$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft File: PQaSnY1eH2juI-yj-UjP96LklbM.mft (raw, json) Hash identifier: mqAU5PPrM670nceRLsnzdk4Y35rl/wUkHYXrYmmSirY= Subject key identifier: CC:28:3F:D5:55:46:BD:08:10:F0:9A:8A:E8:99:88:40:E9:05:A1:33 Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft Manifest number: 0B37 Signing time: Tue 04 Nov 2025 19:24:08 +0000 Manifest this update: Tue 04 Nov 2025 19:24:07 +0000 Manifest next update: Tue 11 Nov 2025 19:24:07 +0000 Files and hashes: 1: PQaSnY1eH2juI-yj-UjP96LklbM.crl (hash: SUyzoL0Fs8Y+APSCRcy1VVJwyAEn8oHHdDrV+XPwgEk=) 2: 4140D222AB0511F0AD64C814C4F9AE02.roa (hash: OQA1xcKI/hiAbUi76rdd20yEjY2R6araSSWLUXcKQG8=) 3: 41D7A1D4AB0511F0AD64C814C4F9AE02.roa (hash: rmQtPBzLnmMnKWqEbpn/ZFyPKybx/x0dYiK1HD1kfdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Nov 4 19:24:07 2025 GMT Not After : Nov 11 19:24:07 2025 GMT Subject: CN=690a52d7-2fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:23:63:e1:58:9d:12:db:5c:7a:07:50:2f: 29:2c:d6:c9:8a:9b:39:ed:6d:a0:c6:a1:66:98:0c: 44:e4:20:59:a7:9b:3b:41:dd:83:85:da:3e:79:34: c4:f7:4d:e0:c1:41:56:35:66:62:11:dc:7e:52:29: 72:db:1d:6a:91:3f:01:38:4a:48:eb:d9:fb:ce:24: bf:e6:64:13:3c:87:66:2c:eb:b8:f6:fa:c4:9d:6f: 7b:58:0e:a5:6a:ab:7c:27:89:7b:1f:1e:0c:ce:a5: f2:ad:ad:f9:0e:57:9b:b3:4d:0e:d2:8b:03:20:9a: 13:ba:3f:d0:e9:f1:f4:08:25:1b:06:77:f4:d3:a3: 47:22:05:3d:18:ee:d1:da:de:5b:62:d5:32:b0:03: c5:ea:8f:0d:d2:6e:2d:3d:7a:6f:65:10:21:b4:18: f8:3f:e8:d7:92:72:5e:2e:d3:96:0a:b6:e0:e9:14: 92:46:a2:8b:c0:87:b8:b8:27:36:fe:15:77:2f:b5: 13:82:5d:d7:45:42:3c:e2:e3:7b:11:52:34:c7:88: 51:cd:a2:44:cc:f6:89:96:39:29:97:37:9b:37:a8: 02:ef:13:88:f0:6c:ce:5e:87:47:18:c6:44:d6:d3: 87:0c:f4:97:33:9e:74:9d:73:71:d3:0f:36:1a:e7: 32:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:28:3F:D5:55:46:BD:08:10:F0:9A:8A:E8:99:88:40:E9:05:A1:33 X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:0d:26:f5:c8:87:70:14:25:cf:ca:1a:8a:e3:5f:6d:b6:1e: 4d:12:ad:63:f6:58:db:e3:e4:08:ee:76:14:49:44:13:17:b4: 37:b9:fa:a3:77:f1:58:47:47:38:e6:c9:78:f4:1a:c0:49:54: c2:11:8f:32:55:ba:9d:b6:b8:c6:62:d0:31:04:e2:de:3d:52: be:ce:0f:aa:57:09:07:e8:6d:d7:5d:dd:9c:18:5c:17:27:cc: 98:1c:ad:84:ec:91:c8:87:53:ab:8e:50:cd:4d:66:87:53:d4: a5:3e:c1:14:4c:f0:9d:35:55:03:b7:17:a5:be:bb:f4:cf:42: e5:ac:0e:78:36:dd:3c:e8:2e:8d:bf:b9:9c:f3:eb:09:e4:52: bd:28:87:d0:12:da:68:e3:93:98:0e:f9:83:e9:e5:99:a6:ed: fd:e5:e8:c3:56:a4:36:e4:ce:59:6b:07:df:6e:cd:67:9b:e2: 95:db:87:cc:3e:a2:50:5a:e7:59:54:d4:ee:3f:f6:bd:f1:c4: 0a:3f:c2:31:64:20:e0:86:a6:76:71:ce:2f:38:7f:2d:b3:6b: f8:d1:82:ae:e1:4d:d9:8b:99:42:88:1d:ea:76:61:20:fe:ac: 39:88:f8:d0:6e:2b:78:12:02:9f:ca:c9:b6:a4:ac:21:49:ec: 5b:45:c8:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNTExMDQxOTI0MDdaFw0yNTExMTExOTI0MDdaMBgxFjAUBgNV BAMTDTY5MGE1MmQ3LTJmYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4hiNj4VidEttcegdQLyks1smKmzntbaDGoWaYDETkIFmnmztB3YOF2j55NMT3 TeDBQVY1ZmIR3H5SKXLbHWqRPwE4Skjr2fvOJL/mZBM8h2Ys67j2+sSdb3tYDqVq q3wniXsfHgzOpfKtrfkOV5uzTQ7SiwMgmhO6P9Dp8fQIJRsGd/TTo0ciBT0Y7tHa 3lti1TKwA8Xqjw3Sbi09em9lECG0GPg/6NeScl4u05YKtuDpFJJGoovAh7i4Jzb+ FXcvtROCXddFQjzi43sRUjTHiFHNokTM9omWOSmXN5s3qALvE4jwbM5eh0cYxkTW 04cM9JcznnSdc3HTDzYa5zKNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzCg/1VVG vQgQ8JqK6JmIQOkFoTMwHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE Q0Q5LzQxMEJCQzE0NEU2QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJq dUkteWotVWpQOTZMa2xiTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHkNJvXIh3AUJc/KGorjX222Hk0SrWP2WNvj5AjudhRJRBMXtDe5+qN3 8VhHRzjmyXj0GsBJVMIRjzJVup22uMZi0DEE4t49Ur7OD6pXCQfobddd3ZwYXBcn zJgcrYTskciHU6uOUM1NZodT1KU+wRRM8J01VQO3F6W+u/TPQuWsDng23TzoLo2/ uZzz6wnkUr0oh9AS2mjjk5gO+YPp5Zmm7f3l6MNWpDbkzllrB99uzWeb4pXbh8w+ olBa51lU1O4/9r3xxAo/wjFkIOCGpnZxzi84fy2za/jRgq7hTdmLmUKIHep2YSD+ rDmI+NBuK3gSAp/KybakrCFJ7FtFyAw= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:28 2025 by rpki-client