$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft File: PVlGAD7uVIrZXXlssYi3UcV82sg.mft (raw, json) Hash identifier: kRxrHSzVQN4Gf517upztNiOceuXq6W2HkMeFOjrDBwU= Subject key identifier: 59:E4:5B:19:DB:61:8D:D4:F0:B8:7F:CE:14:FF:BC:CC:4B:73:9B:12 Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft Manifest number: 0102 Signing time: Wed 05 Nov 2025 05:21:15 +0000 Manifest this update: Wed 05 Nov 2025 05:21:15 +0000 Manifest next update: Wed 12 Nov 2025 05:21:15 +0000 Files and hashes: 1: PVlGAD7uVIrZXXlssYi3UcV82sg.crl (hash: zHGRosdrBuRGzw9zwBckUju8UaGxDNpsfap5UMzmma8=) 2: D0CDFEEA406E11EFA085272AC4F9AE02.roa (hash: aewA7Recxf1QEkAlzyh8eNS8lnCo6hOfpjo3yvsUTtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Nov 5 05:21:15 2025 GMT Not After : Nov 12 05:21:15 2025 GMT Subject: CN=690adecb-762b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a6:e3:05:e4:c3:c5:6e:2d:ff:14:d7:8d:8b: 65:2f:94:87:ff:ea:c6:e4:3f:02:27:4e:a4:06:32: cf:2c:63:2d:42:9c:5d:31:83:ed:a8:8f:56:62:f8: 46:0f:f6:b8:74:27:d5:bb:b6:c6:17:de:57:4e:3f: 77:11:dd:ab:bd:73:5c:46:36:88:16:1c:67:f3:2f: e0:a4:1b:26:e6:89:5a:f3:e1:35:e0:95:ef:1d:91: 93:57:56:a6:97:86:5c:16:c5:f6:b2:bc:bb:80:ba: 2c:8b:85:2e:50:d5:4c:d9:24:8f:e4:9f:ca:3a:74: 80:52:f6:3a:cc:b1:35:14:5d:fe:32:85:a1:0a:04: d3:76:73:12:8b:b4:04:c6:ed:a0:e5:dd:99:dc:52: 7d:5c:11:b8:96:3c:2a:0b:3c:b1:69:14:80:b9:0c: 05:d3:95:bc:af:b4:78:51:c1:e8:d3:d9:28:d6:76: fc:c7:ad:5a:c5:ce:bf:e0:58:f3:24:09:78:a6:11: e2:63:55:0e:1a:02:e9:7d:dc:05:97:c6:67:93:87: 40:3b:eb:5f:d9:f1:5e:ef:12:22:99:15:26:d0:56: d6:fd:39:6c:bf:b2:59:cf:7e:4d:42:51:d2:62:ba: bc:bb:60:1b:fb:fc:6f:43:ac:19:75:a4:c7:93:ed: be:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E4:5B:19:DB:61:8D:D4:F0:B8:7F:CE:14:FF:BC:CC:4B:73:9B:12 X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:3d:34:45:4b:50:16:25:34:7e:f3:7e:3e:04:99:46:53:3c: ff:24:22:83:8c:1c:ca:0e:fe:44:86:58:ec:8f:66:fa:ef:35: 76:84:37:6a:1e:1b:c8:48:fb:7f:b8:f3:87:ae:59:bc:38:d8: d8:05:29:35:5b:3d:2d:b6:08:98:27:67:90:ed:61:f3:6d:50: 18:b4:80:6d:ad:ad:57:fb:01:84:7f:c3:87:f3:16:9d:b5:c6: 6b:43:9c:23:82:f0:c7:d6:6e:20:85:93:ab:a1:e8:5a:51:69: aa:1a:fd:86:50:b8:49:97:54:83:31:a5:2a:30:65:1e:0a:a0: e9:2c:09:14:08:a4:16:23:3e:c7:4b:e5:f8:b9:08:91:41:6c: e3:c3:36:66:69:6a:ea:f1:dc:2f:c4:b5:0f:22:dd:da:72:fb: e0:d0:f1:0b:e1:ca:79:47:83:d5:51:d0:dc:b1:7c:0e:f6:ad: 00:5f:6e:9e:e1:15:c0:34:a2:fc:75:57:d0:1e:cd:3c:91:c1: 44:93:1f:e0:dd:4b:7f:2d:3f:e2:c6:5b:6d:03:06:89:7d:b2: ae:19:07:b5:fc:72:4d:fb:16:3f:83:07:7b:3c:ad:49:ff:e3: 3f:04:c9:7f:df:e7:bf:da:a4:8f:a7:77:1e:25:17:02:df:3b: 97:49:ac:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjUxMTA1MDUyMTE1WhcNMjUxMTEyMDUyMTE1WjAYMRYwFAYD VQQDEw02OTBhZGVjYi03NjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqbjBeTDxW4t/xTXjYtlL5SH/+rG5D8CJ06kBjLPLGMtQpxdMYPtqI9WYvhG D/a4dCfVu7bGF95XTj93Ed2rvXNcRjaIFhxn8y/gpBsm5ola8+E14JXvHZGTV1am l4ZcFsX2sry7gLosi4UuUNVM2SSP5J/KOnSAUvY6zLE1FF3+MoWhCgTTdnMSi7QE xu2g5d2Z3FJ9XBG4ljwqCzyxaRSAuQwF05W8r7R4UcHo09ko1nb8x61axc6/4Fjz JAl4phHiY1UOGgLpfdwFl8Znk4dAO+tf2fFe7xIimRUm0FbW/Tlsv7JZz35NQlHS Yrq8u2Ab+/xvQ6wZdaTHk+2+PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnkWxnb YY3U8Lh/zhT/vMxLc5sSMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wQkQ5ODVFODNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJ clpYWGxzc1lpM1VjVjgyc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnPTRFS1AWJTR+834+BJlGUzz/JCKDjBzKDv5Ehljsj2b67zV2hDdq HhvISPt/uPOHrlm8ONjYBSk1Wz0ttgiYJ2eQ7WHzbVAYtIBtra1X+wGEf8OH8xad tcZrQ5wjgvDH1m4ghZOroehaUWmqGv2GULhJl1SDMaUqMGUeCqDpLAkUCKQWIz7H S+X4uQiRQWzjwzZmaWrq8dwvxLUPIt3acvvg0PEL4cp5R4PVUdDcsXwO9q0AX26e 4RXANKL8dVfQHs08kcFEkx/g3Ut/LT/ixlttAwaJfbKuGQe1/HJN+xY/gwd7PK1J /+M/BMl/3+e/2qSPp3ceJRcC3zuXSaxi -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:31 2025 by rpki-client