AUFY19ki4Uq94BKoE6oyVwNa zy+lek+ZmFwqFN/xMIOesSxvHLLVuvNzCtpbi8vMhQuqeuXmuoyEgRbs3EBFQnhM Y9yJyNNelBqTAiVbG/1lr6LgOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqcfVXW 1sUDDNF54uofQoD58MiEMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTJENS81Rjg2MUVFNkI4OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWdu S1dOcThQT2pkZE9SQ1EtU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHqbmiqV2U4eyCEjSYcYPF8ea6OYXhQyBZ9u08dSXUVtqWu33kGAdB NOfgZHJ8t8iKwwu8RGtsXcV8nFDfTgwY0PVeZO1ABl0bYKBU8T+evFaC9pAK8ZTP qN8To+zUUSG1ElW2SRp3t6uClK7Eg766yPZeyTF+MQ2BHwtH3uSUIokZ3DhtL/uS EjPQQfS+X/s40r6g4dyMT0mthBGsXtNz0L+JFBN2bLuIbzMjqOF8mqwIDLf4V+Sc S955DaeUwbf57KeCdEzNrXr/CV1GSPHStz/zq3VUS4e3RNa2J3uw34oejbUBnzZ/ auAcUwLZibkPzM6GEh7LULL6/BN6nlVr -----END CERTIFICATE-----Generated at Wed Nov 5 18:11:10 2025 by rpki-client