$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: pTYRKsHogjxrD3KxMEjYZde6kG1c4K43cPKhPJ4q5Us= Subject key identifier: BA:55:8F:7C:84:97:81:92:AE:A0:DC:80:78:DE:F3:6F:B8:23:A7:E4 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 0174 Signing time: Mon 03 Nov 2025 03:48:13 +0000 Manifest this update: Mon 03 Nov 2025 03:48:13 +0000 Manifest next update: Mon 10 Nov 2025 03:48:13 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: zqXZLyrrlSxvfaemgWtzGMTKQi401YDEVPK4m582JFQ=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: mArtjyT247pE1lA//+boJTcqB+yh5REahIcbkP9BBs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Nov 3 03:48:13 2025 GMT Not After : Nov 10 03:48:13 2025 GMT Subject: CN=690825fd-10d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b9:1d:8b:db:b5:52:67:6a:25:0a:75:ca:9e: 4b:f6:b0:5a:db:7e:60:8f:47:c6:dc:b4:1f:8f:cb: f1:1a:33:3d:0d:75:17:48:23:83:8e:a8:21:16:24: 61:48:94:7f:00:0c:72:f0:d5:e8:19:d5:46:18:4d: 5f:13:15:b9:fd:cb:76:0d:90:0a:81:38:d8:0b:7e: 43:1c:6b:f0:4d:40:ab:e5:55:1e:81:ad:7f:77:0b: 31:f1:3c:a8:84:46:17:37:fb:07:29:00:75:7b:05: f5:4d:f2:71:d0:25:00:ce:33:d3:27:dc:f8:92:28: 11:18:c3:08:42:5e:70:0f:bf:62:87:0d:45:62:c4: 96:ed:07:90:e0:1f:c1:6b:30:78:5e:84:61:04:24: 91:eb:b6:37:99:49:8e:14:34:a3:ee:59:e5:1b:b8: 57:d8:76:28:e6:5b:49:2b:36:96:d9:70:63:95:bb: 2d:53:bb:33:d8:ed:15:12:31:1d:53:7e:7b:08:b2: ec:47:81:59:63:d1:d8:76:d9:88:40:5c:f4:36:34: d9:eb:2d:12:81:53:63:f8:d9:3b:db:80:75:f6:61: b6:a2:f1:5e:23:06:6d:31:ba:c8:1a:3f:7b:d4:b7: e1:a9:82:6a:5e:00:5d:48:e6:1c:43:c9:bb:87:a3: 2c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:55:8F:7C:84:97:81:92:AE:A0:DC:80:78:DE:F3:6F:B8:23:A7:E4 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0a:79:7a:bc:68:e4:b9:0d:31:62:5c:23:05:98:49:8d:8f: 60:04:46:ca:f4:6b:fb:0b:25:99:a5:4c:b6:e6:50:53:1f:14: 0b:9d:81:63:9b:84:ed:e8:5c:52:ac:fd:4e:6e:b8:98:09:73: da:5d:ab:37:ec:87:64:e4:31:df:08:90:69:ae:65:9b:2b:1e: 6d:d1:d0:f9:69:ce:83:21:1d:1e:9c:05:08:be:f6:33:ec:f4: b4:6c:84:e1:01:e1:1a:2b:9f:b0:4f:1d:ab:97:f0:1d:fb:d2: 89:9b:a3:7c:07:42:79:08:6c:9c:a3:63:89:46:f7:aa:de:bd: 19:45:5c:13:98:e8:ae:d3:16:52:fa:8d:16:93:69:b6:a9:13: 9e:97:90:2f:e6:7d:79:3c:c7:f3:d3:f4:f1:76:63:51:e1:04: 24:9c:10:ab:1d:e2:11:44:e4:53:92:aa:66:ba:c4:6a:db:35: 74:86:eb:93:bb:24:6a:40:d5:75:17:9c:e7:ce:9c:f4:e7:81: b4:92:9d:09:29:c8:b4:a8:8e:36:4a:24:c0:6d:d0:27:ea:6b: 82:9e:ce:fb:e1:22:8a:e0:66:e9:da:ac:97:32:b7:2a:db:bb: c4:59:49:91:1d:eb:6f:ab:fc:55:9b:c6:60:a4:d4:14:d6:69: 26:1b:e2:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUxMTAzMDM0ODEzWhcNMjUxMTEwMDM0ODEzWjAYMRYwFAYD VQQDEw02OTA4MjVmZC0xMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrkdi9u1UmdqJQp1yp5L9rBa235gj0fG3LQfj8vxGjM9DXUXSCODjqghFiRh SJR/AAxy8NXoGdVGGE1fExW5/ct2DZAKgTjYC35DHGvwTUCr5VUega1/dwsx8Tyo hEYXN/sHKQB1ewX1TfJx0CUAzjPTJ9z4kigRGMMIQl5wD79ihw1FYsSW7QeQ4B/B azB4XoRhBCSR67Y3mUmOFDSj7lnlG7hX2HYo5ltJKzaW2XBjlbstU7sz2O0VEjEd U357CLLsR4FZY9HYdtmIQFz0NjTZ6y0SgVNj+Nk724B19mG2ovFeIwZtMbrIGj97 1LfhqYJqXgBdSOYcQ8m7h6MsiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpVj3yE l4GSrqDcgHje82+4I6fkMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjCnl6vGjkuQ0xYlwjBZhJjY9gBEbK9Gv7CyWZpUy25lBTHxQLnYFj m4Tt6FxSrP1ObriYCXPaXas37Idk5DHfCJBprmWbKx5t0dD5ac6DIR0enAUIvvYz 7PS0bIThAeEaK5+wTx2rl/Ad+9KJm6N8B0J5CGyco2OJRveq3r0ZRVwTmOiu0xZS +o0Wk2m2qROel5Av5n15PMfz0/TxdmNR4QQknBCrHeIRRORTkqpmusRq2zV0huuT uyRqQNV1F5znzpz054G0kp0JKci0qI42SiTAbdAn6muCns774SKK4Gbp2qyXMrcq 27vEWUmRHetvq/xVm8ZgpNQU1mkmG+Jp -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:43 2025 by rpki-client