$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: 02TtNG/YVzPTnBBt9QGxMZvbkBLOiIsl2qi1rbOTbP4= Subject key identifier: 72:FB:00:66:86:BF:B1:78:7D:8F:6F:23:0C:C8:6F:2E:CA:F5:C1:CC Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 09C6 Signing time: Tue 04 Nov 2025 20:06:43 +0000 Manifest this update: Tue 04 Nov 2025 20:06:43 +0000 Manifest next update: Tue 11 Nov 2025 20:06:43 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: i9Hzqgyc17FU+tOdi9AiAX9iDVRgQxTq3vL9bQ76Id8=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Nov 4 20:06:43 2025 GMT Not After : Nov 11 20:06:43 2025 GMT Subject: CN=690a5cd3-fb0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:94:fb:76:47:14:fe:14:f5:db:f4:95:06: 5d:9a:81:73:f0:c8:c2:7f:d7:c0:c1:84:0d:08:ee: ed:d1:8d:6c:b9:cd:6e:54:66:78:49:ce:15:10:a3: 2c:7e:7a:11:3c:8b:31:57:70:c1:a3:75:3e:fc:85: 76:ce:8a:e0:98:53:22:42:1d:d0:7d:f2:d7:09:0b: a6:1c:68:d0:29:58:32:1e:8b:65:00:7f:60:58:41: 59:6d:7e:2a:b1:15:af:51:f2:1a:4a:0e:31:e6:08: 63:03:bd:94:de:e9:55:22:c7:5b:51:67:62:55:d3: 34:98:70:84:2f:6b:29:a2:1b:75:52:17:e9:22:ad: 5f:20:12:18:53:80:e7:97:30:73:fa:d6:e5:92:55: 13:e3:f2:f3:8c:92:d3:39:93:7a:75:5c:36:a6:ef: 0e:a5:7b:bf:d5:c4:db:d9:d9:61:67:7f:2e:ca:ed: 57:d3:b5:1d:47:81:28:83:2e:3b:c8:52:7e:c6:a1: bc:bc:fe:a0:78:94:88:49:b6:4b:31:7c:23:89:b0: 93:61:b5:bb:c9:73:83:8a:36:64:5c:cd:00:89:a8: 6e:a4:3d:ea:9e:d7:ad:09:67:e0:fd:77:2d:28:5e: 2a:5b:e8:e2:77:a5:65:9f:db:7c:c1:63:5f:a4:21: 94:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FB:00:66:86:BF:B1:78:7D:8F:6F:23:0C:C8:6F:2E:CA:F5:C1:CC X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ad:49:e8:f7:28:7d:92:c3:4b:e1:07:f8:05:6b:0b:d4:0c: 49:23:f9:01:b8:00:88:06:f6:68:3c:2a:5c:6d:9a:07:63:76: 61:72:71:f2:38:da:d8:c9:2a:65:73:33:2c:d9:6d:12:6e:7a: 65:66:78:e4:18:64:d9:c8:84:4f:60:b0:63:2b:ba:db:c7:f3: 67:00:da:b8:f7:15:7b:76:7b:cd:6f:a7:e4:02:2c:64:42:65: 68:06:27:e0:36:95:1e:4b:07:99:0d:9e:1f:0e:8f:98:31:e2: 6a:99:db:d4:4a:84:ea:fb:78:7e:92:ab:91:d2:fa:35:5d:76: b6:c9:f6:1b:dd:01:03:e6:1b:ce:a5:be:bc:70:5b:0c:19:c9: d1:ad:89:7f:66:16:06:d1:8e:74:21:c6:d1:ec:9e:dd:60:26: 5e:27:59:46:92:32:65:75:bd:42:c6:79:5a:b2:cb:99:eb:f9: ba:26:2d:43:a4:cb:d2:53:6b:20:1d:dc:b8:4a:7b:ca:68:92: df:f1:a1:d6:31:e4:76:65:14:15:5c:6a:61:ed:c9:08:f9:07: 10:77:83:0e:51:ff:02:b4:b4:66:b2:de:e2:37:57:b4:4d:6c: d9:0b:66:ae:b9:40:3d:39:d2:9a:35:2d:3c:ae:00:58:7b:93: a9:5c:26:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUxMTA0MjAwNjQzWhcNMjUxMTExMjAwNjQzWjAYMRYwFAYD VQQDEw02OTBhNWNkMy1mYjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7GU+3ZHFP4U9dv0lQZdmoFz8MjCf9fAwYQNCO7t0Y1suc1uVGZ4Sc4VEKMs fnoRPIsxV3DBo3U+/IV2zorgmFMiQh3QffLXCQumHGjQKVgyHotlAH9gWEFZbX4q sRWvUfIaSg4x5ghjA72U3ulVIsdbUWdiVdM0mHCEL2spoht1UhfpIq1fIBIYU4Dn lzBz+tblklUT4/LzjJLTOZN6dVw2pu8OpXu/1cTb2dlhZ38uyu1X07UdR4Eogy47 yFJ+xqG8vP6geJSISbZLMXwjibCTYbW7yXODijZkXM0AiahupD3qntetCWfg/Xct KF4qW+jid6Vln9t8wWNfpCGU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHL7AGaG v7F4fY9vIwzIby7K9cHMMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhrUno9yh9ksNL4Qf4BWsL1AxJI/kBuACIBvZoPCpcbZoHY3ZhcnHy ONrYySplczMs2W0SbnplZnjkGGTZyIRPYLBjK7rbx/NnANq49xV7dnvNb6fkAixk QmVoBifgNpUeSweZDZ4fDo+YMeJqmdvUSoTq+3h+kquR0vo1XXa2yfYb3QED5hvO pb68cFsMGcnRrYl/ZhYG0Y50IcbR7J7dYCZeJ1lGkjJldb1CxnlassuZ6/m6Ji1D pMvSU2sgHdy4SnvKaJLf8aHWMeR2ZRQVXGph7ckI+QcQd4MOUf8CtLRmst7iN1e0 TWzZC2auuUA9OdKaNS08rgBYe5OpXCba -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:30 2025 by rpki-client