$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: a6BagKbx5GIkQ4DOsbqnLwTVYDseTTppQWdpEidOk7U= Subject key identifier: 47:F6:62:50:49:8C:AA:DB:42:01:48:03:F5:BC:21:BC:1E:72:6C:95 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 031C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 0310 Signing time: Sun 19 Oct 2025 03:15:26 +0000 Manifest this update: Sun 19 Oct 2025 03:15:26 +0000 Manifest next update: Sun 26 Oct 2025 03:15:26 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: ExYnBmePtNMmWgXWAZxEXZXDeLWJyZncQ8nnHcNeyVg=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: q/TcJaaAitP3rzneDoOcxqjjnobWifgs1ChVJEG3jdI=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: NLX9iBQc5qpA5HiI79qnyQxZYjEiAaFpUSGQqEwDv14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Oct 19 03:15:26 2025 GMT Not After : Oct 26 03:15:26 2025 GMT Subject: CN=68f457ce-5e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:30:49:1c:87:67:a6:dc:06:2f:d1:2c:d7: ca:97:aa:5e:dd:4c:b2:46:3e:88:84:36:3f:37:9b: 47:0a:f1:da:d9:a3:39:4e:c5:dd:96:f0:71:8b:4f: 7d:6a:76:8f:b2:ae:18:3a:ce:00:81:f0:fc:a8:cc: 76:50:ca:b3:b5:0e:e4:42:a4:5e:c4:4a:98:b3:c5: 15:58:be:f4:0f:84:90:5b:c4:0e:76:c6:17:54:53: 0b:98:1f:47:e3:0d:14:aa:b5:3b:39:9f:ae:bb:23: 9d:26:59:fb:db:5f:d1:4b:e7:db:9b:c3:13:a7:71: 00:1d:c0:f6:e8:0d:d4:3a:a1:d0:51:ab:45:59:ff: 07:1e:bb:da:b3:93:62:2d:a4:9c:eb:7a:0e:96:f4: 2c:7f:bb:42:ce:a4:52:13:cc:07:4a:5a:99:32:38: 99:c8:81:84:0e:8e:86:cd:9f:ea:40:db:d5:96:c8: c9:fa:fe:78:62:c0:c0:21:89:35:e1:c6:fd:d4:d2: b3:63:88:e3:94:0e:5d:00:e7:cb:81:46:14:2d:46: 67:02:89:d7:2d:1a:5b:ed:7b:8d:e7:e4:c8:96:3a: 96:8e:dd:db:6d:f8:43:2a:bb:c4:a9:20:ec:5d:c6: 6a:b4:b8:49:fb:3d:07:ff:30:a5:0d:e3:3c:1f:f9: 37:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F6:62:50:49:8C:AA:DB:42:01:48:03:F5:BC:21:BC:1E:72:6C:95 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:80:ff:a6:8b:f8:8f:af:cc:b3:88:2f:33:51:19:9d:b9:3e: 67:ef:36:60:fd:01:c5:df:49:b8:f9:41:93:fa:4c:a8:25:0e: a1:bf:63:69:37:6b:44:26:bd:c2:f8:6a:7a:d7:76:06:75:03: 89:4d:77:ff:a8:ba:6d:d7:39:e1:ec:c6:c3:14:a6:de:eb:41: 96:83:82:6c:29:7d:a5:16:84:7e:07:95:6c:b9:09:aa:d5:dd: 75:be:98:7d:7f:53:7c:46:6d:6c:73:23:7f:38:b9:2f:0a:31: c7:99:b7:02:0d:7c:11:e0:89:0a:e0:62:d8:db:3f:2e:c3:08: 66:14:0c:3f:77:47:4a:f6:fd:fb:ff:48:e1:b3:27:cb:7a:0e: 81:9a:ea:08:c8:84:1c:c6:12:9f:83:be:0c:79:6e:99:89:0c: 68:2f:3f:3d:6e:f6:52:df:f4:da:2c:dd:e2:8d:fe:04:64:82: ee:56:3b:b0:a5:50:a0:33:2a:48:f4:ee:fe:4d:0e:2a:9c:c4: bd:78:eb:04:75:c9:cf:e4:54:7d:36:f1:e4:a2:42:c8:7c:dc: 3d:33:06:13:22:fc:8c:69:6b:ff:ef:e8:a2:de:ca:3e:99:92: e6:ed:e1:e3:ca:b4:06:68:98:55:aa:aa:dd:c4:a4:1a:a7:34: d6:79:04:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUxMDE5MDMxNTI2WhcNMjUxMDI2MDMxNTI2WjAYMRYwFAYD VQQDEw02OGY0NTdjZS01ZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWMwSRyHZ6bcBi/RLNfKl6pe3UyyRj6IhDY/N5tHCvHa2aM5TsXdlvBxi099 anaPsq4YOs4AgfD8qMx2UMqztQ7kQqRexEqYs8UVWL70D4SQW8QOdsYXVFMLmB9H 4w0UqrU7OZ+uuyOdJln721/RS+fbm8MTp3EAHcD26A3UOqHQUatFWf8HHrvas5Ni LaSc63oOlvQsf7tCzqRSE8wHSlqZMjiZyIGEDo6GzZ/qQNvVlsjJ+v54YsDAIYk1 4cb91NKzY4jjlA5dAOfLgUYULUZnAonXLRpb7XuN5+TIljqWjt3bbfhDKrvEqSDs XcZqtLhJ+z0H/zClDeM8H/k3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEf2YlBJ jKrbQgFIA/W8IbwecmyVMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLgP+mi/iPr8yziC8zURmduT5n7zZg/QHF30m4+UGT+kyoJQ6hv2Np N2tEJr3C+Gp613YGdQOJTXf/qLpt1znh7MbDFKbe60GWg4JsKX2lFoR+B5VsuQmq 1d11vph9f1N8Rm1scyN/OLkvCjHHmbcCDXwR4IkK4GLY2z8uwwhmFAw/d0dK9v37 /0jhsyfLeg6BmuoIyIQcxhKfg74MeW6ZiQxoLz89bvZS3/TaLN3ijf4EZILuVjuw pVCgMypI9O7+TQ4qnMS9eOsEdcnP5FR9NvHkokLIfNw9MwYTIvyMaWv/7+ii3so+ mZLm7eHjyrQGaJhVqqrdxKQapzTWeQQM -----END CERTIFICATE-----Generated at Mon Oct 20 07:55:39 2025 by rpki-client