$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: U+g6iJlBSq8BweefnC+RAnyNhhubY1CbSc/tjOXw8rU= Subject key identifier: C3:F5:C8:C3:99:78:D6:18:8B:91:FE:E2:DA:28:17:B2:2C:0F:13:DF Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 039E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 0399 Signing time: Mon 03 Nov 2025 00:43:29 +0000 Manifest this update: Mon 03 Nov 2025 00:43:29 +0000 Manifest next update: Mon 10 Nov 2025 00:43:29 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: 77EoB1IQ9oTsCeyXSuvIt/Ccc+OYO41BlGVUbfYBpMo=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: OZN4xQkAGlo2J7xAsq7WK/TKxkfRBmTruJ0GM4QH81c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Nov 3 00:43:29 2025 GMT Not After : Nov 10 00:43:29 2025 GMT Subject: CN=6907fab1-ad68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:bd:94:c2:de:13:95:a0:c8:8e:c7:2f:bd: 72:f9:03:d5:4d:4f:27:db:09:38:a7:69:e4:e4:df: d0:aa:89:d4:f3:56:dc:af:b6:33:32:46:97:5f:a9: a7:2e:6c:cd:0c:0d:d5:5f:bc:e9:d1:52:70:1b:75: 5e:3e:7c:e0:f7:90:13:52:29:64:11:70:c7:64:9f: 4a:6a:6a:94:d9:56:2a:b6:82:d3:09:d7:6a:de:22: 2f:a0:ad:d9:f6:7b:d6:0d:ff:2b:c7:c9:48:99:c3: ae:67:97:9b:4f:83:48:a2:76:59:7f:98:50:e7:fe: 2d:5d:2b:b4:81:e4:23:7b:01:6f:40:6f:eb:b5:a8: 3a:6e:34:b9:3f:a4:89:02:61:3c:18:6b:f0:84:61: 4b:43:3d:25:c8:83:a1:46:1e:73:6c:52:1c:7a:42: 9f:db:30:83:31:02:a7:83:a8:62:79:03:c6:f9:58: b0:cb:6b:7a:30:2e:33:ab:96:9c:62:7c:ac:d2:a5: 74:43:40:a7:9c:33:d6:f2:3f:6f:fe:ef:7f:82:50: af:b7:9d:77:ed:81:98:d5:12:48:dd:42:d5:19:95: e9:a7:6c:00:f8:79:4b:da:3a:af:ed:49:d4:49:af: 45:14:79:4e:70:fe:56:15:ad:ac:2f:cb:10:ac:a8: ed:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F5:C8:C3:99:78:D6:18:8B:91:FE:E2:DA:28:17:B2:2C:0F:13:DF X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:da:dc:74:51:d6:52:1c:06:10:a3:95:d3:52:57:24:d2:1f: 57:a7:e1:b0:0b:f5:ed:07:e3:6b:fe:45:f5:4e:dd:75:13:61: ab:5a:0b:8f:5b:94:05:ae:87:99:71:55:cc:a8:5a:1a:e9:9f: ce:c0:6c:be:33:c5:c1:ac:4b:54:24:36:6d:82:af:ae:7c:3b: 25:cd:45:aa:52:c7:3d:6f:95:7a:2b:72:cd:06:d4:93:2c:5d: 9a:60:e2:05:e9:8f:4a:fb:e3:46:ad:79:ed:77:81:95:c2:f4: 20:73:71:f9:ef:35:98:cc:f0:19:f8:08:4b:71:81:bb:4a:e0: 31:ed:c8:57:4b:e4:ad:00:d9:db:62:de:41:1e:43:d1:34:fa: 13:bc:9c:23:d4:19:16:e0:dd:5b:3b:5b:df:75:f3:c9:30:60: 21:33:53:45:57:5d:cc:bc:64:e6:13:4d:7e:50:22:b7:7c:8a: c1:6d:66:bc:39:2a:31:ce:b6:25:3d:c3:b1:14:65:aa:58:06: 24:d3:f0:92:83:b7:31:b8:7a:f2:85:29:bb:93:b8:62:24:8a: a1:74:49:b6:db:06:07:e4:c5:16:05:5b:91:4b:c4:ec:9d:8a: 93:76:c0:5e:e6:0e:00:32:c1:7b:ee:ad:03:a8:59:ef:7f:0e: 80:f0:0e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjUxMTAzMDA0MzI5WhcNMjUxMTEwMDA0MzI5WjAYMRYwFAYD VQQDEw02OTA3ZmFiMS1hZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIe9lMLeE5WgyI7HL71y+QPVTU8n2wk4p2nk5N/QqonU81bcr7YzMkaXX6mn LmzNDA3VX7zp0VJwG3VePnzg95ATUilkEXDHZJ9KamqU2VYqtoLTCddq3iIvoK3Z 9nvWDf8rx8lImcOuZ5ebT4NIonZZf5hQ5/4tXSu0geQjewFvQG/rtag6bjS5P6SJ AmE8GGvwhGFLQz0lyIOhRh5zbFIcekKf2zCDMQKng6hieQPG+Viwy2t6MC4zq5ac Ynys0qV0Q0CnnDPW8j9v/u9/glCvt5137YGY1RJI3ULVGZXpp2wA+HlL2jqv7UnU Sa9FFHlOcP5WFa2sL8sQrKjtGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMP1yMOZ eNYYi5H+4tooF7IsDxPfMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB92tx0UdZSHAYQo5XTUlck0h9Xp+GwC/XtB+Nr/kX1Tt11E2GrWguP W5QFroeZcVXMqFoa6Z/OwGy+M8XBrEtUJDZtgq+ufDslzUWqUsc9b5V6K3LNBtST LF2aYOIF6Y9K++NGrXntd4GVwvQgc3H57zWYzPAZ+AhLcYG7SuAx7chXS+StANnb Yt5BHkPRNPoTvJwj1BkW4N1bO1vfdfPJMGAhM1NFV13MvGTmE01+UCK3fIrBbWa8 OSoxzrYlPcOxFGWqWAYk0/CSg7cxuHryhSm7k7hiJIqhdEm22wYH5MUWBVuRS8Ts nYqTdsBe5g4AMsF77q0DqFnvfw6A8A4g -----END CERTIFICATE-----Generated at Tue Nov 4 12:40:41 2025 by rpki-client