$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: 0VSwM99f1yJPl5MmGSDWJcqJKVYdkeRlq1IuOFHAzwg= Subject key identifier: 87:80:36:C4:CB:4B:BC:11:30:F7:4F:A1:8D:A2:7A:15:4A:AB:C5:80 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 048F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0489 Signing time: Wed 05 Nov 2025 00:10:10 +0000 Manifest this update: Wed 05 Nov 2025 00:10:10 +0000 Manifest next update: Wed 12 Nov 2025 00:10:10 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: L5zykAzgFuVu2lclRfxVQB+B5NlKdWCKT4gIThw9gq8=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Nov 5 00:10:10 2025 GMT Not After : Nov 12 00:10:10 2025 GMT Subject: CN=690a95e2-9f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b8:27:61:aa:f0:a2:73:dc:8a:99:79:31:35: 04:09:65:4c:c8:fb:cc:9e:2f:98:60:7b:79:02:3e: 83:8e:7e:13:47:f2:19:be:d8:f2:5d:29:0a:16:c5: dd:84:e5:02:38:72:e3:70:ef:e1:59:12:8f:ad:c7: 3c:22:ec:c7:ca:de:c8:cc:0b:ce:e0:66:64:cd:bd: 1d:bc:64:ef:75:8d:d0:6c:e5:be:8c:5e:1e:e3:cc: 07:33:b6:46:47:f0:77:2e:59:25:be:19:91:41:cc: b4:2b:25:3f:cf:b6:52:b3:4a:a9:34:2e:b9:81:a7: 08:7c:7d:77:3d:a3:b8:84:e3:1e:27:08:4c:09:28: 4a:8f:38:e2:73:a5:a9:ca:ad:f2:e1:49:b6:ff:5e: f8:61:ca:d6:25:4e:90:65:ba:7b:70:6d:77:d4:d9: 94:8b:1b:7d:ef:a3:d9:f0:83:b0:dd:62:bf:8a:c6: 90:b3:c4:ae:78:f4:e0:f0:78:34:7b:2d:8d:a6:bb: 48:43:91:51:3d:7a:37:2f:60:eb:3f:84:89:df:74: c5:cd:b1:e8:b6:c4:e3:0c:a5:3e:40:72:4d:a8:5f: c9:53:6e:b8:d7:bc:24:f2:24:a8:97:2f:26:e2:93: 05:ff:e3:db:9a:6d:e5:9e:38:d6:d6:15:a1:25:0f: 0a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:80:36:C4:CB:4B:BC:11:30:F7:4F:A1:8D:A2:7A:15:4A:AB:C5:80 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:08:79:e4:c1:ca:b6:99:87:5d:3d:71:ba:01:c4:7f:55:6f: f5:b8:75:44:76:15:97:9e:87:d6:8d:21:f7:a4:3b:63:98:75: ab:29:6c:07:f0:14:95:de:76:30:e6:24:5f:bb:59:97:5c:a3: 1c:ac:2a:e3:4a:24:56:d1:2a:46:0e:94:b6:5b:92:72:fa:e8: cc:cd:76:92:a0:20:0d:bc:1b:cc:6d:09:98:bf:27:e0:35:57: c4:b9:62:cf:2a:e0:f5:13:af:15:ed:78:35:3c:d5:70:c2:bb: 2f:ff:09:de:fa:20:41:6c:70:c4:a5:aa:8d:d6:83:2c:aa:c8: 6a:99:09:51:c0:6b:aa:0a:cb:d4:45:08:c9:77:4b:32:d8:cf: 4f:e7:05:3f:a2:dc:12:6b:07:68:fe:6d:ac:fc:30:f9:89:08: 48:7d:dc:28:fe:27:35:a8:fd:42:2f:d8:e0:56:5b:79:50:b2: 7e:b3:c3:1c:a1:7d:c9:0a:b7:75:8b:fe:e6:22:28:b4:a5:a9: eb:79:58:dc:d7:ac:b0:d4:12:e1:5c:aa:2d:8c:5a:c6:ea:35: d7:ce:8b:b2:1e:d5:2e:75:24:37:ad:59:f7:3d:b8:7d:72:59: 78:46:ad:f9:f0:48:e6:ec:86:ed:89:74:d1:9e:a1:ed:18:47: a1:13:cf:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUxMTA1MDAxMDEwWhcNMjUxMTEyMDAxMDEwWjAYMRYwFAYD VQQDEw02OTBhOTVlMi05ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLgnYarwonPcipl5MTUECWVMyPvMni+YYHt5Aj6Djn4TR/IZvtjyXSkKFsXd hOUCOHLjcO/hWRKPrcc8IuzHyt7IzAvO4GZkzb0dvGTvdY3QbOW+jF4e48wHM7ZG R/B3LlklvhmRQcy0KyU/z7ZSs0qpNC65gacIfH13PaO4hOMeJwhMCShKjzjic6Wp yq3y4Um2/174YcrWJU6QZbp7cG131NmUixt976PZ8IOw3WK/isaQs8SuePTg8Hg0 ey2NprtIQ5FRPXo3L2DrP4SJ33TFzbHotsTjDKU+QHJNqF/JU26417wk8iSoly8m 4pMF/+Pbmm3lnjjW1hWhJQ8KvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeANsTL S7wRMPdPoY2iehVKq8WAMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARCHnkwcq2mYddPXG6AcR/VW/1uHVEdhWXnofWjSH3pDtjmHWrKWwH 8BSV3nYw5iRfu1mXXKMcrCrjSiRW0SpGDpS2W5Jy+ujMzXaSoCANvBvMbQmYvyfg NVfEuWLPKuD1E68V7Xg1PNVwwrsv/wne+iBBbHDEpaqN1oMsqshqmQlRwGuqCsvU RQjJd0sy2M9P5wU/otwSawdo/m2s/DD5iQhIfdwo/ic1qP1CL9jgVlt5ULJ+s8Mc oX3JCrd1i/7mIii0panreVjc16yw1BLhXKotjFrG6jXXzouyHtUudSQ3rVn3Pbh9 cll4Rq358Ejm7IbtiXTRnqHtGEehE88n -----END CERTIFICATE-----Generated at Wed Nov 5 19:24:09 2025 by rpki-client