$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: 4EWtsMLBBPCw5JwhbmBeGZmt54LVRKxZfFrLft7ujOs= Subject key identifier: 5C:FD:67:A8:A2:C8:C2:EC:F9:B5:7D:81:A6:1E:E6:E5:E7:D4:98:C5 Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 2737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 2713 Signing time: Tue 04 Nov 2025 15:44:21 +0000 Manifest this update: Tue 04 Nov 2025 15:44:20 +0000 Manifest next update: Tue 11 Nov 2025 15:44:20 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: y8fTD4UlFdDIQuGaj2VvFdmdq+nYxXu30bKXmrhuZ+8=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: rWS5j2TJ+tCGGvBtanx4musy7r04IRKphVI4Md/BpKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10039 (0x2737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C, serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: Nov 4 15:44:20 2025 GMT Not After : Nov 11 15:44:20 2025 GMT Subject: CN=690a1f54-1f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:57:fa:22:47:91:0e:4a:d5:a9:fa:75:e6: e2:4c:1f:6b:83:5e:1a:b6:0b:36:e1:06:0f:16:fc: cb:8d:41:b4:f4:38:99:0a:f5:d4:88:9c:a0:30:bc: 1e:eb:c2:8c:d8:69:a3:9f:07:7e:d5:1e:9a:5f:da: ed:73:18:e6:18:89:32:e3:33:95:e2:7b:12:1c:e1: 34:a4:4e:9a:5f:e5:53:f0:d2:88:54:6a:1d:bf:91: b9:52:e5:ed:e2:63:c8:f6:61:e4:80:91:af:52:e5: 87:c8:bb:70:67:75:a7:f5:ea:2e:ef:54:0d:0e:6a: a9:6b:11:30:82:b4:9e:cb:13:ef:88:4e:54:a6:60: 90:e2:94:35:64:bd:00:06:29:1f:2c:b4:df:72:e0: f8:0b:0b:e0:b6:89:b4:14:52:4d:6c:19:49:69:78: c3:80:a1:57:25:04:2b:33:b3:6e:e2:6b:32:8a:f5: 7c:8b:c1:50:b1:80:3f:f4:dd:69:43:ca:63:d2:8c: cf:a8:89:21:ce:1b:42:1d:e5:77:d3:a4:e4:f7:e5: 5b:96:52:ae:42:6c:db:0d:bd:70:0b:2a:ce:a7:6b: 6d:f0:9c:3c:2d:3a:0e:f5:0c:df:f7:e1:a1:05:bc: 6b:d1:45:c5:a8:be:33:61:77:da:30:0c:d1:e6:ae: b0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FD:67:A8:A2:C8:C2:EC:F9:B5:7D:81:A6:1E:E6:E5:E7:D4:98:C5 X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:98:fe:3d:95:3b:d6:2e:60:fe:54:74:6c:ae:24:fb:77:77: 63:79:a3:9f:0d:fb:25:18:28:f6:04:30:03:1c:cf:b9:50:aa: c1:01:30:2a:9d:35:b8:63:dd:9e:ed:b7:33:9b:28:48:31:af: b2:e0:be:77:01:c3:e3:0b:dd:38:e3:af:d6:b8:84:55:7c:ee: c4:80:da:47:1e:ff:01:72:fb:3c:53:ff:f6:f7:08:d4:2b:f6: 08:56:05:cc:5a:22:02:7a:9d:02:35:6a:16:e3:b1:c7:f9:ae: c9:8a:24:1f:db:90:dd:28:a6:35:29:41:22:bc:1e:dc:ec:4f: c2:e1:3b:67:ce:d3:61:24:a1:1e:d3:04:90:df:a1:cc:be:d7: 57:df:1e:7b:9f:f4:ee:63:a1:46:f9:bc:c6:e3:b7:ae:6f:9f: 9b:1b:15:f6:3b:7f:75:19:42:b7:32:89:2f:d2:16:bb:08:00: 36:33:c8:e2:72:14:86:c1:27:f8:6d:08:cd:20:1d:49:a2:cc: 25:72:de:a5:b9:d4:2b:01:4d:5d:ee:38:06:56:3b:d2:3a:f7: 36:ed:f5:84:30:49:2a:f0:24:ee:85:50:f0:ad:7d:73:ed:ae: 7d:4c:fd:2e:33:98:c1:00:92:11:0d:e6:c1:64:5e:ec:d1:25: b9:03:c8:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUxMTA0MTU0NDIwWhcNMjUxMTExMTU0NDIwWjAYMRYwFAYD VQQDEw02OTBhMWY1NC0xZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJdX+iJHkQ5K1an6debiTB9rg14atgs24QYPFvzLjUG09DiZCvXUiJygMLwe 68KM2Gmjnwd+1R6aX9rtcxjmGIky4zOV4nsSHOE0pE6aX+VT8NKIVGodv5G5UuXt 4mPI9mHkgJGvUuWHyLtwZ3Wn9eou71QNDmqpaxEwgrSeyxPviE5UpmCQ4pQ1ZL0A BikfLLTfcuD4Cwvgtom0FFJNbBlJaXjDgKFXJQQrM7Nu4msyivV8i8FQsYA/9N1p Q8pj0ozPqIkhzhtCHeV306Tk9+VbllKuQmzbDb1wCyrOp2tt8Jw8LToO9Qzf9+Gh Bbxr0UXFqL4zYXfaMAzR5q6w+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFz9Z6ii yMLs+bV9gaYe5uXn1JjFMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgmP49lTvWLmD+VHRsriT7d3djeaOfDfslGCj2BDADHM+5UKrBATAq nTW4Y92e7bczmyhIMa+y4L53AcPjC90446/WuIRVfO7EgNpHHv8Bcvs8U//29wjU K/YIVgXMWiICep0CNWoW47HH+a7JiiQf25DdKKY1KUEivB7c7E/C4TtnztNhJKEe 0wSQ36HMvtdX3x57n/TuY6FG+bzG47eub5+bGxX2O391GUK3Mokv0ha7CAA2M8ji chSGwSf4bQjNIB1Joswlct6ludQrAU1d7jgGVjvSOvc27fWEMEkq8CTuhVDwrX1z 7a59TP0uM5jBAJIRDebBZF7s0SW5A8g5 -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:35 2025 by rpki-client