$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: x1LCx85cBAGfkv0lvJy7YF+NPXn6hDQHXVAeSFPubf0= Subject key identifier: 61:AC:D2:8F:6F:2A:98:42:EE:A7:54:43:85:70:17:02:5A:78:47:60 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 0794 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 078D Signing time: Sat 18 Oct 2025 22:50:28 +0000 Manifest this update: Sat 18 Oct 2025 22:50:27 +0000 Manifest next update: Sat 25 Oct 2025 22:50:27 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: QzQYGp5utNS9V2fLes0oHwRiJxHbwXSrWpPPz7zt7ec=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1940 (0x794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Oct 18 22:50:27 2025 GMT Not After : Oct 25 22:50:27 2025 GMT Subject: CN=68f419b3-936a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5c:db:f7:09:ca:40:b3:3d:23:96:ad:7c:1d: 06:96:d2:5d:0f:0c:4e:d1:05:c2:f4:52:8e:21:ec: 72:83:7b:39:09:29:b2:e4:4e:10:dc:e1:b3:49:88: 43:1a:02:85:57:9c:80:bc:2c:9d:1c:a5:db:40:44: 31:f0:30:44:02:8b:2b:6f:21:e9:18:06:ca:0a:c5: da:e2:e3:41:67:25:53:ea:ce:ab:22:55:5e:4a:40: 9a:5f:97:0a:56:d8:cb:b7:b1:fa:f3:94:61:14:69: b8:e5:6e:ab:21:f3:4d:1b:66:0e:e8:d2:dc:2f:88: 49:ea:1d:28:60:78:62:18:27:4a:f9:ea:fa:80:1e: 9f:1b:7e:7c:c7:d9:52:c2:3e:09:fb:9b:e8:1c:ba: 70:55:1a:84:bb:4f:a2:d1:27:e8:3b:db:bb:90:25: 63:ec:e8:a3:40:8d:bb:0a:d9:02:5e:5e:37:9f:b9: 7a:a4:6c:7e:ad:5f:70:b3:94:a5:26:89:f2:58:76: 4c:bd:3d:b0:08:55:2a:44:98:48:d5:b4:16:7c:c0: 32:77:d7:ad:58:0f:e8:3a:f5:a6:52:f3:d6:df:58: 4d:09:f9:35:60:85:ca:57:f2:0e:ad:67:ef:b7:55: 8c:f0:41:6f:79:9f:b7:0c:58:c1:7d:29:b3:75:bc: 32:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AC:D2:8F:6F:2A:98:42:EE:A7:54:43:85:70:17:02:5A:78:47:60 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:20:f1:99:fa:01:5f:18:53:e7:e6:f9:86:54:db:20:ff:53: bc:0f:88:9d:df:94:bd:77:f5:74:3f:f5:9e:21:4b:be:4d:8c: 71:7a:67:fa:3b:01:0e:b1:1b:1a:7d:01:72:6d:95:db:3e:01: 01:8f:6e:fa:db:6d:96:09:2e:db:4d:6d:25:47:f2:4e:52:48: 7b:83:0c:93:e1:4f:c3:f0:25:25:a5:7e:f4:02:c4:c3:ab:b1: 2b:a9:95:64:a2:fe:44:75:8a:13:a7:65:85:48:1e:88:3a:92: 79:b9:10:ce:5f:b0:ae:96:cb:0e:ad:1d:13:79:12:d8:58:4e: fb:01:9e:7b:ed:d8:f7:80:f7:52:24:41:a3:7f:d1:21:99:c5: fe:a9:43:d5:c0:00:d2:3f:21:8f:56:9d:27:6d:e8:0f:65:58: 59:63:79:bf:62:f3:d5:99:51:11:3a:62:57:ce:c3:bc:fd:5e: 7e:b0:ce:8f:54:f3:0a:a2:ab:e7:e1:1e:97:1e:bb:52:49:a7: 9b:bf:b9:cc:68:d9:ac:ec:4a:98:9d:e2:5d:04:63:cf:a9:a1: 13:2e:08:16:2e:d7:17:2f:5a:2f:e5:ea:60:63:d4:b0:aa:05: a5:ee:0b:be:c2:00:ba:67:0d:72:49:32:d7:40:34:ea:3a:2f: 1a:f3:93:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUxMDE4MjI1MDI3WhcNMjUxMDI1MjI1MDI3WjAYMRYwFAYD VQQDEw02OGY0MTliMy05MzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1zb9wnKQLM9I5atfB0GltJdDwxO0QXC9FKOIexyg3s5CSmy5E4Q3OGzSYhD GgKFV5yAvCydHKXbQEQx8DBEAosrbyHpGAbKCsXa4uNBZyVT6s6rIlVeSkCaX5cK VtjLt7H685RhFGm45W6rIfNNG2YO6NLcL4hJ6h0oYHhiGCdK+er6gB6fG358x9lS wj4J+5voHLpwVRqEu0+i0SfoO9u7kCVj7OijQI27CtkCXl43n7l6pGx+rV9ws5Sl JonyWHZMvT2wCFUqRJhI1bQWfMAyd9etWA/oOvWmUvPW31hNCfk1YIXKV/IOrWfv t1WM8EFveZ+3DFjBfSmzdbwyIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGs0o9v KphC7qdUQ4VwFwJaeEdgMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbIPGZ+gFfGFPn5vmGVNsg/1O8D4id35S9d/V0P/WeIUu+TYxxemf6 OwEOsRsafQFybZXbPgEBj276222WCS7bTW0lR/JOUkh7gwyT4U/D8CUlpX70AsTD q7ErqZVkov5EdYoTp2WFSB6IOpJ5uRDOX7CulssOrR0TeRLYWE77AZ577dj3gPdS JEGjf9EhmcX+qUPVwADSPyGPVp0nbegPZVhZY3m/YvPVmVEROmJXzsO8/V5+sM6P VPMKoqvn4R6XHrtSSaebv7nMaNms7EqYneJdBGPPqaETLggWLtcXL1ov5epgY9Sw qgWl7gu+wgC6Zw1ySTLXQDTqOi8a85OB -----END CERTIFICATE-----Generated at Mon Oct 20 11:41:16 2025 by rpki-client