$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: gorlw5OzIjEofY9nPK+B9+mCYPyFnYwFr88aU2E4XxI= Subject key identifier: 11:BB:AA:DB:18:C0:1D:1B:99:80:8D:86:69:56:7C:56:4F:7C:E9:50 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 34DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 6126 Signing time: Tue 04 Nov 2025 14:15:22 +0000 Manifest this update: Tue 04 Nov 2025 14:15:22 +0000 Manifest next update: Tue 11 Nov 2025 14:15:22 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: vbuDe6/y+phzpT7ShePu3BISDuICau3r2dozDMPbOvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13533 (0x34dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Nov 4 14:15:22 2025 GMT Not After : Nov 11 14:15:22 2025 GMT Subject: CN=690a0a7a-a582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:9e:4e:23:7a:c5:16:c8:d0:fb:1f:71:4c: 40:80:93:b6:95:3f:55:34:91:bb:b4:4a:e5:c4:eb: 3e:bd:55:7a:3d:8c:e5:43:aa:10:a9:3f:a2:60:ee: dc:9f:1f:ac:b4:4e:c0:10:44:15:cc:86:e7:4a:54: ab:8d:55:8e:62:46:13:e4:34:e9:e6:5b:c2:d0:ef: 07:dc:88:da:3b:e3:6c:93:f9:98:00:63:c3:26:8d: 14:fc:56:26:ed:0b:a9:b4:2d:82:41:d2:a0:49:c4: 99:b2:46:1b:86:72:54:af:4b:fe:5d:ae:67:66:40: 40:1c:5f:1d:9e:18:7f:09:d6:90:e6:d9:10:c6:92: cf:79:6e:f7:e7:d6:d4:a7:ec:e0:07:7c:f4:95:ba: 3f:fd:dc:1a:af:87:b2:ad:d7:8d:15:d6:5b:08:db: f7:88:d0:22:60:82:c8:b0:1f:2a:dc:85:3d:3c:82: 72:14:0e:b6:c3:c3:bb:ea:af:45:8f:2a:80:9b:62: 79:9b:9b:af:de:a0:66:16:00:e2:97:87:c8:e0:25: 78:60:5a:ae:9d:0e:5c:ee:b9:cb:98:b6:c4:f8:cf: c8:f7:55:f0:5c:8d:32:c4:13:8e:94:da:25:8c:38: 90:a4:85:ea:f5:48:ae:a8:2f:5e:43:76:37:af:38: 0d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BB:AA:DB:18:C0:1D:1B:99:80:8D:86:69:56:7C:56:4F:7C:E9:50 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b4:b7:06:16:fd:2c:d7:d3:3b:68:cf:c4:e1:1f:e8:1a:1d: 2e:09:c9:32:12:0e:e9:cc:d3:6f:c1:97:b4:83:14:03:b2:8f: cf:84:5d:40:f9:e9:da:29:f0:eb:ee:17:05:89:d6:2c:66:34: 30:32:e9:c5:b5:95:ac:09:96:74:50:18:71:c8:d5:f2:81:08: cb:35:bd:b0:65:4c:9e:3f:2b:5b:bf:c8:44:4f:3b:02:05:c9: 1c:6c:56:28:d8:43:71:0c:4e:f1:26:40:91:f2:ed:6e:23:07: 4c:94:ab:c1:c0:85:95:d6:f2:ac:0f:eb:34:41:7f:12:8e:23: 0c:f5:c4:78:95:28:cf:55:65:b8:97:43:d8:c1:67:d2:2e:93: be:17:53:a9:18:c6:b6:8e:ed:da:e3:28:e4:1f:83:1a:cd:74: aa:a0:82:be:dd:68:ec:be:1f:4e:c0:1a:14:bd:b4:b5:04:45: a3:1a:d8:f7:c5:51:7d:8e:f7:24:b7:ad:50:bb:5e:fa:df:e2: 0f:af:4b:26:1c:2a:f9:f6:2b:cb:d8:48:73:54:88:27:cb:3f: 34:18:89:b2:2a:a9:d7:df:95:f8:79:ce:5b:bf:61:c6:0a:d6: 0c:17:14:f7:ec:b8:61:70:94:6a:ae:2d:be:30:27:9a:e0:45: a8:bc:d1:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUxMTA0MTQxNTIyWhcNMjUxMTExMTQxNTIyWjAYMRYwFAYD VQQDEw02OTBhMGE3YS1hNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOeeTiN6xRbI0PsfcUxAgJO2lT9VNJG7tErlxOs+vVV6PYzlQ6oQqT+iYO7c nx+stE7AEEQVzIbnSlSrjVWOYkYT5DTp5lvC0O8H3IjaO+Nsk/mYAGPDJo0U/FYm 7QuptC2CQdKgScSZskYbhnJUr0v+Xa5nZkBAHF8dnhh/CdaQ5tkQxpLPeW7359bU p+zgB3z0lbo//dwar4eyrdeNFdZbCNv3iNAiYILIsB8q3IU9PIJyFA62w8O76q9F jyqAm2J5m5uv3qBmFgDil4fI4CV4YFqunQ5c7rnLmLbE+M/I91XwXI0yxBOOlNol jDiQpIXq9UiuqC9eQ3Y3rzgNiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG7qtsY wB0bmYCNhmlWfFZPfOlQMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2tLcGFv0s19M7aM/E4R/oGh0uCckyEg7pzNNvwZe0gxQDso/PhF1A +enaKfDr7hcFidYsZjQwMunFtZWsCZZ0UBhxyNXygQjLNb2wZUyePytbv8hETzsC BckcbFYo2ENxDE7xJkCR8u1uIwdMlKvBwIWV1vKsD+s0QX8SjiMM9cR4lSjPVWW4 l0PYwWfSLpO+F1OpGMa2ju3a4yjkH4MazXSqoIK+3Wjsvh9OwBoUvbS1BEWjGtj3 xVF9jvckt61Qu1763+IPr0smHCr59ivL2EhzVIgnyz80GImyKqnX35X4ec5bv2HG CtYMFxT37LhhcJRqri2+MCea4EWovNHz -----END CERTIFICATE-----Generated at Wed Nov 5 11:54:37 2025 by rpki-client