$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: ohKZULOOCCmn2MrRPJb/trKkFawm1pyXo4g058bCz+Q= Subject key identifier: DE:46:D9:40:45:16:5B:8E:46:7A:E8:24:1B:6D:CE:51:1F:71:AF:4A Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0EBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0EAE Signing time: Thu 18 Sep 2025 17:50:22 +0000 Manifest this update: Thu 18 Sep 2025 17:50:22 +0000 Manifest next update: Thu 25 Sep 2025 17:50:22 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: MObD+f1g6+gfjSRy0tz8LMXZihA23hxsZEsbBmyTym8=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: vN4eTkgE+NqzrGCF55MmLQiQ1U4uCoJcvi6VZO9X/KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3770 (0xeba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668, serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: Sep 18 17:50:22 2025 GMT Not After : Sep 25 17:50:22 2025 GMT Subject: CN=68cc465e-78a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c0:32:63:19:98:b7:a9:c1:f4:4c:e4:94:a5: ee:90:57:c1:d9:dd:be:b2:b2:63:75:0e:29:4a:2e: d9:5d:76:fd:29:27:b9:b5:9f:19:de:28:da:e7:1c: c6:a8:67:0c:c4:75:43:6d:bb:d5:f7:0f:db:04:f6: 29:85:9b:82:26:2e:9f:4b:e3:7f:01:75:af:69:2c: c1:54:b0:8c:a4:53:ca:ca:e5:46:9c:62:9b:1e:d8: 2e:aa:6e:a0:d7:f5:56:86:6b:71:d6:66:c6:71:0a: 4b:22:85:a4:ce:4f:04:2c:0c:4e:ce:d0:ee:94:95: dc:b1:48:d0:e9:f5:b8:0d:0d:81:56:e6:76:3a:1d: 25:51:bf:81:ce:97:7a:86:47:93:a3:69:29:ed:ee: 4d:71:7b:cd:8a:88:17:20:3a:20:71:18:40:8d:5d: d7:06:d1:72:18:d9:fb:b8:ca:a2:58:56:4d:c7:3f: 1a:12:62:fc:6e:6a:b6:e2:f8:ce:5c:34:25:63:2b: 19:8e:8e:94:5e:58:74:3f:8d:af:23:4b:3d:a5:00: ad:ff:3a:c3:d9:03:fe:6b:d4:11:10:52:12:9a:88: 85:8b:0e:67:b5:6d:b1:24:ba:8c:81:14:dc:c1:de: db:a4:51:98:66:df:ff:53:6b:1a:07:ed:90:10:cd: da:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:46:D9:40:45:16:5B:8E:46:7A:E8:24:1B:6D:CE:51:1F:71:AF:4A X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f2:af:5e:48:36:05:a4:56:da:04:a7:e4:a3:dc:08:51:9e: ae:6c:12:bf:91:8d:5b:bb:8e:4a:73:e5:ff:c9:ec:07:74:67: bf:d2:be:89:5b:d0:f6:ff:44:03:2e:c4:ad:7a:f9:58:e2:81: d3:43:df:cc:6e:7f:5b:1a:1e:fd:5e:5c:f7:30:0d:25:5d:f4: 48:d1:06:0b:32:3d:0b:d9:27:47:c1:36:fd:28:53:03:a9:ad: 5d:05:a3:38:d5:59:73:40:d7:18:06:85:76:23:ad:6c:cd:7e: 79:bc:67:6f:3b:3b:39:29:8d:70:51:a2:e6:6f:97:32:e9:dd: 80:98:c9:2c:2a:cd:70:d5:12:04:da:df:5e:a2:72:21:ac:91: ab:7b:ce:84:39:6a:57:29:33:cf:05:23:30:b5:6d:6d:bf:12: c5:58:d4:d6:d5:a5:e1:bc:85:71:6b:01:2f:dd:7b:7a:d7:13: 98:e9:d3:43:de:7a:74:f6:e9:31:e1:99:fb:b9:2f:1f:a7:37: 2c:d0:43:f2:88:70:ca:2b:82:3c:a8:be:b2:4f:30:54:28:93: 6d:f8:52:1f:e2:16:30:c9:9b:51:d4:5b:ab:5a:51:45:0e:c6: a4:74:0a:18:b9:5a:3e:6e:51:ff:c6:e3:3c:6e:5f:cb:b9:3d: 0b:4b:67:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjUwOTE4MTc1MDIyWhcNMjUwOTI1MTc1MDIyWjAYMRYwFAYD VQQDEw02OGNjNDY1ZS03OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysAyYxmYt6nB9EzklKXukFfB2d2+srJjdQ4pSi7ZXXb9KSe5tZ8Z3ija5xzG qGcMxHVDbbvV9w/bBPYphZuCJi6fS+N/AXWvaSzBVLCMpFPKyuVGnGKbHtguqm6g 1/VWhmtx1mbGcQpLIoWkzk8ELAxOztDulJXcsUjQ6fW4DQ2BVuZ2Oh0lUb+Bzpd6 hkeTo2kp7e5NcXvNiogXIDogcRhAjV3XBtFyGNn7uMqiWFZNxz8aEmL8bmq24vjO XDQlYysZjo6UXlh0P42vI0s9pQCt/zrD2QP+a9QREFISmoiFiw5ntW2xJLqMgRTc wd7bpFGYZt//U2saB+2QEM3aDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5G2UBF FluORnroJBttzlEfca9KMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa8q9eSDYFpFbaBKfko9wIUZ6ubBK/kY1bu45Kc+X/yewHdGe/0r6J W9D2/0QDLsStevlY4oHTQ9/Mbn9bGh79Xlz3MA0lXfRI0QYLMj0L2SdHwTb9KFMD qa1dBaM41VlzQNcYBoV2I61szX55vGdvOzs5KY1wUaLmb5cy6d2AmMksKs1w1RIE 2t9eonIhrJGre86EOWpXKTPPBSMwtW1tvxLFWNTW1aXhvIVxawEv3Xt61xOY6dND 3np09ukx4Zn7uS8fpzcs0EPyiHDKK4I8qL6yTzBUKJNt+FIf4hYwyZtR1FurWlFF DsakdAoYuVo+blH/xuM8bl/LuT0LS2c2 -----END CERTIFICATE-----Generated at Fri Sep 19 02:34:46 2025 by rpki-client