$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: +Eyyh8DIGbZDYxeFiHOE9TKjH3jm4K86cOc5Blh5f/o= Subject key identifier: 12:86:B6:AF:DC:2D:E9:3C:94:E1:0E:3F:94:CA:9A:C2:B0:40:49:4F Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 63 Signing time: Wed 05 Nov 2025 07:13:52 +0000 Manifest this update: Wed 05 Nov 2025 07:13:51 +0000 Manifest next update: Wed 12 Nov 2025 07:13:51 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: yXURUWbPWd/PZ+ulAkMycCP+xOzyfY4DDoHJ8qVKtU0=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Nov 5 07:13:51 2025 GMT Not After : Nov 12 07:13:51 2025 GMT Subject: CN=690af92f-b360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:5c:be:d1:1f:63:ad:7b:e6:3b:14:b9:b1: fe:97:6a:b5:8f:0a:3e:81:98:c1:9a:7d:2c:5e:b1: eb:eb:8f:6f:75:af:12:09:e5:5f:3f:0c:9e:81:d7: 65:11:5c:40:1b:54:48:5e:7f:67:8b:f4:c6:21:ab: 97:13:5e:91:81:84:a7:bd:6b:21:e4:fd:dc:80:13: 8f:f3:45:0e:2c:ca:dc:cb:b2:be:d2:09:8a:5a:41: 42:1e:57:eb:29:5c:30:9b:41:50:1b:2f:ad:bc:04: cf:68:20:e5:0b:1e:ec:06:20:60:71:ab:3f:b6:75: cb:32:69:60:8f:44:ab:85:33:ac:59:c6:5f:81:a7: 67:a6:ac:a8:8d:bb:1f:46:e4:96:b2:31:9a:4c:a6: 0e:30:3a:2d:4c:e7:6d:66:68:9e:ca:9c:ba:2d:2b: 58:cd:0f:5e:29:a8:54:7c:af:54:55:9d:05:45:77: 21:c7:f0:59:8a:cf:ae:41:d0:f4:53:e4:0f:42:4e: 83:54:61:7f:96:d5:43:80:fd:00:7d:a8:70:10:c5: ff:dd:96:72:e0:69:09:32:ee:77:21:5b:8e:c4:42: dc:6f:55:c5:c1:fc:31:f0:2b:06:32:92:d4:6f:1d: 52:70:6a:ad:1e:f8:30:d1:6f:4a:be:e8:1d:17:6d: 0f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:86:B6:AF:DC:2D:E9:3C:94:E1:0E:3F:94:CA:9A:C2:B0:40:49:4F X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:e7:4e:0c:f1:06:a9:41:45:2d:f2:35:11:79:dd:9a:bb:12: b9:40:f9:9e:95:4d:ab:6c:72:27:b1:99:e2:be:f5:a8:74:71: 45:e4:49:22:d6:ae:9d:e3:e7:c8:33:23:81:b5:ba:4e:35:ad: 51:2b:e2:b7:6d:21:b0:de:ab:43:73:fe:cc:4a:45:e5:8c:ce: 17:18:9e:65:c6:f6:92:73:46:b0:5f:ae:34:b4:48:4e:6f:81: 7c:5f:17:2b:cc:23:cd:6d:9d:b1:84:26:3a:37:c0:c3:d2:09: a7:9d:db:ca:88:70:2d:1b:7e:00:1d:2d:b3:dd:a3:6c:02:29: 0b:7d:67:7b:74:83:4a:76:2d:e0:38:bd:c4:ef:0a:41:63:4b: 53:2c:45:cf:51:2b:67:70:73:c3:68:1c:cd:95:0d:51:05:bd: 8e:7f:50:c5:1e:e2:9b:50:8b:c0:6f:4f:38:d8:52:9a:c7:a6: 55:7e:a1:65:02:de:bb:0f:69:e0:c2:8e:c1:42:38:ea:f8:c7: 35:c9:e5:7b:4d:f4:6d:2c:cf:1b:f6:6f:c7:0f:41:77:a1:37: 65:6f:09:0d:cb:34:02:02:ee:c2:bb:44:8b:a6:8b:49:d1:e2: a8:2a:44:ab:40:03:3d:a7:3c:02:ef:44:57:44:6e:74:d5:3f: 7a:52:00:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTExMDUwNzEzNTFaFw0yNTExMTIwNzEzNTFaMBgxFjAUBgNV BAMTDTY5MGFmOTJmLWIzNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6KFy+0R9jrXvmOxS5sf6XarWPCj6BmMGafSxesevrj291rxIJ5V8/DJ6B12UR XEAbVEhef2eL9MYhq5cTXpGBhKe9ayHk/dyAE4/zRQ4sytzLsr7SCYpaQUIeV+sp XDCbQVAbL628BM9oIOULHuwGIGBxqz+2dcsyaWCPRKuFM6xZxl+Bp2emrKiNux9G 5JayMZpMpg4wOi1M521maJ7KnLotK1jND14pqFR8r1RVnQVFdyHH8FmKz65B0PRT 5A9CToNUYX+W1UOA/QB9qHAQxf/dlnLgaQky7nchW47EQtxvVcXB/DHwKwYyktRv HVJwaq0e+DDRb0q+6B0XbQ/pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEoa2r9wt 6TyU4Q4/lMqawrBASU8wHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKznTgzxBqlBRS3yNRF53Zq7ErlA+Z6VTatsciexmeK+9ah0cUXkSSLW rp3j58gzI4G1uk41rVEr4rdtIbDeq0Nz/sxKReWMzhcYnmXG9pJzRrBfrjS0SE5v gXxfFyvMI81tnbGEJjo3wMPSCaed28qIcC0bfgAdLbPdo2wCKQt9Z3t0g0p2LeA4 vcTvCkFjS1MsRc9RK2dwc8NoHM2VDVEFvY5/UMUe4ptQi8BvTzjYUprHplV+oWUC 3rsPaeDCjsFCOOr4xzXJ5XtN9G0szxv2b8cPQXehN2VvCQ3LNAIC7sK7RIumi0nR 4qgqRKtAAz2nPALvRFdEbnTVP3pSAPU= -----END CERTIFICATE-----Generated at Wed Nov 5 12:36:18 2025 by rpki-client