$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: DgqUgK/nZlfXndLfhbX9CZPZu6qZ30BMaypNIgGa7Po= Subject key identifier: 4E:09:C5:BC:2C:B0:1E:E3:E3:06:1A:F6:45:1F:AA:56:B4:2E:73:2A Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C5C Signing time: Tue 04 Nov 2025 18:42:28 +0000 Manifest this update: Tue 04 Nov 2025 18:42:28 +0000 Manifest next update: Tue 11 Nov 2025 18:42:28 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: 2eYn3DznSm6zyX5mJNSfD+ZEIIosOKrIz7Ig1/WGXl0=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Nov 4 18:42:28 2025 GMT Not After : Nov 11 18:42:28 2025 GMT Subject: CN=690a4914-d55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b2:f7:15:c5:8f:67:0d:09:14:f4:5f:ed:78: 7b:5e:be:9b:cc:93:b1:ef:57:20:cf:7e:4d:ab:8a: 5d:a6:e7:00:83:57:68:b9:46:9a:5a:d8:e0:11:fd: d2:64:f7:a6:c7:29:b4:93:51:97:95:c5:71:af:98: 8d:b2:f3:79:9f:cf:73:09:b7:dd:20:36:99:d1:ff: 90:7e:2b:4d:4b:89:41:14:68:de:95:c1:6f:3c:59: eb:17:45:42:05:5f:20:df:f9:fb:de:73:02:58:64: d4:38:23:52:15:1a:2f:64:5d:4a:e7:a9:87:c4:37: 1a:c8:73:c8:85:5b:04:af:7f:e4:87:54:12:ea:89: f9:80:22:57:e9:8f:98:e6:c9:76:2d:79:20:94:75: 27:47:95:e8:bf:2c:fb:1f:85:86:c2:07:fe:aa:e3: 39:37:bc:b0:84:41:80:4c:b8:9e:61:5d:59:14:b3: 83:8a:2c:34:65:4e:27:4f:91:c9:64:b4:05:77:5d: 60:aa:63:08:8d:d9:7d:46:d9:6e:05:4a:c3:fd:c6: cb:c1:3b:46:13:40:b0:84:a1:59:66:48:ab:31:e8: 09:6b:d2:25:07:64:d2:a4:3b:16:15:a1:a5:22:1a: 46:cb:ef:c0:f1:07:83:52:05:ba:df:e2:63:c2:bf: 10:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:09:C5:BC:2C:B0:1E:E3:E3:06:1A:F6:45:1F:AA:56:B4:2E:73:2A X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:15:a0:21:ba:99:d0:4f:12:19:d1:d8:c2:5d:2d:4e:ed:70: 11:f8:a1:a4:44:a1:29:bb:dc:03:83:af:00:09:28:3c:31:1a: 07:b8:97:6a:ac:42:9b:83:19:ad:67:9b:75:e7:d2:02:64:52: cb:bc:77:88:7f:50:de:3c:e1:ac:d5:d0:24:61:7f:30:06:66: 95:d5:c0:3c:8f:7b:34:dc:a3:32:28:56:a3:0b:bb:fd:c9:fa: 39:a1:82:9b:38:c1:da:cf:b2:5f:e4:75:70:78:ef:d0:46:61: fd:e9:a0:50:20:d1:b2:65:99:ee:b6:73:28:84:5f:0c:2d:3a: c3:24:f3:2c:45:87:76:03:c9:97:62:21:4b:51:02:8d:1d:40: 63:66:f3:b6:a9:a6:33:e8:f5:11:83:92:1d:15:4c:6d:7d:bb: 72:41:96:85:35:aa:5a:d1:e7:b4:55:96:95:08:44:38:75:f6: f3:e5:68:ae:99:2e:f7:51:a1:f0:d6:a7:9b:9d:fe:e9:ff:58: 34:80:ce:56:af:fe:c4:d6:59:52:59:3a:7a:a1:b1:18:66:31: de:0e:fc:d9:96:aa:16:f6:cc:6a:64:f5:32:83:81:87:e9:b8: 9f:ec:7e:b8:58:ef:75:61:90:ef:d1:db:9b:9e:19:5b:9a:2b: 8b:06:67:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUxMTA0MTg0MjI4WhcNMjUxMTExMTg0MjI4WjAYMRYwFAYD VQQDEw02OTBhNDkxNC1kNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LL3FcWPZw0JFPRf7Xh7Xr6bzJOx71cgz35Nq4pdpucAg1douUaaWtjgEf3S ZPemxym0k1GXlcVxr5iNsvN5n89zCbfdIDaZ0f+QfitNS4lBFGjelcFvPFnrF0VC BV8g3/n73nMCWGTUOCNSFRovZF1K56mHxDcayHPIhVsEr3/kh1QS6on5gCJX6Y+Y 5sl2LXkglHUnR5Xovyz7H4WGwgf+quM5N7ywhEGATLieYV1ZFLODiiw0ZU4nT5HJ ZLQFd11gqmMIjdl9RtluBUrD/cbLwTtGE0CwhKFZZkirMegJa9IlB2TSpDsWFaGl IhpGy+/A8QeDUgW63+Jjwr8QiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4Jxbws sB7j4wYa9kUfqla0LnMqMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQFaAhupnQTxIZ0djCXS1O7XAR+KGkRKEpu9wDg68ACSg8MRoHuJdq rEKbgxmtZ5t159ICZFLLvHeIf1DePOGs1dAkYX8wBmaV1cA8j3s03KMyKFajC7v9 yfo5oYKbOMHaz7Jf5HVweO/QRmH96aBQINGyZZnutnMohF8MLTrDJPMsRYd2A8mX YiFLUQKNHUBjZvO2qaYz6PURg5IdFUxtfbtyQZaFNapa0ee0VZaVCEQ4dfbz5Wiu mS73UaHw1qebnf7p/1g0gM5Wr/7E1llSWTp6obEYZjHeDvzZlqoW9sxqZPUyg4GH 6bif7H64WO91YZDv0dubnhlbmiuLBmfY -----END CERTIFICATE-----Generated at Tue Nov 4 21:03:58 2025 by rpki-client