$ rpki-client -vvf rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft File: NNe9YUOWrkRRcOBY4K7c661JQF8.mft (raw, json) Hash identifier: 8y7rEGrUWX0lpHorPBMSJdmbk7OnAV6EvVBTzB+UkMI= Subject key identifier: 13:F0:50:F2:08:9A:2E:24:F7:A2:29:BC:96:C6:41:67:BC:68:FC:6B Authority key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F Certificate issuer: /CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft Manifest number: CE Signing time: Sun 19 Oct 2025 08:48:22 +0000 Manifest this update: Sun 19 Oct 2025 08:48:22 +0000 Manifest next update: Sun 26 Oct 2025 08:48:21 +0000 Files and hashes: 1: NNe9YUOWrkRRcOBY4K7c661JQF8.crl (hash: aHZ8RxwxrzPM4b4woy6yWDReRs4Bni9Fxv11fwHGS9w=) 2: CDB922F074AF11EFA0B26646C4F9AE02.roa (hash: Z9wgm3vGJOLLYnMtYAwUdfFZW4JgmPyeFWsMY0AhztU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133F6B, serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Validity Not Before: Oct 19 08:48:22 2025 GMT Not After : Oct 26 08:48:21 2025 GMT Subject: CN=68f4a5d6-96f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:68:08:31:4b:1c:91:93:e5:7e:66:e7:1f:4d: 08:54:fe:dd:35:6d:89:2e:ab:a7:74:23:d5:1d:19: f3:80:13:b0:65:72:d6:ff:63:7a:98:17:31:86:88: fc:14:32:e9:b0:44:5d:c3:93:2a:95:29:26:54:1c: a7:88:b7:06:c2:16:55:bb:02:ab:b7:b1:f3:20:5d: 00:81:94:34:01:bc:f9:ad:4a:97:fc:fb:6e:a8:39: dc:35:25:35:6b:cd:aa:e4:31:10:2c:c9:46:80:a1: 5f:80:6d:91:c5:04:03:dd:dd:2c:f7:c0:32:71:b4: 38:4a:ac:52:80:c6:95:a6:e1:89:94:3e:74:a9:84: 47:45:a1:a3:a5:5c:a1:a4:ab:76:a6:b2:3e:40:ee: 42:d6:99:0a:db:1d:2b:04:3a:be:b8:9e:6e:d3:d6: e2:99:fd:f8:23:09:d2:d3:03:08:a4:c7:22:0b:12: a4:f1:b0:e4:3a:37:75:4b:19:60:99:24:03:6b:96: fc:68:9b:8c:1b:6c:2f:5a:e5:63:2f:d3:20:1e:3e: 85:5e:55:81:23:b5:0e:bc:8b:45:ba:01:6c:e5:ba: 15:f3:7d:8c:64:77:50:54:e2:e7:6f:62:cd:29:df: cc:1b:ed:a5:52:0d:75:95:19:89:40:b5:6c:ec:cf: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F0:50:F2:08:9A:2E:24:F7:A2:29:BC:96:C6:41:67:BC:68:FC:6B X509v3 Authority Key Identifier: keyid:34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:13:ee:24:d1:7a:b5:1b:0b:4e:cc:42:e3:51:40:40:0a:a3: cb:7c:3f:7a:02:87:6c:f5:3b:0d:af:f6:61:c2:d1:c8:99:39: d2:cd:26:0d:27:c1:fa:15:47:12:2c:30:b5:67:7a:66:62:5b: 2d:b9:02:a1:ad:69:15:e2:e2:a4:67:8e:74:6c:b6:91:87:86: b9:c8:2e:8b:20:54:f3:69:28:42:58:e7:0c:d9:60:22:80:4b: 26:90:51:d6:77:2c:50:25:9d:16:bd:73:26:44:d9:d4:c6:1c: 99:61:37:62:52:74:d0:1c:2b:20:4f:3c:59:7c:ad:e1:7d:97: 56:44:4d:6d:d0:49:37:8b:bb:d8:46:df:a4:cf:e6:0b:e9:7a: a4:d5:78:23:08:b6:ae:dd:95:a1:08:08:9b:94:c4:d8:7d:dc: 33:cf:b1:a2:a5:a1:9a:27:24:33:03:aa:29:f6:a3:9b:33:d4: c6:ca:cd:83:e1:6c:81:0e:19:81:4f:e4:94:aa:74:7c:bb:42: 75:29:d2:32:94:f0:18:e3:70:11:cc:63:09:5b:2d:ce:dd:04: 05:ec:0c:16:c5:8c:8f:87:ca:a0:47:fa:af:3c:5a:e8:c3:ba: f6:7a:b6:70:e3:73:ab:83:09:1c:76:21:3f:d6:7a:59:54:47: de:11:59:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNGNkIxMTAvBgNVBAUTKDM0RDdCRDYxNDM5NkFFNDQ1MTcwRTA1OEUwQUVEQ0VC QUQ0OTQwNUYwHhcNMjUxMDE5MDg0ODIyWhcNMjUxMDI2MDg0ODIxWjAYMRYwFAYD VQQDEw02OGY0YTVkNi05NmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmgIMUsckZPlfmbnH00IVP7dNW2JLqundCPVHRnzgBOwZXLW/2N6mBcxhoj8 FDLpsERdw5MqlSkmVByniLcGwhZVuwKrt7HzIF0AgZQ0Abz5rUqX/PtuqDncNSU1 a82q5DEQLMlGgKFfgG2RxQQD3d0s98AycbQ4SqxSgMaVpuGJlD50qYRHRaGjpVyh pKt2prI+QO5C1pkK2x0rBDq+uJ5u09bimf34IwnS0wMIpMciCxKk8bDkOjd1Sxlg mSQDa5b8aJuMG2wvWuVjL9MgHj6FXlWBI7UOvItFugFs5boV832MZHdQVOLnb2LN Kd/MG+2lUg11lRmJQLVs7M9U9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPwUPII mi4k96IpvJbGQWe8aPxrMB8GA1UdIwQYMBaAFDTXvWFDlq5EUXDgWOCu3OutSUBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0Y2Qi85ODUyOTMzRTc0 QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3JrUlJjT0JZNEs3YzY2MUpR RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZTlZVU9XcmtSUmNPQlk0SzdjNjYxSlFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0Y2Qi85ODUyOTMzRTc0QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3Jr UlJjT0JZNEs3YzY2MUpRRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBE+4k0Xq1GwtOzELjUUBACqPLfD96Aods9TsNr/ZhwtHImTnSzSYN J8H6FUcSLDC1Z3pmYlstuQKhrWkV4uKkZ450bLaRh4a5yC6LIFTzaShCWOcM2WAi gEsmkFHWdyxQJZ0WvXMmRNnUxhyZYTdiUnTQHCsgTzxZfK3hfZdWRE1t0Ek3i7vY Rt+kz+YL6Xqk1XgjCLau3ZWhCAiblMTYfdwzz7GipaGaJyQzA6op9qObM9TGys2D 4WyBDhmBT+SUqnR8u0J1KdIylPAY43ARzGMJWy3O3QQF7AwWxYyPh8qgR/qvPFro w7r2erZw43OrgwkcdiE/1npZVEfeEVn7 -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:18 2025 by rpki-client