$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: OKKVjviKAdR1ulDsp18T+f2SIScCM6a3FXDfW7Y22E8= Subject key identifier: 99:B9:A4:12:13:89:75:AF:33:43:C9:81:F7:B4:1E:54:46:D3:5A:5F Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A56 Signing time: Mon 20 Oct 2025 20:26:20 +0000 Manifest this update: Mon 20 Oct 2025 20:26:20 +0000 Manifest next update: Mon 27 Oct 2025 20:26:19 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: qajVs3VpY5plaIcxDqZ8US/HARQQFhsIm4+bV7eDiYU=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Oct 20 20:26:20 2025 GMT Not After : Oct 27 20:26:19 2025 GMT Subject: CN=68f69aec-7205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:6f:da:81:ac:22:20:3b:ca:24:b5:15:3b: b4:16:a9:54:e6:95:49:05:77:41:46:4a:0e:fe:1c: c5:b3:cc:b7:c5:53:79:9e:e1:e4:fd:c9:5c:f9:56: 21:67:75:a6:60:34:49:7a:6d:d5:e3:e0:e5:f2:08: 58:27:3c:90:71:9b:ec:b9:51:fa:92:1f:cf:51:86: 1f:3f:87:15:ec:f0:5d:9a:3e:13:ec:92:e5:ae:c1: 11:8c:ca:b0:16:e9:3d:03:9b:02:73:27:01:39:0e: 59:5e:08:56:47:f0:bd:32:85:d2:3b:5b:65:ff:66: 63:a1:2e:dd:25:5c:17:79:aa:01:85:07:d2:ed:8f: af:ba:87:f5:85:9f:3a:72:9c:b4:e4:32:23:50:d2: 90:10:ad:e8:ef:35:4b:0f:04:5b:2e:0e:1d:49:b6: 33:d7:d6:92:c6:8a:dc:90:eb:bd:a7:a9:31:fb:52: d3:2c:26:49:e6:43:70:69:88:f9:60:af:69:27:fb: a9:8e:c1:c2:8d:51:06:2d:1d:a6:36:1a:03:5e:e9: 53:13:d8:75:ab:52:07:98:a3:8e:32:d9:71:3c:90: 25:17:6c:b2:58:4e:8c:c0:b4:77:11:cb:69:e1:88: d6:c7:b0:ba:75:4c:2a:c4:b7:50:c7:69:7c:df:8f: 31:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B9:A4:12:13:89:75:AF:33:43:C9:81:F7:B4:1E:54:46:D3:5A:5F X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:83:7d:92:27:9f:a1:93:3d:1c:aa:c3:89:70:22:1c:27:9a: 47:4f:b8:1d:43:1d:bd:d1:00:f6:5c:f3:b0:c3:a1:0a:42:7c: ac:bb:3d:33:58:c2:91:bb:55:eb:77:3e:03:f9:5a:81:cf:44: 8f:25:3b:ee:10:b0:07:1a:f5:5d:6b:0f:e6:7c:c7:00:d7:cb: 6f:28:40:0f:fe:b9:8c:39:dd:62:b6:a0:e3:6f:fe:dc:09:aa: b6:a1:69:db:4b:4d:72:68:ab:7e:e1:87:d5:ac:bd:26:7b:83: 7d:b3:34:5c:23:f2:86:28:80:4b:4d:0c:ef:ca:63:47:f3:e0: 74:27:e0:5f:cb:10:4f:7c:19:1f:fb:df:31:c2:0b:27:a6:3f: 34:e3:96:25:f5:83:98:cd:59:46:4e:93:e9:06:1e:78:0a:91: 41:09:7a:29:48:d5:fc:00:c4:9f:80:13:2e:f7:55:1b:81:a5: 29:1f:09:78:ca:27:43:85:3c:00:64:7d:50:f9:6b:47:ce:e4: 7a:52:58:f7:9a:35:d0:0d:48:bd:38:27:6b:69:d1:2d:53:6c: 15:7b:0b:18:e2:a7:05:25:7b:c3:91:5a:70:7e:e1:84:6f:c2: 8d:a1:c3:9d:a4:d1:7c:d8:b6:71:e3:a3:60:70:c3:a8:68:10: 03:97:fc:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUxMDIwMjAyNjIwWhcNMjUxMDI3MjAyNjE5WjAYMRYwFAYD VQQDEw02OGY2OWFlYy03MjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbtv2oGsIiA7yiS1FTu0FqlU5pVJBXdBRkoO/hzFs8y3xVN5nuHk/clc+VYh Z3WmYDRJem3V4+Dl8ghYJzyQcZvsuVH6kh/PUYYfP4cV7PBdmj4T7JLlrsERjMqw Fuk9A5sCcycBOQ5ZXghWR/C9MoXSO1tl/2ZjoS7dJVwXeaoBhQfS7Y+vuof1hZ86 cpy05DIjUNKQEK3o7zVLDwRbLg4dSbYz19aSxorckOu9p6kx+1LTLCZJ5kNwaYj5 YK9pJ/upjsHCjVEGLR2mNhoDXulTE9h1q1IHmKOOMtlxPJAlF2yyWE6MwLR3Ectp 4YjWx7C6dUwqxLdQx2l8348x5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJm5pBIT iXWvM0PJgfe0HlRG01pfMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqg32SJ5+hkz0cqsOJcCIcJ5pHT7gdQx290QD2XPOww6EKQnysuz0z WMKRu1Xrdz4D+VqBz0SPJTvuELAHGvVdaw/mfMcA18tvKEAP/rmMOd1itqDjb/7c Caq2oWnbS01yaKt+4YfVrL0me4N9szRcI/KGKIBLTQzvymNH8+B0J+BfyxBPfBkf +98xwgsnpj8045Yl9YOYzVlGTpPpBh54CpFBCXopSNX8AMSfgBMu91UbgaUpHwl4 yidDhTwAZH1Q+WtHzuR6Ulj3mjXQDUi9OCdradEtU2wVewsY4qcFJXvDkVpwfuGE b8KNocOdpNF82LZx46NgcMOoaBADl/zP -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:26 2025 by rpki-client