$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: W4tokIdel5ZJzZNmgoS5VfnR0eLhEpXKRJnT5NEoWC8= Subject key identifier: 87:B2:60:85:16:D8:11:17:9A:A5:E2:2B:79:F6:AF:37:2A:0D:0A:FA Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 06D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 06C8 Signing time: Sun 02 Nov 2025 22:05:29 +0000 Manifest this update: Sun 02 Nov 2025 22:05:29 +0000 Manifest next update: Sun 09 Nov 2025 22:05:29 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: IsXuBMAKT9UuzlINVzZPXDjsPog+v/Gp6lO3GOIAT5g=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: TyaeGX842kMEGDRBcupYe577AZgEgKGiqyo02h56Luk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Nov 2 22:05:29 2025 GMT Not After : Nov 9 22:05:29 2025 GMT Subject: CN=6907d5a9-5e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:e0:5a:a5:46:41:7a:53:40:af:d8:2a:6e: a3:35:7f:bf:3f:43:0b:a2:ed:96:2d:02:ec:0b:47: 2f:0e:ca:2c:7f:b8:2f:2e:c2:82:10:73:aa:d3:b8: 31:04:03:e0:e4:bf:9d:ff:e0:2f:d9:2a:d9:aa:84: 43:68:ab:67:94:56:16:12:ad:5c:1b:35:72:8b:2f: bd:a8:d8:fc:d8:eb:df:5e:dd:56:b3:21:e9:f5:05: 3d:99:90:ee:d2:ce:33:2b:5f:b2:47:57:f8:a2:ea: 70:26:59:bc:2b:9c:4e:41:62:ab:df:16:1a:7f:ba: 35:66:29:03:f5:30:43:5c:99:e8:33:97:c3:bf:ab: 93:b7:43:ef:a4:fd:91:64:65:09:70:03:61:3f:46: 21:fa:26:9f:9f:ca:e1:79:58:43:fb:16:22:03:63: e7:a2:b5:8d:45:9e:cd:0e:5a:56:bb:6f:19:8b:24: e4:d0:a2:6d:cf:88:96:64:18:2c:35:2b:2b:12:83: 45:8f:eb:f2:18:d7:1a:b2:11:96:20:e2:70:c2:43: 2d:08:87:6f:74:74:92:57:55:60:d3:e7:c9:25:a6: 74:f1:16:18:0f:f6:cd:b9:7d:91:40:af:4b:04:d4: f9:fc:ab:36:4a:16:d0:0c:c9:11:ca:fa:5f:3f:a2: be:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B2:60:85:16:D8:11:17:9A:A5:E2:2B:79:F6:AF:37:2A:0D:0A:FA X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:18:87:41:5a:a8:a7:08:2a:56:33:0a:eb:bc:13:63:37:51: 30:f3:a1:e1:86:3a:28:c9:88:ca:ea:ab:ac:66:03:fb:cb:46: 68:d2:9a:e8:ed:a4:4c:eb:42:91:a7:cb:4a:ca:8a:40:28:8d: e9:08:ed:67:d1:c8:a7:7a:d3:27:e0:8f:d1:d5:fa:34:1d:91: a5:89:ee:88:87:ea:bc:0a:f5:54:18:17:3a:6f:fd:9d:87:e1: 94:25:be:31:de:6d:2f:d9:7a:17:9b:93:06:c7:aa:92:02:9d: bf:d2:5a:d1:3a:fa:7a:fc:2f:c7:6c:bd:f2:c4:c4:e2:97:4e: 06:fd:eb:7e:0f:03:49:ef:2d:0c:6e:93:57:75:4e:c3:d8:d9: c3:41:f8:f0:0d:03:4b:83:9a:69:57:6e:78:78:6a:fd:d3:10: 07:fc:71:f9:51:53:99:5e:e0:3e:8b:d1:1e:6e:a4:d8:6c:a9: df:6d:47:df:f1:47:be:a7:8c:d2:da:1e:72:ee:eb:0d:f5:7d: ad:79:0f:11:ed:aa:f5:72:8c:79:32:d7:a0:c6:9d:ee:08:e6: b9:3f:92:3c:5b:cb:f7:39:8a:fe:e1:c3:09:84:95:96:35:db: ed:db:86:bc:51:ce:56:3c:93:73:3e:c2:13:f7:fa:cd:f5:7c: bf:26:5e:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUxMTAyMjIwNTI5WhcNMjUxMTA5MjIwNTI5WjAYMRYwFAYD VQQDEw02OTA3ZDVhOS01ZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRDgWqVGQXpTQK/YKm6jNX+/P0MLou2WLQLsC0cvDsosf7gvLsKCEHOq07gx BAPg5L+d/+Av2SrZqoRDaKtnlFYWEq1cGzVyiy+9qNj82OvfXt1WsyHp9QU9mZDu 0s4zK1+yR1f4oupwJlm8K5xOQWKr3xYaf7o1ZikD9TBDXJnoM5fDv6uTt0PvpP2R ZGUJcANhP0Yh+iafn8rheVhD+xYiA2PnorWNRZ7NDlpWu28ZiyTk0KJtz4iWZBgs NSsrEoNFj+vyGNcashGWIOJwwkMtCIdvdHSSV1Vg0+fJJaZ08RYYD/bNuX2RQK9L BNT5/Ks2ShbQDMkRyvpfP6K+XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeyYIUW 2BEXmqXiK3n2rzcqDQr6MB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUGIdBWqinCCpWMwrrvBNjN1Ew86HhhjooyYjK6qusZgP7y0Zo0pro 7aRM60KRp8tKyopAKI3pCO1n0cinetMn4I/R1fo0HZGlie6Ih+q8CvVUGBc6b/2d h+GUJb4x3m0v2XoXm5MGx6qSAp2/0lrROvp6/C/HbL3yxMTil04G/et+DwNJ7y0M bpNXdU7D2NnDQfjwDQNLg5ppV254eGr90xAH/HH5UVOZXuA+i9EebqTYbKnfbUff 8Ue+p4zS2h5y7usN9X2teQ8R7ar1cox5Mtegxp3uCOa5P5I8W8v3OYr+4cMJhJWW Ndvt24a8Uc5WPJNzPsIT9/rN9Xy/Jl4l -----END CERTIFICATE-----Generated at Tue Nov 4 12:37:06 2025 by rpki-client