$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: rjw5EZbnNrG6QAgzYNb1JPR+HmZ0vQrdgMgzT/GukCs= Subject key identifier: 51:6D:2A:49:7F:B6:BF:13:9F:3F:02:64:6A:12:B7:7D:DA:96:79:6D Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B32 Signing time: Tue 04 Nov 2025 16:23:24 +0000 Manifest this update: Tue 04 Nov 2025 16:23:23 +0000 Manifest next update: Tue 11 Nov 2025 16:23:23 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: HXAXeQCn4wiwpKMt2pJGnuCmLbyzF9fiozVJqu3eMYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6965 (0x1b35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Nov 4 16:23:23 2025 GMT Not After : Nov 11 16:23:23 2025 GMT Subject: CN=690a287c-c150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:82:35:90:3e:67:c6:0d:8f:58:34:0e:5b:8e: ad:a1:5f:bb:ed:d8:5e:eb:ba:c8:68:06:0b:85:93: 55:d8:3f:9e:e6:73:49:7b:ab:51:e4:54:62:70:16: b0:33:ff:36:2f:a3:e7:c7:d8:17:d6:ac:f3:15:84: 9e:d3:ef:17:8f:f6:91:7d:88:b4:18:93:5f:30:db: 11:e8:65:02:b5:fe:d3:02:67:f1:9b:cd:0b:ab:43: 74:63:ce:68:1f:bc:1c:59:a4:56:9a:43:02:03:6e: 60:e2:e7:c8:29:e1:c9:bb:4a:05:3e:e9:36:c3:9a: 21:82:13:24:53:32:ed:4a:d6:6d:45:c6:05:ff:51: dd:58:de:e8:df:b2:38:2c:32:8d:f1:55:10:20:cc: 76:f2:6f:85:d9:8f:79:e2:4f:7e:d6:c3:c7:fe:f2: 12:9b:f2:4b:2f:cb:64:e2:08:55:e0:f5:5d:cc:71: e8:3b:b3:e7:6f:5e:97:db:0d:e5:77:d5:90:cb:bb: 83:78:27:62:eb:f5:c1:db:5b:5f:29:de:2e:22:b9: 15:bf:78:27:2c:06:37:a5:9f:12:1e:47:bd:05:a9: e8:3b:4a:66:20:c0:35:f5:3e:66:04:a9:0e:ef:3d: 21:2d:07:d6:91:b8:8e:2e:2b:76:8d:6d:9e:ca:ca: 8c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6D:2A:49:7F:B6:BF:13:9F:3F:02:64:6A:12:B7:7D:DA:96:79:6D X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a1:0c:15:fd:dd:8a:08:e9:a7:fc:4d:23:91:9f:a9:ba:e3: 3f:a3:43:a9:1c:eb:15:25:ca:87:98:24:c7:cd:72:1c:a2:df: 79:31:09:f0:62:04:ac:b3:b9:bd:11:30:6d:46:6b:38:56:2b: 1e:f0:0d:58:78:b7:87:17:7c:e6:7f:b5:f9:38:9f:8b:fb:4f: b6:7d:21:fd:b7:4a:9b:05:78:53:9b:18:e0:02:c0:e1:b3:3f: 7c:60:37:24:3b:31:f8:f1:1a:96:36:d8:e4:de:7c:2b:37:44: 0f:22:cd:99:d6:9e:e5:3b:25:bb:ee:b0:8f:e6:66:e0:4f:e4: 17:8b:15:11:47:de:e8:19:be:d6:8c:4e:26:9c:60:6c:c7:6e: 57:fa:97:b5:2b:50:d6:5f:96:d1:5f:a6:0b:85:2c:0a:ff:07: 26:43:8b:d0:ed:1d:c6:0d:bc:20:f6:c4:e1:09:13:c1:92:fa: fb:09:fe:9b:e2:9d:0c:cb:38:0e:af:19:a9:10:a9:35:2d:af: 59:02:a7:30:d5:20:28:7d:49:5e:09:89:76:90:19:16:2d:4d: 99:a0:f8:91:a4:f6:f9:d9:7c:7e:63:08:2c:a4:00:4c:90:59: 1f:29:01:a5:ea:fe:49:48:66:bf:db:7d:69:e5:10:c9:a5:a4: 66:cb:74:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUxMTA0MTYyMzIzWhcNMjUxMTExMTYyMzIzWjAYMRYwFAYD VQQDEw02OTBhMjg3Yy1jMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oI1kD5nxg2PWDQOW46toV+77dhe67rIaAYLhZNV2D+e5nNJe6tR5FRicBaw M/82L6Pnx9gX1qzzFYSe0+8Xj/aRfYi0GJNfMNsR6GUCtf7TAmfxm80Lq0N0Y85o H7wcWaRWmkMCA25g4ufIKeHJu0oFPuk2w5ohghMkUzLtStZtRcYF/1HdWN7o37I4 LDKN8VUQIMx28m+F2Y954k9+1sPH/vISm/JLL8tk4ghV4PVdzHHoO7Pnb16X2w3l d9WQy7uDeCdi6/XB21tfKd4uIrkVv3gnLAY3pZ8SHke9BanoO0pmIMA19T5mBKkO 7z0hLQfWkbiOLit2jW2eysqM2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFtKkl/ tr8Tnz8CZGoSt33alnltMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6oQwV/d2KCOmn/E0jkZ+puuM/o0OpHOsVJcqHmCTHzXIcot95MQnw YgSss7m9ETBtRms4Vise8A1YeLeHF3zmf7X5OJ+L+0+2fSH9t0qbBXhTmxjgAsDh sz98YDckOzH48RqWNtjk3nwrN0QPIs2Z1p7lOyW77rCP5mbgT+QXixURR97oGb7W jE4mnGBsx25X+pe1K1DWX5bRX6YLhSwK/wcmQ4vQ7R3GDbwg9sThCRPBkvr7Cf6b 4p0MyzgOrxmpEKk1La9ZAqcw1SAofUleCYl2kBkWLU2ZoPiRpPb52Xx+YwgspABM kFkfKQGl6v5JSGa/231p5RDJpaRmy3T/ -----END CERTIFICATE-----Generated at Wed Nov 5 05:16:36 2025 by rpki-client