$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: fHiB2wVocqefH5foItwl7vhkq5D/d0jqfHJN81iz0ic= Subject key identifier: E7:66:D6:EA:FE:82:A9:39:7E:58:6A:97:E0:77:DD:47:13:7F:2B:08 Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 058A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 0584 Signing time: Tue 04 Nov 2025 23:19:31 +0000 Manifest this update: Tue 04 Nov 2025 23:19:31 +0000 Manifest next update: Tue 11 Nov 2025 23:19:31 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: Auf4ewULRKcXldNAKZRCK3YOaYGNs4I6qdrcGpqerD8=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: CnaozKo0w+oDNLtVLnsapD7Ti4dTXp4OsMG95HJSOiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB, serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Nov 4 23:19:31 2025 GMT Not After : Nov 11 23:19:31 2025 GMT Subject: CN=690a8a03-bd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ab:b9:3c:a7:3b:68:85:15:db:52:39:69:5f: dc:80:c3:fe:1a:2e:e7:e7:84:c2:28:3d:8f:bd:d0: 85:10:bc:54:66:5c:3b:48:a0:79:ff:44:4b:15:2a: d1:b5:58:bd:21:92:c6:2a:81:79:f5:a3:62:af:5b: 2f:a2:8b:1c:f4:d3:7e:d8:b1:5e:ca:11:e9:eb:0e: 7a:da:f4:8a:c4:68:82:00:13:56:04:94:a0:1f:e6: 84:4f:6d:a9:ab:e1:f8:38:3c:50:90:ef:bc:ae:d0: 56:64:c7:08:65:89:bd:ce:a7:d9:da:e0:77:3a:c8: ca:a8:86:81:1d:2b:63:b7:9a:0b:69:72:ba:41:f5: 2c:17:c0:9c:94:df:e3:57:1a:71:8a:33:1d:9a:ef: 97:de:b8:b4:31:94:48:51:76:71:25:89:3b:a3:99: a5:a2:7d:a1:ee:65:01:de:af:04:2f:0a:14:e9:9f: e0:85:ad:66:dc:e8:87:68:44:36:b6:7f:4f:cc:47: ec:21:6c:cc:1b:f4:d3:5b:de:6b:71:21:e8:69:4d: 46:3e:af:d6:38:9c:09:97:2e:06:04:66:d9:94:0b: 04:8b:e0:2b:b0:7b:46:29:0c:79:db:7a:d0:f8:0e: 50:2a:26:d6:e7:73:37:4b:d2:d5:39:1d:25:63:35: 7b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:66:D6:EA:FE:82:A9:39:7E:58:6A:97:E0:77:DD:47:13:7F:2B:08 X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:1b:3b:10:79:54:bd:2f:4d:5e:0a:38:52:33:7a:b0:b1:90: 5e:99:4e:97:36:de:9e:d3:d8:13:20:f4:df:78:4a:ae:bc:30: 05:1f:cd:35:0d:14:0a:4b:b5:04:4b:95:49:7e:db:2d:b8:b4: 2b:59:33:65:b1:7f:c0:de:c1:f1:b7:89:e5:2e:a0:a0:36:46: e7:22:6b:4b:63:92:f2:ce:2a:23:ca:09:b3:a2:fd:fb:57:2d: 65:15:ab:4e:3c:e5:80:bd:4b:95:af:97:31:cb:da:04:ea:a1: 22:13:03:c4:49:2f:6f:bc:f5:17:c7:06:0a:3d:85:0d:2e:12: 56:06:98:89:b8:bf:d2:50:ff:38:d9:31:84:ab:e2:03:d8:fc: da:94:c2:41:b3:11:5f:0b:e7:72:57:88:da:4b:0b:e6:3e:59: a8:6a:c9:2d:28:d7:07:6b:e9:d2:22:24:7c:bc:ce:83:03:bc: 03:cb:1e:b2:14:18:0c:58:c0:f2:d1:37:79:a1:ef:f3:7a:8c: ba:d4:d3:b0:13:c3:9b:7d:22:b8:82:ca:73:2c:d8:8b:03:cf: 78:68:9c:27:b8:d4:25:02:44:2d:46:82:03:f9:74:93:3f:d3: f1:ee:06:be:fe:15:b1:94:51:8c:58:60:86:f3:b6:a1:0a:83: 60:6d:80:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjUxMTA0MjMxOTMxWhcNMjUxMTExMjMxOTMxWjAYMRYwFAYD VQQDEw02OTBhOGEwMy1iZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qu5PKc7aIUV21I5aV/cgMP+Gi7n54TCKD2PvdCFELxUZlw7SKB5/0RLFSrR tVi9IZLGKoF59aNir1svoosc9NN+2LFeyhHp6w562vSKxGiCABNWBJSgH+aET22p q+H4ODxQkO+8rtBWZMcIZYm9zqfZ2uB3OsjKqIaBHStjt5oLaXK6QfUsF8CclN/j VxpxijMdmu+X3ri0MZRIUXZxJYk7o5mlon2h7mUB3q8ELwoU6Z/gha1m3OiHaEQ2 tn9PzEfsIWzMG/TTW95rcSHoaU1GPq/WOJwJly4GBGbZlAsEi+ArsHtGKQx523rQ +A5QKibW53M3S9LVOR0lYzV7pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdm1ur+ gqk5flhql+B33UcTfysIMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnGzsQeVS9L01eCjhSM3qwsZBemU6XNt6e09gTIPTfeEquvDAFH801 DRQKS7UES5VJftstuLQrWTNlsX/A3sHxt4nlLqCgNkbnImtLY5Lyziojygmzov37 Vy1lFatOPOWAvUuVr5cxy9oE6qEiEwPESS9vvPUXxwYKPYUNLhJWBpiJuL/SUP84 2TGEq+ID2PzalMJBsxFfC+dyV4jaSwvmPlmoasktKNcHa+nSIiR8vM6DA7wDyx6y FBgMWMDy0Td5oe/zeoy61NOwE8ObfSK4gspzLNiLA894aJwnuNQlAkQtRoID+XST P9Px7ga+/hWxlFGMWGCG87ahCoNgbYAJ -----END CERTIFICATE-----Generated at Wed Nov 5 11:48:33 2025 by rpki-client