$ rpki-client -vvf rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft File: PHUP1suMdwFoHlNr3WtxXxkrivk.mft (raw, json) Hash identifier: lGSCc+Gkm9IeS8P7XO6EYglPXi/CczN3fo2kpHrpbng= Subject key identifier: 10:9D:52:80:EA:3C:91:D2:3D:C1:9E:FC:EE:E3:3C:5F:41:87:C9:E6 Authority key identifier: 3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 Certificate issuer: /CN=A914233F/serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft Manifest number: 01A2 Signing time: Mon 03 Nov 2025 03:22:04 +0000 Manifest this update: Mon 03 Nov 2025 03:22:03 +0000 Manifest next update: Mon 10 Nov 2025 03:22:03 +0000 Files and hashes: 1: PHUP1suMdwFoHlNr3WtxXxkrivk.crl (hash: ms8dClkAFcebhv0kHxEKFdJv2fs9RthbejJQ0bvM5go=) 2: D2AD84364AE411EE95B72651C4F9AE02.roa (hash: PXugVBDjMMSZngC/IAk1O9uisIYx3s5Ti9BVaDUEHRI=) 3: D1DA657E4AE411EE95B72651C4F9AE02.roa (hash: rYuzAQ2V3DCYFm8hLaFsEVJnKAGKcFikbLAjBKDZ9TQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914233F, serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Validity Not Before: Nov 3 03:22:03 2025 GMT Not After : Nov 10 03:22:03 2025 GMT Subject: CN=69081fdc-2799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:df:d1:4d:c2:f5:b9:88:cf:23:f5:a6:e4: f3:db:23:a8:be:05:c7:9c:1b:fb:01:ba:8e:cc:f4: c8:f4:aa:2b:b1:51:de:84:58:f5:aa:15:ba:d9:bd: 8d:6e:78:dc:70:ce:df:7c:56:20:e0:22:f0:22:dc: 58:f9:02:94:e8:3f:d0:2d:14:7a:9d:37:3d:ee:00: ee:3e:b3:51:f3:b3:87:df:ce:cd:95:7e:89:4c:0c: e3:db:29:a9:66:5f:a3:dd:23:2a:06:e6:bc:b9:22: cb:61:e3:8a:b3:36:3d:a9:88:24:12:be:cc:ee:0b: 00:0c:88:b5:a8:01:26:89:a5:1e:e5:e5:d5:c4:18: d9:44:4b:62:51:e5:36:15:33:46:5f:65:f7:3a:12: 8a:fd:44:26:9b:c1:a2:b2:54:1a:f0:05:de:e5:73: e6:1f:70:99:5b:8c:d1:3f:e5:dd:a1:6a:47:d6:4e: 51:ef:0e:c2:a1:d9:2e:a8:bb:24:31:25:0a:27:d0: 85:5e:2c:82:52:9a:45:41:e7:fa:a8:82:5d:c9:32: 5f:87:4c:7c:a2:f4:83:f9:79:c4:f5:37:60:6c:38: 51:40:6e:97:e1:5e:57:29:87:d9:d1:aa:b0:bf:41: f0:6b:5e:b6:8c:2b:f0:46:05:38:c8:3d:fc:26:09: ff:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9D:52:80:EA:3C:91:D2:3D:C1:9E:FC:EE:E3:3C:5F:41:87:C9:E6 X509v3 Authority Key Identifier: keyid:3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:8e:3c:14:75:91:9f:55:27:b3:d6:7b:a6:ac:26:8c:df:a9: 4e:f2:23:89:ae:ec:2b:3d:14:04:75:42:9e:f9:ee:c7:12:a3: 69:a8:87:ae:3b:3d:3f:b6:05:bb:40:ac:1e:54:79:22:a5:82: 1c:ba:8a:ff:4a:b4:a3:ad:34:ae:ac:90:93:91:09:af:1a:ec: 29:f4:eb:50:9a:37:a4:1b:76:60:66:0a:d0:b5:df:eb:07:4c: eb:6a:ac:b9:69:95:82:2b:7a:37:1f:f9:05:34:c5:83:df:9c: 48:47:36:33:aa:85:fa:86:6f:b9:c0:cf:10:b3:00:fe:96:e1: 10:7e:8e:29:a0:ae:b0:00:3c:0f:6d:aa:8c:66:4b:3d:11:2f: ab:4d:2a:99:03:29:44:6c:b8:a5:3e:05:1b:65:9f:6e:e9:57: ae:5c:b8:e2:47:8e:68:48:17:32:0f:78:5f:3d:ca:86:69:4f: 2b:08:a7:a2:b4:eb:f3:72:a2:57:b8:15:58:c5:a5:41:8a:4e: 5c:6d:ab:53:25:95:79:bf:76:2d:c3:09:fd:a5:ea:04:a3:a7: 05:51:17:8e:6c:ed:67:29:e6:1d:78:1c:2f:37:b0:48:7f:bb: 09:5c:6b:63:f0:48:38:5a:74:fb:00:3d:7f:63:80:da:72:80: ab:3f:e7:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzM0YxMTAvBgNVBAUTKDNDNzUwRkQ2Q0I4Qzc3MDE2ODFFNTM2QkRENkI3MTVG MTkyQjhBRjkwHhcNMjUxMTAzMDMyMjAzWhcNMjUxMTEwMDMyMjAzWjAYMRYwFAYD VQQDEw02OTA4MWZkYy0yNzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVbf0U3C9bmIzyP1puTz2yOovgXHnBv7AbqOzPTI9KorsVHehFj1qhW62b2N bnjccM7ffFYg4CLwItxY+QKU6D/QLRR6nTc97gDuPrNR87OH387NlX6JTAzj2ymp Zl+j3SMqBua8uSLLYeOKszY9qYgkEr7M7gsADIi1qAEmiaUe5eXVxBjZREtiUeU2 FTNGX2X3OhKK/UQmm8GislQa8AXe5XPmH3CZW4zRP+XdoWpH1k5R7w7CodkuqLsk MSUKJ9CFXiyCUppFQef6qIJdyTJfh0x8ovSD+XnE9TdgbDhRQG6X4V5XKYfZ0aqw v0Hwa162jCvwRgU4yD38Jgn/xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCdUoDq PJHSPcGe/O7jPF9Bh8nmMB8GA1UdIwQYMBaAFDx1D9bLjHcBaB5Ta91rcV8ZK4r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjMzRi84NUMyMEJEQTQ2 M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3Rm9IbE5yM1d0eFh4a3Jp dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BIVVAxc3VNZHdGb0hsTnIzV3R4WHhrcml2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjMzRi84NUMyMEJEQTQ2M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3 Rm9IbE5yM1d0eFh4a3JpdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxjjwUdZGfVSez1numrCaM36lO8iOJruwrPRQEdUKe+e7HEqNpqIeu Oz0/tgW7QKweVHkipYIcuor/SrSjrTSurJCTkQmvGuwp9OtQmjekG3ZgZgrQtd/r B0zraqy5aZWCK3o3H/kFNMWD35xIRzYzqoX6hm+5wM8QswD+luEQfo4poK6wADwP baqMZks9ES+rTSqZAylEbLilPgUbZZ9u6VeuXLjiR45oSBcyD3hfPcqGaU8rCKei tOvzcqJXuBVYxaVBik5cbatTJZV5v3Ytwwn9peoEo6cFUReObO1nKeYdeBwvN7BI f7sJXGtj8Eg4WnT7AD1/Y4DacoCrP+fq -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:51 2025 by rpki-client