$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: w5Rf/LPVJTVvP6kQw/5jMRBP04E6L0YLwEYM2tC53+Y= Subject key identifier: 69:63:E4:9C:FF:EB:D1:BA:93:76:0F:CA:D0:9C:A7:38:FD:F4:58:BC Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 03E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 03DD Signing time: Wed 05 Nov 2025 00:41:14 +0000 Manifest this update: Wed 05 Nov 2025 00:41:13 +0000 Manifest next update: Wed 12 Nov 2025 00:41:13 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: wAIxDjex9rfbQVl9ts+omHB5Ou51FcRIzTu3nhllEPk=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: eYkm574zXfPZBssf+KqgdlPvB8riPVJCVgCP7O8B6S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Nov 5 00:41:13 2025 GMT Not After : Nov 12 00:41:13 2025 GMT Subject: CN=690a9d2a-a20b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e6:f7:cf:9c:a7:3f:93:e2:45:53:00:be:c3: 99:bd:6a:41:ca:50:e5:d9:3f:66:57:06:94:44:b1: 06:ab:40:18:23:a9:b9:4d:3a:55:24:47:21:ba:5f: 39:ae:3a:d3:f6:4e:6f:aa:f8:cf:1e:e4:8b:33:34: 66:76:af:47:ff:3c:e7:52:64:ae:e5:80:1a:38:61: 3c:69:a6:dc:21:11:80:01:91:14:9b:b0:e5:6f:a3: 28:b7:d2:55:6a:b2:0b:e9:4d:1e:a3:65:b4:66:87: 38:25:48:86:e8:3d:b4:00:48:90:2a:87:53:9b:55: 39:9d:06:59:24:b4:8a:8f:31:fc:6d:d0:07:2b:d2: 1b:74:55:08:72:d8:a4:ba:45:ca:d8:fe:31:f3:b4: 75:ec:d7:3f:32:34:5d:a0:94:25:33:ec:e1:0c:90: a4:e8:3d:82:98:0e:30:01:f1:14:38:e7:3b:93:31: e1:56:28:a4:bb:c2:c2:a7:9d:71:92:df:a1:1c:56: bf:0c:4d:bd:de:6d:ad:eb:d3:c4:e7:05:d8:85:a9: b6:96:b0:d9:97:18:e2:37:78:09:9c:7e:9b:93:60: db:52:1e:aa:ec:24:aa:2f:19:4f:64:c8:af:18:77: a5:bd:ff:63:2b:5c:7a:6d:0e:8b:b7:a4:48:5e:f6: 31:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:63:E4:9C:FF:EB:D1:BA:93:76:0F:CA:D0:9C:A7:38:FD:F4:58:BC X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c7:e3:9c:70:45:98:4b:f2:8d:b6:0d:50:9c:a5:fe:81:36: 54:85:61:15:66:37:41:41:1b:20:6c:ca:23:18:80:fc:45:3f: 03:84:9f:a9:8c:d5:f1:5f:25:f7:fa:1c:e4:8d:f5:2b:8f:0f: 53:45:67:e8:99:e6:49:1b:34:cb:d8:25:97:1f:85:cf:2a:c4: 43:3e:91:a5:f7:7b:35:75:0f:98:c6:f4:19:8f:9f:4f:50:27: 41:79:53:89:e4:fe:75:47:90:00:1a:91:97:b3:a9:34:40:eb: dd:1f:17:1e:cf:39:71:37:55:d4:96:be:32:cc:d8:f7:8f:3a: 64:71:81:0b:e6:cb:18:63:e6:f3:f4:2c:b3:a4:04:17:9b:3f: e4:11:f7:ce:0c:b2:69:02:5e:b2:1d:9c:3e:95:f7:d2:f6:c6: 7c:f1:8f:7e:e5:b5:10:6c:c5:d8:3a:2b:b2:86:e3:ef:9d:d3: fc:5a:45:44:72:39:7a:34:75:73:3e:ec:87:8c:b2:e7:79:12: 51:11:08:92:29:41:9b:7e:3b:91:c4:49:16:68:f4:4f:76:99: be:42:26:1d:11:01:a6:04:75:42:08:c3:c2:48:9e:c1:a9:89: 63:87:10:8b:44:7f:a9:80:c0:40:fe:25:b1:61:7c:90:73:cb: a0:77:f7:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjUxMTA1MDA0MTEzWhcNMjUxMTEyMDA0MTEzWjAYMRYwFAYD VQQDEw02OTBhOWQyYS1hMjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+b3z5ynP5PiRVMAvsOZvWpBylDl2T9mVwaURLEGq0AYI6m5TTpVJEchul85 rjrT9k5vqvjPHuSLMzRmdq9H/zznUmSu5YAaOGE8aabcIRGAAZEUm7Dlb6Mot9JV arIL6U0eo2W0Zoc4JUiG6D20AEiQKodTm1U5nQZZJLSKjzH8bdAHK9IbdFUIctik ukXK2P4x87R17Nc/MjRdoJQlM+zhDJCk6D2CmA4wAfEUOOc7kzHhViiku8LCp51x kt+hHFa/DE293m2t69PE5wXYham2lrDZlxjiN3gJnH6bk2DbUh6q7CSqLxlPZMiv GHelvf9jK1x6bQ6Lt6RIXvYxQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlj5Jz/ 69G6k3YPytCcpzj99Fi8MB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTx+OccEWYS/KNtg1QnKX+gTZUhWEVZjdBQRsgbMojGID8RT8DhJ+p jNXxXyX3+hzkjfUrjw9TRWfomeZJGzTL2CWXH4XPKsRDPpGl93s1dQ+YxvQZj59P UCdBeVOJ5P51R5AAGpGXs6k0QOvdHxcezzlxN1XUlr4yzNj3jzpkcYEL5ssYY+bz 9CyzpAQXmz/kEffODLJpAl6yHZw+lffS9sZ88Y9+5bUQbMXYOiuyhuPvndP8WkVE cjl6NHVzPuyHjLLneRJREQiSKUGbfjuRxEkWaPRPdpm+QiYdEQGmBHVCCMPCSJ7B qYljhxCLRH+pgMBA/iWxYXyQc8ugd/ec -----END CERTIFICATE-----Generated at Thu Nov 6 06:05:42 2025 by rpki-client