$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft File: PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft (raw, json) Hash identifier: I+1Mln0la7/EaAZvO4coYSx2XmPOVr9RzOm4u4PUWPU= Subject key identifier: 67:5A:6A:09:66:79:9A:98:81:4C:54:10:D6:4E:BA:33:7F:F8:9A:F6 Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft Manifest number: 0203 Signing time: Mon 03 Nov 2025 02:27:54 +0000 Manifest this update: Mon 03 Nov 2025 02:27:53 +0000 Manifest next update: Mon 10 Nov 2025 02:27:53 +0000 Files and hashes: 1: PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl (hash: mPsjPKsfVbS3N+RLitMgmDUcghXlXzWb1T8snniQKL4=) 2: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (hash: 1FbgogUKsuIfXEKaTsa4RV0e3CNtC1HQdrvDxgG3fiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1, serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Nov 3 02:27:53 2025 GMT Not After : Nov 10 02:27:53 2025 GMT Subject: CN=69081329-1870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d0:62:03:0b:42:8e:84:b9:69:bb:35:8e:e1: 28:cb:bd:0d:3a:51:92:38:4a:23:51:2a:fa:10:77: ab:ef:4f:71:91:80:f7:f5:7d:65:90:51:02:56:33: 51:1f:83:2a:6e:d0:05:d7:eb:47:04:e9:4c:0f:8a: 0b:2b:10:7f:fa:bf:09:2f:f4:5d:1f:fd:6f:0b:5c: 62:81:a9:47:a6:39:84:ed:39:c5:81:b6:de:3b:bd: e4:69:44:ef:5c:22:7a:37:95:15:11:42:f0:45:f9: 3c:18:78:ef:d3:58:4d:94:1e:f3:0e:79:e5:bb:d3: 5c:78:bb:a4:c3:67:97:3f:17:9f:d7:fb:24:66:44: a5:0a:ec:a5:3a:3e:62:49:fb:c6:bc:d9:3b:ee:f0: 3a:02:d7:0c:e9:4d:08:62:d4:af:28:7c:8f:b7:ef: c2:5a:f1:87:7f:44:83:9b:3c:4d:a0:e3:36:87:8d: 20:72:b0:47:5f:6b:d4:a3:14:44:57:3c:cd:59:48: d4:00:4f:52:06:6b:fe:40:1f:80:be:f3:2b:c6:ae: 05:8b:54:e1:f5:51:d8:5d:52:c1:a6:4e:9e:be:f9: bf:c3:2c:a4:51:38:32:de:85:b1:20:b2:7f:71:2d: e9:e7:04:1b:71:5f:bc:eb:89:06:88:b5:c8:06:f9: e9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5A:6A:09:66:79:9A:98:81:4C:54:10:D6:4E:BA:33:7F:F8:9A:F6 X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:1f:ea:c5:9f:6a:d2:c7:1f:b0:e7:c5:4a:37:73:17:43:68: 2e:48:d7:9e:cf:07:db:4a:cb:c3:04:a0:93:f1:77:d8:94:62: 1a:3a:40:de:ea:60:4d:fd:2e:21:eb:d9:90:a7:3b:50:e7:91: 7a:22:15:15:9a:b9:44:8a:fe:2c:4d:f6:c9:a6:db:c3:f3:2f: 8d:09:41:fa:f8:b1:73:8c:11:f1:92:7c:d8:38:1d:9f:23:25: e3:e5:79:65:d1:6c:d9:d3:d2:fe:9e:e3:4a:76:a9:fc:a5:64: 35:6f:df:53:4d:5c:9f:92:77:ee:25:63:d7:db:db:25:96:29: 1f:a8:d7:4d:53:58:96:c8:b1:e4:03:c2:f2:38:65:12:bd:6b: 8f:72:14:f3:2c:69:62:23:3e:36:83:5e:62:f4:d6:b7:da:1b: fe:91:b4:d1:9f:d2:36:23:b4:71:3f:87:9a:b6:cf:1a:f3:ec: 64:75:50:10:aa:b6:96:9d:36:61:e0:9e:96:9a:61:10:eb:2a: ad:a0:09:cc:28:f5:37:3d:16:c4:27:65:b6:77:db:7e:9f:77: eb:5e:d6:7b:29:c8:d7:30:db:a0:28:3e:83:9c:a7:9e:0d:21: 68:49:82:d9:79:79:0f:fd:c8:0c:5f:c4:a8:26:3d:f6:cb:fb: 0e:53:44:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjUxMTAzMDIyNzUzWhcNMjUxMTEwMDIyNzUzWjAYMRYwFAYD VQQDEw02OTA4MTMyOS0xODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9BiAwtCjoS5abs1juEoy70NOlGSOEojUSr6EHer709xkYD39X1lkFECVjNR H4MqbtAF1+tHBOlMD4oLKxB/+r8JL/RdH/1vC1xigalHpjmE7TnFgbbeO73kaUTv XCJ6N5UVEULwRfk8GHjv01hNlB7zDnnlu9NceLukw2eXPxef1/skZkSlCuylOj5i SfvGvNk77vA6AtcM6U0IYtSvKHyPt+/CWvGHf0SDmzxNoOM2h40gcrBHX2vUoxRE VzzNWUjUAE9SBmv+QB+AvvMrxq4Fi1Th9VHYXVLBpk6evvm/wyykUTgy3oWxILJ/ cS3p5wQbcV+864kGiLXIBvnp2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdaaglm eZqYgUxUENZOujN/+Jr2MB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJFMS9EQTg2QjYxNkJBNkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdq VU5Icy03cG15cjBiU1B0OFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbH+rFn2rSxx+w58VKN3MXQ2guSNeezwfbSsvDBKCT8XfYlGIaOkDe 6mBN/S4h69mQpztQ55F6IhUVmrlEiv4sTfbJptvD8y+NCUH6+LFzjBHxknzYOB2f IyXj5Xll0WzZ09L+nuNKdqn8pWQ1b99TTVyfknfuJWPX29sllikfqNdNU1iWyLHk A8LyOGUSvWuPchTzLGliIz42g15i9Na32hv+kbTRn9I2I7RxP4eats8a8+xkdVAQ qraWnTZh4J6WmmEQ6yqtoAnMKPU3PRbEJ2W2d9t+n3frXtZ7KcjXMNugKD6DnKee DSFoSYLZeXkP/cgMX8SoJj32y/sOU0QN -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:02 2025 by rpki-client