$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: aAIFeL4WIrPwsTGGOkAlFdAE0UEbRiBrV2iE3ZWAaPY= Subject key identifier: 75:0D:B4:E2:A0:9B:17:DE:F6:13:23:E3:E7:0A:35:B0:9C:84:82:65 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34E2 Signing time: Tue 04 Nov 2025 14:27:21 +0000 Manifest this update: Tue 04 Nov 2025 14:27:21 +0000 Manifest next update: Tue 11 Nov 2025 14:27:21 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: 45QmMKpoKDZMR/j8DY7CT8Uf6unB1gz1dk/PJWC+06I=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Nov 4 14:27:21 2025 GMT Not After : Nov 11 14:27:21 2025 GMT Subject: CN=690a0d49-2dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f2:2d:55:ff:75:42:aa:09:50:d5:51:5e:15: e7:d1:4e:88:bf:97:72:a0:a5:08:77:89:5f:7d:8d: f9:81:e8:05:07:10:30:da:83:b0:37:04:07:f4:d7: b6:9b:38:58:c6:14:3d:a7:3f:81:9a:60:f0:e5:6d: 27:cc:f3:71:16:da:51:34:48:15:2b:d8:51:c1:d3: 89:b8:93:ac:83:8e:c5:c2:ce:60:41:90:dd:ac:0f: 0b:34:5e:77:35:ed:f7:8b:da:26:9a:a8:9f:7e:ae: bf:56:49:9e:58:ec:87:f1:62:ba:8f:19:f0:82:83: f6:ca:82:0c:18:51:d1:4b:27:3a:0f:be:43:ab:dd: bb:07:5d:52:10:a6:b5:a7:6a:8f:9d:51:46:b8:dd: e1:7c:34:e7:9f:b3:44:b3:ce:66:a0:f5:85:33:e9: f6:af:d2:b4:b8:81:c9:33:fd:a6:1f:4d:be:0c:31: 8d:e6:87:12:59:06:a5:12:e1:17:ed:a1:90:fd:68: dd:0f:27:1b:6f:66:c8:28:38:76:05:3b:a6:35:2d: 98:4f:26:a1:1e:55:f1:3a:88:1b:da:31:06:4a:e1: 86:6e:d0:43:9a:cb:02:97:a8:38:43:f5:33:e8:99: 5f:32:91:c9:8b:99:1a:4c:44:0b:7d:e9:c4:e9:d1: 13:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0D:B4:E2:A0:9B:17:DE:F6:13:23:E3:E7:0A:35:B0:9C:84:82:65 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ac:48:dc:a9:5b:f2:a8:a9:c5:b8:01:e0:3c:17:ff:c3:06: 64:2d:25:17:06:1e:ee:c2:2d:0f:c9:04:f6:62:d8:fd:5e:b8: fd:fb:1c:ce:c3:02:09:1c:1a:f3:ad:da:79:78:0c:9d:54:0f: 10:3f:f7:fd:91:53:85:aa:67:eb:80:b1:a4:2e:a5:f7:f1:4c: 9c:a6:fe:8d:ff:ba:b7:63:11:1d:d0:1d:cd:ef:7c:aa:03:60: 41:b2:eb:4f:8f:f1:3b:38:c4:96:ed:d3:0a:16:52:8c:5c:83: aa:b9:f8:a3:62:68:43:c9:4f:bb:04:32:7b:c1:15:df:6f:c8: f6:e5:20:1e:2e:be:fd:bc:88:e5:1c:0f:b1:a8:98:b8:d2:f5: ed:44:8f:4d:c9:fe:10:f3:f6:1b:0c:8a:54:e9:c8:57:97:fb: 1d:cb:77:47:a4:58:63:cb:88:18:a1:13:00:32:71:0f:4a:f4: aa:70:bc:74:0a:29:c6:81:2d:fa:4b:17:a0:82:73:79:7d:57: d0:21:4e:a1:c3:f6:4d:28:0d:be:1e:aa:d2:7c:99:2f:4f:bb: 19:16:c8:e5:6d:6f:25:4b:04:ee:63:f5:03:14:de:f3:64:3b: 39:63:87:b1:8a:f3:18:df:24:f8:ec:40:32:a2:ac:15:b0:89: 64:ce:9a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUxMTA0MTQyNzIxWhcNMjUxMTExMTQyNzIxWjAYMRYwFAYD VQQDEw02OTBhMGQ0OS0yZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfItVf91QqoJUNVRXhXn0U6Iv5dyoKUId4lffY35gegFBxAw2oOwNwQH9Ne2 mzhYxhQ9pz+BmmDw5W0nzPNxFtpRNEgVK9hRwdOJuJOsg47Fws5gQZDdrA8LNF53 Ne33i9ommqiffq6/VkmeWOyH8WK6jxnwgoP2yoIMGFHRSyc6D75Dq927B11SEKa1 p2qPnVFGuN3hfDTnn7NEs85moPWFM+n2r9K0uIHJM/2mH02+DDGN5ocSWQalEuEX 7aGQ/WjdDycbb2bIKDh2BTumNS2YTyahHlXxOogb2jEGSuGGbtBDmssCl6g4Q/Uz 6JlfMpHJi5kaTEQLfenE6dET+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUNtOKg mxfe9hMj4+cKNbCchIJlMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWrEjcqVvyqKnFuAHgPBf/wwZkLSUXBh7uwi0PyQT2Ytj9Xrj9+xzO wwIJHBrzrdp5eAydVA8QP/f9kVOFqmfrgLGkLqX38Uycpv6N/7q3YxEd0B3N73yq A2BBsutPj/E7OMSW7dMKFlKMXIOqufijYmhDyU+7BDJ7wRXfb8j25SAeLr79vIjl HA+xqJi40vXtRI9Nyf4Q8/YbDIpU6chXl/sdy3dHpFhjy4gYoRMAMnEPSvSqcLx0 CinGgS36SxeggnN5fVfQIU6hw/ZNKA2+HqrSfJkvT7sZFsjlbW8lSwTuY/UDFN7z ZDs5Y4exivMY3yT47EAyoqwVsIlkzppp -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:32 2025 by rpki-client