$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft File: nQi_OKDTi4yrfP2I9djE7WZ3jME.mft (raw, json) Hash identifier: MMVuQqVUD4Csktie8NbWfB2eHyq5H2/jwoUoa2XrGLw= Subject key identifier: AE:74:95:09:E5:6B:5A:3E:DC:B5:5E:C7:09:E6:B0:1F:03:3F:EB:19 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft Manifest number: 015C Signing time: Sun 19 Oct 2025 06:48:56 +0000 Manifest this update: Sun 19 Oct 2025 06:48:55 +0000 Manifest next update: Sun 26 Oct 2025 06:48:55 +0000 Files and hashes: 1: nQi_OKDTi4yrfP2I9djE7WZ3jME.crl (hash: mKGh3nZEYKGnZpInajXrXEJvOC7k/2TJMZSed1GHvAo=) 2: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (hash: tBwNVvJX12RI1rw1ArvMyaYybwsSqQmw1mHttd1wbm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF, serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: Oct 19 06:48:55 2025 GMT Not After : Oct 26 06:48:55 2025 GMT Subject: CN=68f489d8-dd80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1e:d8:e0:bd:58:76:d3:3a:db:f9:69:17:0c: c7:73:39:dc:de:25:b9:47:1f:8e:2a:2d:6c:ea:e0: 94:18:65:fc:17:89:5c:7a:7a:3b:57:dd:24:77:02: 32:9c:c0:16:90:b2:d7:37:c6:c2:84:e0:c6:39:8f: 05:5b:81:c0:e8:9f:49:b0:88:16:9d:49:ea:5b:d5: b8:90:c1:af:2c:64:7b:33:6f:c4:10:14:52:1b:31: e6:32:a9:e3:01:21:74:9c:df:1d:96:69:84:c1:1f: 2e:c3:0b:f9:fe:e4:d2:f4:0e:c0:26:85:4b:9e:8a: 03:5d:61:14:ca:df:37:19:94:80:ca:90:ac:72:9c: e7:2b:25:72:3a:8e:2e:a4:60:7f:ee:d7:71:2d:d5: 7e:b2:e5:03:50:ec:8b:41:ea:8c:2e:fe:6e:9e:a7: 61:ef:8b:18:7d:0c:66:7a:91:49:98:00:58:62:23: 64:80:f0:c9:5b:3d:e9:86:ca:81:5a:6f:07:cc:6a: 09:ff:c8:e6:43:24:0d:8e:21:22:8e:05:01:a4:22: 21:f2:a4:5f:af:85:fd:df:52:cd:8c:02:c6:de:f0: be:aa:50:fc:10:93:ec:6e:be:ff:8d:5d:a7:c2:5a: bc:f3:aa:fd:2c:0e:36:85:c7:1f:f3:fe:12:fa:94: 24:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:74:95:09:E5:6B:5A:3E:DC:B5:5E:C7:09:E6:B0:1F:03:3F:EB:19 X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d0:96:8c:9e:13:90:e9:47:ee:36:1c:77:c8:3a:09:71:e9: aa:20:cc:30:a1:06:f4:bc:11:64:b2:20:36:07:77:f3:7c:d7: 01:85:38:ef:a9:5d:e3:e9:54:8f:e8:a2:47:36:6c:d3:3f:53: a8:23:20:c4:2c:6d:b2:e0:01:01:49:1a:b6:f8:1f:6b:21:39: 58:e6:0a:20:c2:45:c4:24:14:5c:46:80:c2:aa:06:2c:8f:06: 53:cf:f5:bb:12:bc:79:17:0e:fd:ed:dd:6e:32:36:a2:1f:07: 62:e3:6a:bb:fe:7f:ab:15:32:b8:18:52:c2:3a:55:37:42:db: e2:c1:c8:84:b4:5a:b0:44:8d:32:a2:59:c8:2b:75:e7:9c:a5: e4:3b:96:05:74:19:c5:6b:46:eb:95:88:c0:ad:f5:e7:4b:f6: eb:e5:26:ea:29:7a:fd:9d:05:4f:38:92:c9:70:37:ef:79:e4: d8:3e:aa:31:40:b5:63:05:47:7b:8b:0f:7f:2c:d4:3f:15:ea: 84:ea:50:b2:61:a1:c2:c1:43:1d:1c:49:53:89:9b:16:9b:b3: 7a:82:28:69:73:64:56:45:c1:6b:e5:d5:c6:9b:cb:c2:e6:ab: a1:57:cf:70:8e:57:0e:e5:59:54:73:c6:66:c3:fb:06:f6:d3: 22:ba:70:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjUxMDE5MDY0ODU1WhcNMjUxMDI2MDY0ODU1WjAYMRYwFAYD VQQDEw02OGY0ODlkOC1kZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3B7Y4L1YdtM62/lpFwzHcznc3iW5Rx+OKi1s6uCUGGX8F4lceno7V90kdwIy nMAWkLLXN8bChODGOY8FW4HA6J9JsIgWnUnqW9W4kMGvLGR7M2/EEBRSGzHmMqnj ASF0nN8dlmmEwR8uwwv5/uTS9A7AJoVLnooDXWEUyt83GZSAypCscpznKyVyOo4u pGB/7tdxLdV+suUDUOyLQeqMLv5unqdh74sYfQxmepFJmABYYiNkgPDJWz3phsqB Wm8HzGoJ/8jmQyQNjiEijgUBpCIh8qRfr4X931LNjALG3vC+qlD8EJPsbr7/jV2n wlq886r9LA42hccf8/4S+pQkcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK50lQnl a1o+3LVexwnmsB8DP+sZMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBERi9FNTA4MzY0ODk5MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0 eXJmUDJJOWRqRTdXWjNqTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX0JaMnhOQ6UfuNhx3yDoJcemqIMwwoQb0vBFksiA2B3fzfNcBhTjv qV3j6VSP6KJHNmzTP1OoIyDELG2y4AEBSRq2+B9rITlY5gogwkXEJBRcRoDCqgYs jwZTz/W7Erx5Fw797d1uMjaiHwdi42q7/n+rFTK4GFLCOlU3QtviwciEtFqwRI0y olnIK3XnnKXkO5YFdBnFa0brlYjArfXnS/br5SbqKXr9nQVPOJLJcDfveeTYPqox QLVjBUd7iw9/LNQ/FeqE6lCyYaHCwUMdHElTiZsWm7N6gihpc2RWRcFr5dXGm8vC 5quhV89wjlcO5VlUc8Zmw/sG9tMiunDl -----END CERTIFICATE-----Generated at Mon Oct 20 07:13:45 2025 by rpki-client