$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft File: pVDumUQoL8_DhLCCv_qI-G2wQXk.mft (raw, json) Hash identifier: o4BQlzaKT8r4Gpt9BbciDn07kEWFgvYewU/lmArHF8E= Subject key identifier: C0:BA:21:D1:61:5C:FA:94:E8:8C:66:77:34:F0:E6:B7:2B:43:DC:0D Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft Manifest number: 01C0 Signing time: Wed 05 Nov 2025 03:10:43 +0000 Manifest this update: Wed 05 Nov 2025 03:10:43 +0000 Manifest next update: Wed 12 Nov 2025 03:10:42 +0000 Files and hashes: 1: pVDumUQoL8_DhLCCv_qI-G2wQXk.crl (hash: 60NOG2+FHZ4kP/7lLcrsDmDuSpjEbNjOdWF8l5DAL5w=) 2: 935947E8234B11F0B6DF721FC4F9AE02.roa (hash: wUur8hr6UOENzZrUofd56u0ua+u6fpIC9vNGe/0Q0+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Nov 5 03:10:43 2025 GMT Not After : Nov 12 03:10:42 2025 GMT Subject: CN=690ac033-64e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:6a:f8:6d:23:6d:d7:0d:f6:f4:61:b1:f2: de:e6:a2:39:ce:7c:a7:8b:1e:b3:a7:b3:f5:c9:fc: 6f:f5:7b:e4:d6:04:44:47:ab:81:ef:36:56:3c:3c: 68:0b:c9:9e:8d:e1:af:a1:52:cc:d0:2f:30:6e:68: 22:e4:ad:be:88:74:15:bb:c4:fa:9b:5d:e9:c8:c8: ae:b0:7c:f9:f2:0e:0c:50:b2:61:00:4e:d1:17:8d: 87:06:f3:e8:a5:59:09:74:95:55:6d:b7:30:e6:48: 10:6a:e9:68:a7:07:17:bb:94:a5:b7:03:cc:e3:20: c2:c4:64:ff:52:5a:26:72:a1:84:35:be:2d:52:ae: 17:0b:94:71:97:55:b1:46:44:0f:ec:1a:ab:03:a1: 03:61:9c:71:b0:98:02:b3:97:91:74:08:46:7a:82: ec:bb:20:a0:e4:6e:96:67:08:7b:93:94:1f:ff:1e: 2d:4a:6f:8f:10:9d:72:9b:9e:c8:31:6c:50:e4:3c: e5:97:ff:e1:bf:ab:1f:f9:00:31:27:b5:63:6b:f2: 8c:aa:d8:1f:77:5d:70:1f:ee:70:fe:7d:e0:8e:64: 2c:41:38:3e:5f:83:bf:08:c4:4b:8a:14:4d:61:c6: d9:10:a6:73:2a:d4:de:8f:84:df:55:e7:7c:a6:fd: 6c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BA:21:D1:61:5C:FA:94:E8:8C:66:77:34:F0:E6:B7:2B:43:DC:0D X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:68:7c:30:ae:9d:66:cd:69:bb:11:28:f4:ce:8d:14:fe:63: 14:8a:67:08:06:bf:70:ef:f7:ec:f6:ac:b9:80:67:ea:a6:55: 82:5b:1b:92:95:16:34:05:31:44:ce:92:49:24:87:9e:a5:de: 94:76:f0:c2:28:2f:df:03:59:74:6c:93:b0:61:b9:07:e8:be: d9:86:b1:ca:a1:54:4a:f2:19:d0:5c:37:a7:f8:aa:71:86:75: 9c:f3:4f:dc:fd:81:c3:f1:e6:98:7e:c3:93:83:04:01:5b:ea: d2:85:27:34:f7:2d:b9:b3:87:50:48:fb:cd:4d:71:33:eb:e1: 5d:8b:65:78:d5:9a:9b:2a:09:52:73:e5:82:ce:db:61:d6:bf: be:52:a7:59:f2:10:6c:33:52:f5:32:0b:3f:a3:46:c9:b2:4a: b5:30:e8:0a:d1:96:97:3c:04:2b:cc:45:f4:71:38:6b:a1:bb: 31:e3:0d:95:80:a6:6b:04:d3:49:3f:13:53:55:9c:70:9f:91: 6c:45:fd:e3:ee:af:4b:a4:3d:4e:a2:39:e8:a1:b2:0c:07:95: a4:f1:e3:49:a7:6c:61:f4:b5:4a:db:c3:3d:7e:c2:d7:0e:db: f9:0d:d0:d9:d9:6c:61:48:f9:10:29:7d:28:08:12:1b:e5:20: 95:11:0e:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUxMTA1MDMxMDQzWhcNMjUxMTEyMDMxMDQyWjAYMRYwFAYD VQQDEw02OTBhYzAzMy02NGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnFq+G0jbdcN9vRhsfLe5qI5znynix6zp7P1yfxv9Xvk1gRER6uB7zZWPDxo C8mejeGvoVLM0C8wbmgi5K2+iHQVu8T6m13pyMiusHz58g4MULJhAE7RF42HBvPo pVkJdJVVbbcw5kgQaulopwcXu5SltwPM4yDCxGT/UlomcqGENb4tUq4XC5Rxl1Wx RkQP7BqrA6EDYZxxsJgCs5eRdAhGeoLsuyCg5G6WZwh7k5Qf/x4tSm+PEJ1ym57I MWxQ5Dzll//hv6sf+QAxJ7Vja/KMqtgfd11wH+5w/n3gjmQsQTg+X4O/CMRLihRN YcbZEKZzKtTej4TfVed8pv1sBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC6IdFh XPqU6IxmdzTw5rcrQ9wNMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDVCNS9BNDZCOTkxMjE2NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4 X0RoTENDdl9xSS1HMndRWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJaHwwrp1mzWm7ESj0zo0U/mMUimcIBr9w7/fs9qy5gGfqplWCWxuS lRY0BTFEzpJJJIeepd6UdvDCKC/fA1l0bJOwYbkH6L7ZhrHKoVRK8hnQXDen+Kpx hnWc80/c/YHD8eaYfsOTgwQBW+rShSc09y25s4dQSPvNTXEz6+Fdi2V41ZqbKglS c+WCztth1r++UqdZ8hBsM1L1Mgs/o0bJskq1MOgK0ZaXPAQrzEX0cThrobsx4w2V gKZrBNNJPxNTVZxwn5FsRf3j7q9LpD1OojnoobIMB5Wk8eNJp2xh9LVK28M9fsLX Dtv5DdDZ2WxhSPkQKX0oCBIb5SCVEQ5n -----END CERTIFICATE-----Generated at Thu Nov 6 04:44:19 2025 by rpki-client