$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: 4oKdZ6XgFHbzXKp2zoMK6f8gANbRQjGnHmbgCWRAByk= Subject key identifier: 40:B8:42:6F:D3:35:CC:C3:FF:8A:06:40:EA:66:EC:DF:C8:22:DE:5F Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 01C8 Signing time: Wed 05 Nov 2025 03:01:19 +0000 Manifest this update: Wed 05 Nov 2025 03:01:19 +0000 Manifest next update: Wed 12 Nov 2025 03:01:18 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: N0XRyjIWgUVFOcdu9l6ez8BHjiHr+IqjY6DVqUb35N0=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Nov 5 03:01:19 2025 GMT Not After : Nov 12 03:01:18 2025 GMT Subject: CN=690abdff-2660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:cc:26:a7:34:bb:3e:29:70:1e:36:12:93: f8:76:d4:f8:29:62:90:05:75:53:e5:4b:3c:57:06: 6f:ea:c6:f4:be:7e:66:73:26:1d:2a:a7:81:a6:ae: 79:18:3e:e7:11:f8:c2:5c:61:88:3c:9b:88:bb:51: 4c:77:37:86:77:1c:54:ab:6a:0a:bc:d7:58:c6:03: f0:47:41:f3:18:3e:b4:75:bd:97:51:92:7e:43:d3: 50:1f:90:58:28:84:16:7e:b9:13:12:3e:61:24:be: 07:84:fe:5c:0c:08:cb:ae:b8:7b:2b:cf:64:63:a4: ae:45:3a:f8:f2:85:d1:3c:11:0f:9b:8a:60:31:e9: 0f:5b:71:8f:2b:ef:0a:2e:13:70:e8:e0:82:e3:55: 33:cd:4b:0f:dd:4b:27:9f:3d:d2:cf:86:4d:eb:4c: 6c:af:fd:05:78:b0:fb:e8:f8:d8:fa:92:82:cb:eb: 3c:21:76:4e:e1:47:3d:40:0c:9a:1a:c3:28:5b:58: 60:cf:57:0a:ec:c1:ac:26:89:a3:89:57:a8:07:6a: 6d:0e:99:1d:a8:a1:a5:02:c0:ec:77:f6:52:4c:36: 38:5e:0d:20:69:80:98:02:8a:72:19:0d:19:28:2f: e8:1f:4d:df:a0:fd:8f:ef:7a:93:e8:88:62:6c:e7: 0a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B8:42:6F:D3:35:CC:C3:FF:8A:06:40:EA:66:EC:DF:C8:22:DE:5F X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:61:4a:f9:0f:c5:f3:7d:63:6d:a3:ad:e1:6e:72:2c:23:f4: d3:a4:58:f9:1f:b3:32:ec:15:e2:42:3d:5e:63:c2:69:d0:c6: 36:ba:02:71:5e:77:57:b6:d3:0f:5b:bb:8e:44:3f:cf:96:e6: 62:c1:00:b0:2c:4a:27:44:1d:03:52:aa:c1:4d:ab:8f:8d:08: f3:9e:0c:41:99:7a:fd:9e:b2:6f:d7:d9:5d:eb:5c:70:32:1c: a6:84:81:40:fe:73:31:51:12:92:87:5f:3d:9a:1b:6e:7a:e1: 4d:b0:36:75:1f:de:fd:ce:fd:de:f2:19:ab:a0:08:4e:55:5b: 41:93:d3:0c:b4:a4:64:07:7f:61:b8:f5:06:4e:e5:ae:71:e5: 34:bc:16:ff:bc:46:2d:97:3a:02:35:2e:ef:32:b5:14:92:fb: 1c:7e:c4:2c:c1:db:89:35:4d:74:d7:33:23:e8:13:87:48:7d: 4b:f1:c3:36:85:55:10:29:4c:93:46:34:7f:f3:27:c7:89:eb: 1d:c2:74:83:22:0e:fb:4c:a4:8f:98:35:03:63:15:b9:36:15: a8:5e:fb:3f:ed:03:1c:40:c8:cd:a8:5f:e3:53:fb:db:e6:9b: a9:bc:f6:a1:82:a3:9f:3b:50:40:f6:f8:81:e0:43:ee:ea:33: 0d:40:fc:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUxMTA1MDMwMTE5WhcNMjUxMTEyMDMwMTE4WjAYMRYwFAYD VQQDEw02OTBhYmRmZi0yNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/zMJqc0uz4pcB42EpP4dtT4KWKQBXVT5Us8VwZv6sb0vn5mcyYdKqeBpq55 GD7nEfjCXGGIPJuIu1FMdzeGdxxUq2oKvNdYxgPwR0HzGD60db2XUZJ+Q9NQH5BY KIQWfrkTEj5hJL4HhP5cDAjLrrh7K89kY6SuRTr48oXRPBEPm4pgMekPW3GPK+8K LhNw6OCC41UzzUsP3Usnnz3Sz4ZN60xsr/0FeLD76PjY+pKCy+s8IXZO4Uc9QAya GsMoW1hgz1cK7MGsJomjiVeoB2ptDpkdqKGlAsDsd/ZSTDY4Xg0gaYCYAopyGQ0Z KC/oH03foP2P73qT6IhibOcKOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC4Qm/T NczD/4oGQOpm7N/IIt5fMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgYUr5D8XzfWNto63hbnIsI/TTpFj5H7My7BXiQj1eY8Jp0MY2ugJx XndXttMPW7uORD/PluZiwQCwLEonRB0DUqrBTauPjQjzngxBmXr9nrJv19ld61xw MhymhIFA/nMxURKSh189mhtueuFNsDZ1H979zv3e8hmroAhOVVtBk9MMtKRkB39h uPUGTuWuceU0vBb/vEYtlzoCNS7vMrUUkvscfsQswduJNU101zMj6BOHSH1L8cM2 hVUQKUyTRjR/8yfHiesdwnSDIg77TKSPmDUDYxW5NhWoXvs/7QMcQMjNqF/jU/vb 5pupvPahgqOfO1BA9viB4EPu6jMNQPw2 -----END CERTIFICATE-----Generated at Wed Nov 5 10:03:55 2025 by rpki-client