$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft File: nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json) Hash identifier: V0nUGeTiyBL/t5wCQNmroX9GJSQ2szHijMpywZhwT9M= Subject key identifier: 55:90:47:D0:31:0E:DB:C0:C7:FA:A0:E6:0D:83:AC:BB:71:72:D7:5C Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft Manifest number: 0168 Signing time: Sun 19 Oct 2025 06:36:34 +0000 Manifest this update: Sun 19 Oct 2025 06:36:33 +0000 Manifest next update: Sun 26 Oct 2025 06:36:33 +0000 Files and hashes: 1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: A30w8m89U40GJLRdXVYoTVPSolH0gEOc7myTBc2Q4jQ=) 2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: Oct 19 06:36:33 2025 GMT Not After : Oct 26 06:36:33 2025 GMT Subject: CN=68f486f2-fd59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:70:e5:72:b4:82:c4:73:f5:66:4a:53:97:01: d4:7d:27:6e:85:38:3a:1e:5a:0a:9d:19:8e:88:29: 79:c4:f6:37:a4:7a:c5:a7:c0:05:04:81:55:4e:d8: d6:77:a3:2b:66:67:69:5b:95:d4:e3:9b:27:51:b6: dc:39:d8:48:b5:88:3b:31:16:31:5b:1f:e9:ba:01: 1c:ab:77:84:e0:31:4d:54:10:7a:43:c1:4b:6b:cb: 28:9a:a5:d9:d4:59:e5:ff:0f:e8:83:a1:89:9f:19: 3e:ea:65:83:35:40:48:24:32:ac:b5:77:84:0b:10: 75:69:e9:5e:06:78:65:84:45:f2:fb:7a:61:94:ea: 2f:20:bc:07:27:de:80:83:39:b8:5f:b1:53:ca:1f: 16:f6:eb:5b:52:13:a6:23:53:e8:d8:70:5e:16:79: 68:78:f4:87:88:4e:3f:79:94:34:58:69:ec:13:14: fa:97:29:09:d4:c2:0c:74:3d:07:13:9f:46:64:65: 59:ac:08:ce:4f:5d:11:9d:c6:44:03:01:7a:7a:98: 10:40:9c:8b:e9:a1:2d:51:d5:0c:5e:21:b0:c8:35: 83:47:89:0a:ad:11:44:59:74:dc:ed:a6:af:7a:79: 52:d4:4f:de:97:b4:bd:c2:e7:c9:17:f5:13:bd:1b: 21:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:90:47:D0:31:0E:DB:C0:C7:FA:A0:E6:0D:83:AC:BB:71:72:D7:5C X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ae:75:25:00:ab:16:63:e3:58:57:57:f0:aa:87:a1:e7:ea: a8:c6:91:ef:8b:c3:70:1a:f0:41:48:f4:5c:d5:ba:0b:cb:ec: d0:2b:a6:34:27:ee:8b:fc:f9:01:b9:4b:c6:9e:2f:c4:b0:e8: 38:db:00:c9:e9:57:81:c5:40:45:44:46:0e:3a:ca:56:9d:8d: 2f:e9:7f:f2:ac:1b:70:b5:4d:e3:56:20:3a:ad:76:18:af:0a: a7:cf:11:7a:ed:02:f9:93:fa:07:c4:8f:7f:64:d3:8a:0b:94: dc:d2:ac:a8:2d:2e:3a:ef:55:de:91:36:c6:8c:71:4b:76:7d: 8b:d0:1f:b6:1c:d0:26:1b:a0:52:3d:04:1e:6e:b3:b5:d2:be: bc:87:c0:d8:16:65:d8:5c:13:79:5d:a2:47:04:d4:78:b5:31: cc:e2:a4:b2:57:0c:fc:e1:a0:ed:f0:91:db:50:09:cc:b1:e6: a7:06:7c:b7:e8:56:93:9a:9e:af:9b:29:33:43:e3:93:cd:7e: ca:cc:9b:35:38:a5:7a:4f:7e:a2:0e:66:d8:58:d7:57:e2:47: c3:1e:82:52:a3:0c:30:7b:70:76:d9:6e:5c:65:b5:81:59:f3: ac:a3:22:51:c6:60:d9:0c:0b:ca:dc:af:e1:f9:e7:84:b4:83: 8e:43:11:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDREQxMTAvBgNVBAUTKDlFNDJCMUY2OTE0NjBFMjg0NkZBNzFGMDZEQzg5QkYy Qzc0MURCOUEwHhcNMjUxMDE5MDYzNjMzWhcNMjUxMDI2MDYzNjMzWjAYMRYwFAYD VQQDEw02OGY0ODZmMi1mZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+HDlcrSCxHP1ZkpTlwHUfSduhTg6HloKnRmOiCl5xPY3pHrFp8AFBIFVTtjW d6MrZmdpW5XU45snUbbcOdhItYg7MRYxWx/pugEcq3eE4DFNVBB6Q8FLa8somqXZ 1Fnl/w/og6GJnxk+6mWDNUBIJDKstXeECxB1aeleBnhlhEXy+3phlOovILwHJ96A gzm4X7FTyh8W9utbUhOmI1Po2HBeFnloePSHiE4/eZQ0WGnsExT6lykJ1MIMdD0H E59GZGVZrAjOT10RncZEAwF6epgQQJyL6aEtUdUMXiGwyDWDR4kKrRFEWXTc7aav enlS1E/el7S9wufJF/UTvRsh5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWQR9Ax DtvAx/qg5g2DrLtxctdcMB8GA1UdIwQYMBaAFJ5CsfaRRg4oRvpx8G3Im/LHQdua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkNERC8zNDhBRDhBQzg2 MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0RpaEctbkh3YmNpYjhzZEIy NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0Rp aEctbkh3YmNpYjhzZEIyNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlrnUlAKsWY+NYV1fwqoeh5+qoxpHvi8NwGvBBSPRc1boLy+zQK6Y0 J+6L/PkBuUvGni/EsOg42wDJ6VeBxUBFREYOOspWnY0v6X/yrBtwtU3jViA6rXYY rwqnzxF67QL5k/oHxI9/ZNOKC5Tc0qyoLS4671XekTbGjHFLdn2L0B+2HNAmG6BS PQQebrO10r68h8DYFmXYXBN5XaJHBNR4tTHM4qSyVwz84aDt8JHbUAnMseanBny3 6FaTmp6vmykzQ+OTzX7KzJs1OKV6T36iDmbYWNdX4kfDHoJSowwwe3B22W5cZbWB WfOsoyJRxmDZDAvK3K/h+eeEtIOOQxGt -----END CERTIFICATE-----Generated at Mon Oct 20 04:14:58 2025 by rpki-client