$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: 9c9l6xLtWakyhQq1Ann4zyewlQ5WBudis0P563FjKVE= Subject key identifier: 3A:79:2C:EE:BA:A2:6A:6B:9E:46:15:EF:95:38:85:4A:F1:5D:A2:CE Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BEA Signing time: Sun 02 Nov 2025 18:50:38 +0000 Manifest this update: Sun 02 Nov 2025 18:50:37 +0000 Manifest next update: Sun 09 Nov 2025 18:50:37 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: E8mQNL7PuZpWUAeM1GQODKgsMwx2AnjMWImgnxywJjc=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3057 (0xbf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Nov 2 18:50:37 2025 GMT Not After : Nov 9 18:50:37 2025 GMT Subject: CN=6907a7fe-7bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cf:9a:99:91:d3:c7:34:81:09:bb:3c:9d:c5: 51:55:7b:7c:73:78:5a:17:e2:d1:0a:69:31:71:22: 24:fe:6c:87:83:b7:e3:c7:c5:64:34:66:4c:17:e9: 02:3b:86:5f:6e:e3:3a:c6:13:b2:5b:95:c6:d2:c6: 40:a1:d9:9c:9c:59:05:5a:7d:4b:1a:48:46:fe:8b: 2e:af:1b:98:1a:3c:d4:ad:37:71:03:89:17:a3:74: a5:e2:86:d4:2b:26:b9:91:8a:28:aa:66:65:c8:ab: ae:32:cd:14:20:f3:2c:aa:7c:d8:44:0f:5d:b7:55: 06:38:e1:79:be:ea:c0:76:d5:9d:3b:e8:8e:a7:de: 33:1b:e0:62:3c:a1:8d:38:7b:46:7e:57:e6:a9:4e: 72:6a:41:a4:ef:ed:10:9a:46:2e:78:de:3d:9d:d9: 7a:eb:b2:f3:86:eb:1e:b0:73:a4:e4:56:3c:86:10: 02:84:a8:43:47:db:66:ab:b9:1d:f0:8d:57:71:c1: fb:7c:60:fb:65:5d:77:76:27:56:fd:09:82:6f:4c: ac:61:22:63:67:68:a3:32:0d:d0:1b:ba:f6:42:a4: 5c:60:18:0f:45:0c:15:5a:5c:d8:71:91:98:2b:ac: d0:71:56:d5:06:24:51:38:ff:82:b7:57:4b:17:88: fd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:79:2C:EE:BA:A2:6A:6B:9E:46:15:EF:95:38:85:4A:F1:5D:A2:CE X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:de:21:c2:63:db:6c:91:78:50:0a:78:5d:1a:06:d6:7b:b9: 87:a9:b8:a3:f1:95:8b:95:e6:f1:c0:42:a8:82:f5:25:98:7f: f7:db:a1:b4:3e:fa:54:97:15:83:50:70:ff:30:16:e4:94:9a: 48:9f:74:b6:20:9c:45:6e:1d:cb:64:6a:f4:9c:11:48:67:a3: b4:e1:ce:db:b1:e1:26:f6:68:8b:9a:4c:18:b1:62:23:5e:94: d3:91:c0:31:70:b4:b6:a6:0f:42:1f:5c:fd:ee:c2:e5:b2:d6: 8c:69:f5:30:a1:23:4a:d9:54:db:f5:43:55:25:a7:ec:a4:73: 37:34:54:e3:7e:01:91:f1:37:bc:63:4c:15:ab:b5:f7:a1:23: 25:0c:d4:4e:28:b9:72:41:3c:d5:9d:b9:7f:b6:42:11:38:55: c0:12:51:cb:f8:db:dd:64:a0:23:3f:6b:0f:ec:9e:8d:cd:1e: 6d:4e:7a:eb:96:e5:fa:18:69:99:76:21:b7:b8:0b:78:57:18: a6:5b:b8:f3:6b:c2:c6:c9:14:60:6d:8e:c2:db:74:24:ad:84: 1a:48:22:bb:d9:d0:8e:32:c8:26:f0:67:f2:f5:a0:fd:40:a4: 49:46:09:29:b9:34:ef:4e:07:db:b4:fc:93:76:3e:b9:7b:f1: d0:07:e7:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUxMTAyMTg1MDM3WhcNMjUxMTA5MTg1MDM3WjAYMRYwFAYD VQQDEw02OTA3YTdmZS03YmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnM+amZHTxzSBCbs8ncVRVXt8c3haF+LRCmkxcSIk/myHg7fjx8VkNGZMF+kC O4ZfbuM6xhOyW5XG0sZAodmcnFkFWn1LGkhG/osurxuYGjzUrTdxA4kXo3Sl4obU Kya5kYooqmZlyKuuMs0UIPMsqnzYRA9dt1UGOOF5vurAdtWdO+iOp94zG+BiPKGN OHtGflfmqU5yakGk7+0QmkYueN49ndl667LzhusesHOk5FY8hhAChKhDR9tmq7kd 8I1XccH7fGD7ZV13didW/QmCb0ysYSJjZ2ijMg3QG7r2QqRcYBgPRQwVWlzYcZGY K6zQcVbVBiRROP+Ct1dLF4j9qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp5LO66 omprnkYV75U4hUrxXaLOMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH3iHCY9tskXhQCnhdGgbWe7mHqbij8ZWLlebxwEKogvUlmH/326G0 PvpUlxWDUHD/MBbklJpIn3S2IJxFbh3LZGr0nBFIZ6O04c7bseEm9miLmkwYsWIj XpTTkcAxcLS2pg9CH1z97sLlstaMafUwoSNK2VTb9UNVJafspHM3NFTjfgGR8Te8 Y0wVq7X3oSMlDNROKLlyQTzVnbl/tkIROFXAElHL+NvdZKAjP2sP7J6NzR5tTnrr luX6GGmZdiG3uAt4VximW7jza8LGyRRgbY7C23QkrYQaSCK72dCOMsgm8Gfy9aD9 QKRJRgkpuTTvTgfbtPyTdj65e/HQB+dF -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:15 2025 by rpki-client