$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: GZAdSjHcCN/JRObml1nEfCj/c6aVqOO0Ii6y1CMCCG0= Subject key identifier: D3:76:FC:6C:C0:5B:97:1F:F8:1D:41:76:CE:66:6E:12:A1:75:83:4C Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07B7 Signing time: Sun 02 Nov 2025 21:19:22 +0000 Manifest this update: Sun 02 Nov 2025 21:19:21 +0000 Manifest next update: Sun 09 Nov 2025 21:19:21 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: 0QBKCmwL7IifyytDZC0Jo6SHHpFDeF/Pj8mazoqyTn4=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Nov 2 21:19:21 2025 GMT Not After : Nov 9 21:19:21 2025 GMT Subject: CN=6907cada-4841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7d:41:f3:b8:6f:f6:d6:a6:75:0b:77:16:05: 14:e8:f6:7c:2b:6f:c1:f2:20:c1:53:f6:73:29:aa: 02:26:be:cb:21:8a:82:a5:5c:c6:16:d8:6d:72:5e: 3f:21:54:0f:72:94:73:2c:b8:67:e7:db:c9:d0:1b: 12:e1:59:dc:5b:a1:0f:12:e0:8b:3d:d5:b2:34:f3: 4f:4f:62:be:32:2a:2a:81:41:bf:d2:29:85:bd:69: b2:11:fa:4a:3f:44:6c:48:05:63:ce:cf:92:8c:f5: ae:ce:3c:0e:a5:c2:67:01:50:5d:e2:4e:19:b3:df: c8:6f:ba:7f:e3:cb:12:3c:25:c3:a3:be:4a:18:2c: b0:e2:2a:16:ce:fa:f7:1b:f4:b8:2f:49:0e:5c:7c: c4:69:de:c0:85:61:68:ff:ca:ce:2a:0a:1d:4d:14: ae:45:75:68:99:e1:e9:ba:c4:58:95:60:45:42:e1: 8c:59:39:ca:be:32:c8:c2:d6:1e:c0:71:0d:dc:f5: 5f:fd:3f:a0:89:42:f8:55:6a:7b:29:6b:90:61:b8: 4f:47:c1:a4:93:03:9b:d3:fb:0c:d7:45:32:89:24: 87:4d:34:bf:13:32:2a:6d:5a:c1:d4:fb:1d:98:4a: 3c:80:46:09:ef:12:6e:35:d8:98:68:eb:1e:05:41: e5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:76:FC:6C:C0:5B:97:1F:F8:1D:41:76:CE:66:6E:12:A1:75:83:4C X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e9:7b:4d:1d:4f:03:c2:ec:39:33:3e:a0:67:66:77:31:dd: 30:67:21:1c:48:8f:a3:bc:e8:95:11:0d:66:7c:e6:15:1a:6c: ce:2e:25:37:37:18:e2:99:ca:b4:69:fa:31:02:c3:5d:cd:8f: 22:fe:1f:86:d8:23:ba:c8:af:41:99:16:ed:12:14:23:ae:53: d4:5f:ae:c7:ca:44:63:46:98:43:5a:05:2b:99:b4:9f:d7:f4: 16:a3:0b:3e:d0:41:d5:4e:f3:41:58:75:90:af:4b:0f:c0:e2: 20:52:f2:b8:96:b6:e8:b0:f8:1b:74:7d:a7:d1:2e:ee:eb:e4: 5c:9c:79:e0:84:82:65:eb:82:ac:d1:06:35:04:50:88:fe:c6: 53:80:9d:9e:a7:46:bb:e4:a2:df:ba:40:2e:31:d0:83:fb:00: eb:fc:84:27:48:14:ee:4f:b0:4e:ff:47:28:76:47:95:92:6a: 6f:35:1b:fa:6d:a6:5a:71:73:0a:48:d0:0f:18:da:97:99:76: 01:aa:33:fa:3b:f2:ee:b7:8e:02:8f:d0:76:31:92:de:91:c8: c1:e6:a2:23:13:a5:6c:00:54:7a:0b:6c:c8:8a:6c:5c:61:a5: 78:3b:a2:2f:d5:7b:03:d6:ed:d2:0f:48:ca:a9:18:4c:e9:85: 45:d0:43:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUxMTAyMjExOTIxWhcNMjUxMTA5MjExOTIxWjAYMRYwFAYD VQQDEw02OTA3Y2FkYS00ODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnn1B87hv9tamdQt3FgUU6PZ8K2/B8iDBU/ZzKaoCJr7LIYqCpVzGFthtcl4/ IVQPcpRzLLhn59vJ0BsS4VncW6EPEuCLPdWyNPNPT2K+MioqgUG/0imFvWmyEfpK P0RsSAVjzs+SjPWuzjwOpcJnAVBd4k4Zs9/Ib7p/48sSPCXDo75KGCyw4ioWzvr3 G/S4L0kOXHzEad7AhWFo/8rOKgodTRSuRXVomeHpusRYlWBFQuGMWTnKvjLIwtYe wHEN3PVf/T+giUL4VWp7KWuQYbhPR8GkkwOb0/sM10UyiSSHTTS/EzIqbVrB1Psd mEo8gEYJ7xJuNdiYaOseBUHlUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNN2/GzA W5cf+B1Bds5mbhKhdYNMMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI6XtNHU8Dwuw5Mz6gZ2Z3Md0wZyEcSI+jvOiVEQ1mfOYVGmzOLiU3 Nxjimcq0afoxAsNdzY8i/h+G2CO6yK9BmRbtEhQjrlPUX67HykRjRphDWgUrmbSf 1/QWows+0EHVTvNBWHWQr0sPwOIgUvK4lrbosPgbdH2n0S7u6+RcnHnghIJl64Ks 0QY1BFCI/sZTgJ2ep0a75KLfukAuMdCD+wDr/IQnSBTuT7BO/0codkeVkmpvNRv6 baZacXMKSNAPGNqXmXYBqjP6O/Lut44Cj9B2MZLekcjB5qIjE6VsAFR6C2zIimxc YaV4O6Iv1XsD1u3SD0jKqRhM6YVF0EP+ -----END CERTIFICATE-----Generated at Tue Nov 4 08:10:35 2025 by rpki-client