$ rpki-client -vvf rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft File: pjicd02tZdiN8ubU9D3ioLVy7no.mft (raw, json) Hash identifier: r6TJmUdO+lqNnGN4R9ICqq62HO+kwTgyUjal/TSlvZk= Subject key identifier: 38:9B:CA:AA:4E:65:A6:7E:EB:88:4F:11:6B:6B:09:32:BD:40:70:EA Authority key identifier: A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A Certificate issuer: /CN=A9194522/serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft Manifest number: 0299 Signing time: Wed 05 Nov 2025 01:42:09 +0000 Manifest this update: Wed 05 Nov 2025 01:42:08 +0000 Manifest next update: Wed 12 Nov 2025 01:42:08 +0000 Files and hashes: 1: pjicd02tZdiN8ubU9D3ioLVy7no.crl (hash: bgjVihO7FzOo2Htk12Czs40pY32b0optztquVd2/R8A=) 2: 9995D8D6276011EDAF21D06DC4F9AE02.roa (hash: Wj0dfxEXWEqNmFFsrnNZwxMr0sW6AdEgdi4BAZhUFLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194522, serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Validity Not Before: Nov 5 01:42:08 2025 GMT Not After : Nov 12 01:42:08 2025 GMT Subject: CN=690aab70-2e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:64:66:f5:c9:8d:8e:a7:c1:b3:fa:f7:e3:6d: f4:64:54:01:a8:22:1c:e6:e7:6a:6a:d5:f0:e6:09: 41:66:91:05:8c:9f:65:c5:56:e3:51:6e:e3:91:ef: fc:1e:42:fb:a3:dd:a8:ad:81:9d:ff:59:58:7f:4e: 43:4e:ce:8a:f5:ff:7f:83:8f:89:80:70:bd:b8:b8: b3:6b:aa:ae:78:7f:58:76:e8:5f:27:a8:6a:38:b3: f4:4c:31:6a:54:4b:41:76:51:72:ea:e0:54:fa:a9: 47:27:8a:11:48:9f:6c:b3:1e:7f:2c:31:c6:72:e1: 2e:37:1d:3f:39:1c:5e:e2:c3:be:12:b3:41:25:f6: bc:7c:b6:aa:ae:f8:92:09:90:6b:04:00:67:ac:08: 90:62:89:1c:02:a2:44:84:14:ed:05:4a:20:29:9a: e9:76:c0:8b:b6:cf:f5:bc:13:72:e0:86:f1:a4:aa: 4a:6e:2b:2b:76:92:80:15:71:9f:f0:6c:b4:96:d1: 3c:45:6f:ca:d7:9f:a3:29:1e:97:a1:d1:89:f1:36: d8:0e:2c:27:b9:16:26:46:e6:d9:f6:ee:31:ec:a4: b2:8d:49:ca:e6:47:1c:9d:d8:09:b5:4f:96:46:76: c6:63:25:8b:92:f5:b0:72:fe:b1:82:f7:23:f6:cd: a2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9B:CA:AA:4E:65:A6:7E:EB:88:4F:11:6B:6B:09:32:BD:40:70:EA X509v3 Authority Key Identifier: keyid:A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:13:d7:08:20:d4:0e:fa:02:2c:fb:c2:dd:d2:a6:e0:ed:98: 5e:54:42:d9:da:d3:75:f6:e9:7f:08:2d:9b:a4:13:3a:38:ab: ed:66:04:be:8b:00:f6:80:e2:aa:02:9c:c2:e6:d0:15:7b:14: 13:80:24:2e:f3:d4:1b:d8:0a:69:6e:fe:22:ca:9c:1d:8a:28: 74:9e:64:ad:6a:d9:4d:c8:82:8d:9d:00:50:9a:61:1f:05:09: 35:8e:17:91:fd:e1:91:79:07:e1:c1:7c:c0:64:95:c9:1b:41: 7f:82:64:c9:c2:c2:ad:0d:6c:00:7e:fb:4a:3b:2f:8d:14:2a: c2:1d:db:71:fe:11:cb:be:20:40:34:2b:68:1c:48:54:a8:70: 26:78:24:8e:e8:67:05:db:25:e2:70:69:36:f8:3b:3c:22:06: 28:5e:25:0a:40:11:08:10:df:11:1c:c3:83:20:58:7b:fe:14: 1a:ca:de:45:65:95:48:7a:0d:93:ce:72:b6:7b:6c:e8:c6:74: d3:de:56:bb:8f:48:3b:56:cb:f5:e5:03:a0:16:17:fc:75:72: 57:6e:b6:9c:1f:6d:0a:7c:41:4e:aa:7e:7c:6b:57:e3:00:71: f8:a6:71:58:e4:8a:12:26:f0:9f:01:e3:57:c5:64:54:57:f1: 48:3c:1b:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ1MjIxMTAvBgNVBAUTKEE2Mzg5Qzc3NERBRDY1RDg4REYyRTZENEY0M0RFMkEw QjU3MkVFN0EwHhcNMjUxMTA1MDE0MjA4WhcNMjUxMTEyMDE0MjA4WjAYMRYwFAYD VQQDEw02OTBhYWI3MC0yZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWRm9cmNjqfBs/r34230ZFQBqCIc5udqatXw5glBZpEFjJ9lxVbjUW7jke/8 HkL7o92orYGd/1lYf05DTs6K9f9/g4+JgHC9uLiza6queH9YduhfJ6hqOLP0TDFq VEtBdlFy6uBU+qlHJ4oRSJ9ssx5/LDHGcuEuNx0/ORxe4sO+ErNBJfa8fLaqrviS CZBrBABnrAiQYokcAqJEhBTtBUogKZrpdsCLts/1vBNy4IbxpKpKbisrdpKAFXGf 8Gy0ltE8RW/K15+jKR6XodGJ8TbYDiwnuRYmRubZ9u4x7KSyjUnK5kccndgJtU+W RnbGYyWLkvWwcv6xgvcj9s2iswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDibyqpO ZaZ+64hPEWtrCTK9QHDqMB8GA1UdIwQYMBaAFKY4nHdNrWXYjfLm1PQ94qC1cu56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDUyMi9ERTIwRkM5NjI3 NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpkaU44dWJVOUQzaW9MVnk3 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BqaWNkMDJ0WmRpTjh1YlU5RDNpb0xWeTduby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDUyMi9ERTIwRkM5NjI3NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpk aU44dWJVOUQzaW9MVnk3bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsE9cIINQO+gIs+8Ld0qbg7ZheVELZ2tN19ul/CC2bpBM6OKvtZgS+ iwD2gOKqApzC5tAVexQTgCQu89Qb2Appbv4iypwdiih0nmStatlNyIKNnQBQmmEf BQk1jheR/eGReQfhwXzAZJXJG0F/gmTJwsKtDWwAfvtKOy+NFCrCHdtx/hHLviBA NCtoHEhUqHAmeCSO6GcF2yXicGk2+Ds8IgYoXiUKQBEIEN8RHMODIFh7/hQayt5F ZZVIeg2TznK2e2zoxnTT3la7j0g7Vsv15QOgFhf8dXJXbracH20KfEFOqn58a1fj AHH4pnFY5IoSJvCfAeNXxWRUV/FIPBty -----END CERTIFICATE-----Generated at Wed Nov 5 12:07:46 2025 by rpki-client