$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft File: PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json) Hash identifier: XrZUC2hrCXz+f64XsOrvQrAiftIBrgsAwFNTYBwLqD8= Subject key identifier: 86:A4:0F:D7:FD:5E:0C:6B:C6:3F:89:13:14:48:29:70:19:D7:9D:9D Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft Manifest number: 0181 Signing time: Mon 03 Nov 2025 03:39:53 +0000 Manifest this update: Mon 03 Nov 2025 03:39:52 +0000 Manifest next update: Mon 10 Nov 2025 03:39:52 +0000 Files and hashes: 1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: L2hKldlQdkyQ2V9sW4WyGOhqPCtTVkkXEpHDCsmY6UM=) 2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: L+aSJH2lWC1anAfV1QDeoFg2+6ljff+C6eVKVad/Lj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0, serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Nov 3 03:39:52 2025 GMT Not After : Nov 10 03:39:52 2025 GMT Subject: CN=69082409-7451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:df:2f:24:72:0f:11:09:9a:9c:9b:bc:bd:1d: 81:bd:bd:8c:7b:e8:8e:48:b2:9e:f0:4d:7b:f5:cd: 8c:b9:02:f2:a3:85:2e:72:c4:95:99:da:a1:a2:b3: 88:90:98:af:09:2c:e1:b5:26:48:3f:da:7f:ed:fe: 55:bc:f1:15:64:bd:37:f1:10:2e:8b:48:36:7a:9b: 95:b8:e3:50:39:e3:d5:14:3f:2a:df:1c:ce:88:c7: d5:cf:03:a1:40:10:bd:c8:cf:56:74:fe:06:0c:06: 0e:f2:b5:e2:7f:ca:83:4e:81:67:c0:57:a2:f9:38: c7:69:da:91:3d:31:6c:38:d9:de:26:d3:a8:e8:bc: ac:31:65:f4:7a:bb:b6:b6:e6:89:01:56:ac:ec:c3: 05:40:63:50:6b:71:82:13:d7:74:b6:fe:fe:4f:08: 3e:87:4f:23:b0:3d:e3:72:bd:f1:ff:87:15:c2:05: 7a:e4:7a:34:4c:b4:20:f7:38:39:b0:89:19:ef:32: f0:6d:a3:f5:a4:21:da:c9:5a:30:1e:cb:e1:b7:c2: d2:d6:45:b7:d5:85:2c:90:ee:28:36:85:aa:c7:ce: e6:92:c8:47:99:fe:9d:90:09:4b:51:8f:98:0a:a2: f7:e9:d2:3d:b2:c8:35:f1:6d:aa:69:98:ad:60:2d: 3b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A4:0F:D7:FD:5E:0C:6B:C6:3F:89:13:14:48:29:70:19:D7:9D:9D X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8f:26:01:10:5c:a7:72:c2:ea:92:2e:19:e7:44:1f:c0:08: 97:df:4a:bd:bd:1f:10:29:1b:71:80:e4:a7:18:7f:95:57:26: ce:cd:f3:40:f7:c0:8c:21:58:7a:3f:4b:82:87:13:ad:08:85: d8:a8:8a:25:ca:f0:8d:03:7d:c3:01:75:2d:35:b8:f2:e6:a6: 7a:e8:05:0d:b5:1b:6d:9d:ae:bb:65:04:dc:eb:35:d8:c1:85: 66:3c:a9:df:be:d2:29:6a:4a:2c:e5:b5:e4:74:a7:5d:75:60: fa:f5:99:89:f0:d5:0f:6a:02:de:6a:a2:c4:fd:fd:ee:0d:2d: f3:0f:66:b6:49:e4:24:11:08:69:4c:62:0f:b4:69:fb:61:14: be:69:93:4d:0a:da:8a:a5:e1:8a:89:61:07:3b:b9:f4:80:ff: 05:85:83:69:fe:6a:16:ab:55:5c:6d:39:34:a8:6c:a7:37:ab: 00:ff:42:15:dc:46:ba:5e:a5:e6:d1:f8:c1:d8:8f:f7:c0:0f: 21:3e:1e:a1:c9:8d:65:ab:94:d1:2c:c2:23:50:71:95:11:51: 57:3d:0e:0a:93:05:c8:ef:a1:54:f7:11:3f:5b:5f:da:0c:15: 7e:96:f9:62:c3:22:13:05:0a:de:db:1f:d0:68:bc:45:b3:97: 4a:87:54:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjUxMTAzMDMzOTUyWhcNMjUxMTEwMDMzOTUyWjAYMRYwFAYD VQQDEw02OTA4MjQwOS03NDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy98vJHIPEQmanJu8vR2Bvb2Me+iOSLKe8E179c2MuQLyo4UucsSVmdqhorOI kJivCSzhtSZIP9p/7f5VvPEVZL038RAui0g2epuVuONQOePVFD8q3xzOiMfVzwOh QBC9yM9WdP4GDAYO8rXif8qDToFnwFei+TjHadqRPTFsONneJtOo6LysMWX0eru2 tuaJAVas7MMFQGNQa3GCE9d0tv7+Twg+h08jsD3jcr3x/4cVwgV65Ho0TLQg9zg5 sIkZ7zLwbaP1pCHayVowHsvht8LS1kW31YUskO4oNoWqx87mkshHmf6dkAlLUY+Y CqL36dI9ssg18W2qaZitYC07mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIakD9f9 Xgxrxj+JExRIKXAZ152dMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTBFMC8zRUIxMEM5QTZEOTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVW M3o0OWhhcEU1MUg0RnljeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAijyYBEFyncsLqki4Z50QfwAiX30q9vR8QKRtxgOSnGH+VVybOzfNA 98CMIVh6P0uChxOtCIXYqIolyvCNA33DAXUtNbjy5qZ66AUNtRttna67ZQTc6zXY wYVmPKnfvtIpakos5bXkdKdddWD69ZmJ8NUPagLeaqLE/f3uDS3zD2a2SeQkEQhp TGIPtGn7YRS+aZNNCtqKpeGKiWEHO7n0gP8FhYNp/moWq1VcbTk0qGynN6sA/0IV 3Ea6XqXm0fjB2I/3wA8hPh6hyY1lq5TRLMIjUHGVEVFXPQ4KkwXI76FU9xE/W1/a DBV+lvliwyITBQre2x/QaLxFs5dKh1Q5 -----END CERTIFICATE-----Generated at Wed Nov 5 02:04:16 2025 by rpki-client