$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: D3OfpJQ6zTWqo03SZ/it0O5NXlQlIVBmUtiX5Ngf9UE= Subject key identifier: 19:09:13:39:52:D5:8B:88:96:AC:33:8D:B5:AA:10:53:0D:2D:07:D4 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1FD7 Signing time: Sat 18 Oct 2025 16:21:29 +0000 Manifest this update: Sat 18 Oct 2025 16:21:29 +0000 Manifest next update: Sat 25 Oct 2025 16:21:29 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: rKBU5qNxDopj1Ie20vIoXa164Ff6c+BItQJtCPdfWfQ=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Oct 18 16:21:29 2025 GMT Not After : Oct 25 16:21:29 2025 GMT Subject: CN=68f3be89-3178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:81:35:61:ed:a8:8d:db:93:0f:a8:0e:64: d6:fb:7d:67:dc:3a:19:c9:7f:21:77:2a:4d:dd:ff: 61:e1:49:07:97:0d:03:3b:7d:8d:70:b6:74:58:6c: 53:38:ec:18:f1:dc:f1:05:0b:ab:dd:0a:1d:17:77: 0c:b2:47:28:ee:94:fa:9e:8d:ff:fa:e2:85:d5:79: e8:9b:c0:3e:1d:09:58:f9:50:20:9b:61:86:a8:d2: 96:31:8f:a7:2e:36:91:40:5f:f1:3d:ef:c6:05:79: 18:d3:dc:f5:cb:37:18:49:63:a7:ce:ff:7b:87:c7: e4:e6:86:59:f2:c2:f3:77:02:85:2e:cd:68:89:9c: fc:04:4e:4b:e2:9a:39:57:61:1d:e5:ce:d9:73:50: 0e:5f:e7:6c:46:8c:c5:a7:fb:9a:6b:40:1d:60:7d: a8:b1:67:cf:bc:f6:df:e1:2e:55:dd:b7:0d:4e:b1: db:13:48:cd:8e:3a:8a:f7:6f:7c:8f:96:e9:29:63: d6:cd:fd:53:7b:e1:78:2e:56:b7:32:cd:5c:ee:aa: b5:77:ce:fe:d8:fa:ac:4e:88:d6:58:02:91:4f:99: 24:6f:52:ec:83:99:e1:90:7c:13:9c:be:36:18:80: c4:29:51:ac:d5:30:56:59:40:9f:fd:86:6c:3c:20: 56:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:09:13:39:52:D5:8B:88:96:AC:33:8D:B5:AA:10:53:0D:2D:07:D4 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:44:ac:19:2a:5e:0c:8f:dd:73:e5:7f:cc:c0:a2:45:b9:8d: 90:2d:bd:90:f8:40:d1:6f:73:a7:6d:1d:d2:e7:1c:aa:f5:ec: 65:03:d0:04:85:02:e3:d5:25:9f:90:d8:c9:5b:26:1b:6c:43: 01:11:dc:62:29:67:a7:96:27:54:e3:80:fd:3f:09:52:a8:f5: 22:0c:d3:a9:f0:97:38:19:17:1f:95:34:a9:c1:79:85:4b:51: 33:20:a0:db:20:c3:88:91:ce:a2:77:0a:b8:06:75:46:e2:51: 80:eb:62:0e:11:6c:15:ef:ed:83:9e:f8:5e:df:1e:be:d9:fd: f1:8e:b6:8c:02:1a:60:98:d8:59:85:e7:a7:f6:da:b8:fa:58: 0b:a4:34:9b:82:83:84:ad:c0:cc:55:0e:8e:5d:bb:c7:fd:2a: 64:68:f8:1f:04:a8:f3:61:63:b8:aa:fa:b6:19:9e:81:c5:76: b7:83:71:53:5a:0b:06:b6:f4:06:37:0f:11:d2:ff:11:4d:39: 10:60:03:bb:a8:41:73:62:6c:92:d5:22:84:21:bd:f3:1e:12: ba:2c:43:a8:a4:87:92:55:dc:f5:a1:3e:d9:9f:e2:14:85:fb: dc:1f:c1:2a:fd:aa:43:f1:3c:cc:a7:37:7a:1f:83:cf:a8:48: 8e:a7:92:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUxMDE4MTYyMTI5WhcNMjUxMDI1MTYyMTI5WjAYMRYwFAYD VQQDEw02OGYzYmU4OS0zMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08WBNWHtqI3bkw+oDmTW+31n3DoZyX8hdypN3f9h4UkHlw0DO32NcLZ0WGxT OOwY8dzxBQur3QodF3cMskco7pT6no3/+uKF1Xnom8A+HQlY+VAgm2GGqNKWMY+n LjaRQF/xPe/GBXkY09z1yzcYSWOnzv97h8fk5oZZ8sLzdwKFLs1oiZz8BE5L4po5 V2Ed5c7Zc1AOX+dsRozFp/uaa0AdYH2osWfPvPbf4S5V3bcNTrHbE0jNjjqK9298 j5bpKWPWzf1Te+F4Lla3Ms1c7qq1d87+2PqsTojWWAKRT5kkb1Lsg5nhkHwTnL42 GIDEKVGs1TBWWUCf/YZsPCBWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkJEzlS 1YuIlqwzjbWqEFMNLQfUMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSRKwZKl4Mj91z5X/MwKJFuY2QLb2Q+EDRb3OnbR3S5xyq9exlA9AE hQLj1SWfkNjJWyYbbEMBEdxiKWenlidU44D9PwlSqPUiDNOp8Jc4GRcflTSpwXmF S1EzIKDbIMOIkc6idwq4BnVG4lGA62IOEWwV7+2Dnvhe3x6+2f3xjraMAhpgmNhZ heen9tq4+lgLpDSbgoOErcDMVQ6OXbvH/SpkaPgfBKjzYWO4qvq2GZ6BxXa3g3FT WgsGtvQGNw8R0v8RTTkQYAO7qEFzYmyS1SKEIb3zHhK6LEOopIeSVdz1oT7Zn+IU hfvcH8Eq/apD8TzMpzd6H4PPqEiOp5Lg -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:09 2025 by rpki-client