$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: t60O1pb2HxNRv//SSSMKgAialXnyRjtR9nk/vB9KJNQ= Subject key identifier: 82:C4:9B:88:1A:88:23:DF:84:24:09:F8:8C:87:62:7B:34:AD:A3:8A Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 085C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2AAA Signing time: Tue 04 Nov 2025 17:02:05 +0000 Manifest this update: Tue 04 Nov 2025 17:02:04 +0000 Manifest next update: Tue 11 Nov 2025 17:02:04 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: eJA/dj2m9AuL+t2DKB7dstuW3d5u/FVRdRBFSgYLKvk=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: DSrMI7Nowx4RDukf/foMtUodJX/NiInBR6IMaoe7AeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2140 (0x85c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Nov 4 17:02:04 2025 GMT Not After : Nov 11 17:02:04 2025 GMT Subject: CN=690a318d-c381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:c0:f4:72:60:98:ff:b5:b8:77:17:9d:a9: f2:cc:15:62:2a:26:b7:9e:4a:8c:13:67:74:09:5a: d0:b3:ca:97:ec:7d:08:fd:0a:e0:73:4d:31:ad:f1: db:df:5c:8d:42:a1:8f:91:09:9d:e9:d8:d2:a2:08: 0c:f1:7a:ae:05:26:98:4c:15:f8:27:20:58:aa:36: 60:f2:05:40:6b:e3:69:69:a1:8e:4e:48:8f:ba:e6: 92:11:7f:1e:3e:37:6c:3b:c4:41:92:f9:fa:df:aa: 45:e7:ab:80:5c:05:8f:12:c1:84:bb:5f:d2:60:f7: e4:04:44:45:f9:d2:c4:2e:42:58:b4:ba:90:0c:f4: 86:c9:b9:66:4d:49:15:d3:ff:2a:f9:6c:c0:be:b6: 53:a3:86:4d:e0:1e:a4:47:6f:32:79:35:82:92:62: d6:f9:a4:7c:de:f3:d9:f4:be:b0:7b:2a:e4:28:a8: d6:02:88:20:1f:39:22:02:65:7a:39:6b:a3:e6:66: 85:4f:2d:6f:5c:71:9b:f9:90:10:93:7d:75:ba:1c: d3:49:dc:4e:83:e3:a6:3a:62:c9:a1:de:7a:28:5e: ba:e9:be:e1:ee:40:4f:54:15:f9:76:56:2e:f2:94: 93:92:4f:a4:c2:aa:2e:67:8d:dd:5b:81:f3:0f:2e: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C4:9B:88:1A:88:23:DF:84:24:09:F8:8C:87:62:7B:34:AD:A3:8A X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ab:b3:bc:38:2b:78:3f:4a:c7:09:59:08:35:37:e9:ed:6b: 72:52:15:95:d5:6e:7b:8f:a7:f8:2a:bb:1d:03:89:ba:f0:17: 51:a0:99:60:f5:33:37:25:3a:71:5e:49:1a:fd:98:1b:ce:05: 0d:10:66:67:cf:2e:48:6e:a3:0c:06:9d:26:81:4c:72:4f:44: c0:f7:d7:de:a0:af:39:2b:ae:0f:82:c9:2a:8d:42:31:ba:7e: b9:41:e0:e5:66:b3:b6:9e:1c:56:ab:fc:6d:cb:5d:74:30:58: 0f:33:59:99:82:50:9a:e5:d1:24:58:1e:03:df:7a:af:1a:ee: d8:86:69:c5:50:ab:ca:51:9c:eb:30:76:97:de:1c:f2:98:9b: fe:3a:0e:66:62:90:4e:c1:31:20:8d:16:53:6c:03:07:b9:9c: 78:a5:a6:94:1e:74:16:89:5b:f3:c0:0a:8e:2f:65:45:24:be: 9e:e1:66:da:57:6d:12:7c:77:8c:15:be:be:d1:81:39:f9:28: b7:6f:17:a0:33:5d:a4:38:69:0f:39:87:22:2c:e1:fe:aa:05: 00:d1:4f:09:fb:3a:39:d8:8a:8b:c6:a8:08:9e:20:e5:3a:72: b2:b9:b5:49:0b:02:85:a8:da:fe:13:9b:0f:38:b9:66:0d:83: c3:cc:50:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUxMTA0MTcwMjA0WhcNMjUxMTExMTcwMjA0WjAYMRYwFAYD VQQDEw02OTBhMzE4ZC1jMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJLA9HJgmP+1uHcXnanyzBViKia3nkqME2d0CVrQs8qX7H0I/Qrgc00xrfHb 31yNQqGPkQmd6djSoggM8XquBSaYTBX4JyBYqjZg8gVAa+NpaaGOTkiPuuaSEX8e PjdsO8RBkvn636pF56uAXAWPEsGEu1/SYPfkBERF+dLELkJYtLqQDPSGyblmTUkV 0/8q+WzAvrZTo4ZN4B6kR28yeTWCkmLW+aR83vPZ9L6weyrkKKjWAoggHzkiAmV6 OWuj5maFTy1vXHGb+ZAQk311uhzTSdxOg+OmOmLJod56KF666b7h7kBPVBX5dlYu 8pSTkk+kwqouZ43dW4HzDy6DAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILEm4ga iCPfhCQJ+IyHYns0raOKMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhq7O8OCt4P0rHCVkINTfp7WtyUhWV1W57j6f4KrsdA4m68BdRoJlg 9TM3JTpxXkka/ZgbzgUNEGZnzy5IbqMMBp0mgUxyT0TA99feoK85K64PgskqjUIx un65QeDlZrO2nhxWq/xty110MFgPM1mZglCa5dEkWB4D33qvGu7YhmnFUKvKUZzr MHaX3hzymJv+Og5mYpBOwTEgjRZTbAMHuZx4paaUHnQWiVvzwAqOL2VFJL6e4Wba V20SfHeMFb6+0YE5+Si3bxegM12kOGkPOYciLOH+qgUA0U8J+zo52IqLxqgIniDl OnKyubVJCwKFqNr+E5sPOLlmDYPDzFBd -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:08 2025 by rpki-client