$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: QMvUyZLi+KRqSlR5xAphJJhEUm0FqfKKDog02Q1q2RA= Subject key identifier: DE:49:CE:3A:ED:42:68:ED:39:29:27:70:9C:FA:15:28:06:64:19:B2 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B73 Signing time: Sat 18 Oct 2025 19:55:45 +0000 Manifest this update: Sat 18 Oct 2025 19:55:45 +0000 Manifest next update: Sat 25 Oct 2025 19:55:45 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: QWovoqJ06lvSEu3dSqPNxYOc+UQzNusZQHPcSULo/Js=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: HQ+n/zvxBXsyHktY7VZtlLogGsEgUPieMT07w6OWlaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2941 (0xb7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Oct 18 19:55:45 2025 GMT Not After : Oct 25 19:55:45 2025 GMT Subject: CN=68f3f0c1-e0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:8b:68:6d:88:4f:61:66:e1:a3:67:87:28: e1:67:a4:18:8a:6d:f1:cc:d9:a3:56:bb:93:0c:01: 6a:03:da:ad:a6:6d:cd:18:a8:85:86:3a:a7:4d:27: 6c:d5:43:3d:26:e3:9a:a2:ca:2e:82:5d:a3:3e:58: 77:4a:66:0c:db:48:e1:84:5b:fa:ca:30:96:ba:39: a9:3b:3d:b2:00:b4:19:dc:a1:dc:9a:5b:34:52:43: 0f:67:24:a6:a9:2c:12:82:39:4c:cb:2c:0c:f5:f7: 04:06:46:ba:45:0f:ba:22:90:b4:a4:1c:70:ac:df: b5:96:d6:3e:ae:b5:15:49:7b:25:2b:b5:03:f2:10: ed:0d:a1:7c:8c:ad:49:42:8c:0d:61:15:45:b8:d6: d9:63:6c:54:a6:e2:4e:ee:76:f0:08:d8:86:cb:d5: 84:17:70:d8:7e:24:ce:a3:56:b0:31:68:1e:4c:1f: d5:ea:37:a9:32:97:4e:ed:b0:18:cf:85:2a:0d:c6: 15:14:37:38:df:8b:94:0e:60:8b:6b:c9:37:5c:0e: 34:eb:6c:56:7d:16:77:54:fa:97:d8:ec:36:c6:32: e5:6d:4b:ed:e2:64:c3:fb:b7:7b:00:b8:b4:e5:cf: ff:2f:3a:8c:93:a6:3e:dc:11:cd:b1:2f:9e:b3:d8: d6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:49:CE:3A:ED:42:68:ED:39:29:27:70:9C:FA:15:28:06:64:19:B2 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fa:53:b0:d6:26:76:42:c8:00:0d:dd:10:50:e9:56:30:63: 9d:06:b8:32:e2:8f:71:d8:41:5c:12:e3:bc:57:58:4e:f4:b4: 0d:34:a5:6e:16:36:83:fa:58:ab:8f:b0:94:88:0c:25:e1:ff: fc:06:f4:94:75:08:54:da:89:af:ab:cb:0d:d1:1e:7a:30:97: eb:f3:ea:7b:0b:c0:5a:9e:fe:73:20:f3:40:f5:8c:7c:ab:db: 23:06:80:bf:bc:29:1c:26:9e:be:4d:70:01:43:60:c4:1d:76: 04:14:98:74:4c:1d:54:f4:c4:5c:dc:ba:1b:04:63:ba:71:0b: 2d:e6:ad:50:60:be:3d:04:fb:ad:fc:5e:c2:e4:17:49:98:70: aa:c9:03:9c:a2:a7:7c:d8:55:de:74:ba:33:73:6c:94:c6:cc: f3:5a:99:d1:7f:13:42:98:75:07:7c:b4:e4:e3:3d:0d:bd:36: 90:87:a9:ab:e7:8a:8b:f9:96:d8:c1:8b:6d:c4:dd:d3:87:ae: 4a:fe:07:47:dd:54:aa:03:7c:9a:3d:a8:93:d1:23:9f:84:ce: 59:26:b1:66:8f:95:46:0c:59:0e:93:d9:2c:ea:c5:b8:85:c8: 12:09:ba:c8:4e:d7:6e:b3:6b:13:6a:c9:89:c6:09:99:c3:3e: 44:0e:bc:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUxMDE4MTk1NTQ1WhcNMjUxMDI1MTk1NTQ1WjAYMRYwFAYD VQQDEw02OGYzZjBjMS1lMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc+LaG2IT2Fm4aNnhyjhZ6QYim3xzNmjVruTDAFqA9qtpm3NGKiFhjqnTSds 1UM9JuOaosougl2jPlh3SmYM20jhhFv6yjCWujmpOz2yALQZ3KHcmls0UkMPZySm qSwSgjlMyywM9fcEBka6RQ+6IpC0pBxwrN+1ltY+rrUVSXslK7UD8hDtDaF8jK1J QowNYRVFuNbZY2xUpuJO7nbwCNiGy9WEF3DYfiTOo1awMWgeTB/V6jepMpdO7bAY z4UqDcYVFDc434uUDmCLa8k3XA4062xWfRZ3VPqX2Ow2xjLlbUvt4mTD+7d7ALi0 5c//LzqMk6Y+3BHNsS+es9jWXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5Jzjrt QmjtOSkncJz6FSgGZBmyMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA+lOw1iZ2QsgADd0QUOlWMGOdBrgy4o9x2EFcEuO8V1hO9LQNNKVu FjaD+lirj7CUiAwl4f/8BvSUdQhU2omvq8sN0R56MJfr8+p7C8Banv5zIPNA9Yx8 q9sjBoC/vCkcJp6+TXABQ2DEHXYEFJh0TB1U9MRc3LobBGO6cQst5q1QYL49BPut /F7C5BdJmHCqyQOcoqd82FXedLozc2yUxszzWpnRfxNCmHUHfLTk4z0NvTaQh6mr 54qL+ZbYwYttxN3Th65K/gdH3VSqA3yaPaiT0SOfhM5ZJrFmj5VGDFkOk9ks6sW4 hcgSCbrITtdus2sTasmJxgmZwz5EDrwf -----END CERTIFICATE-----Generated at Mon Oct 20 12:43:01 2025 by rpki-client