$ rpki-client -vvf rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft File: nxMMOdAwdvSok0-jNJXO2TfiMKs.mft (raw, json) Hash identifier: svZja3fsmycZSLHwXIrLFZY8wzgvZi6naKMA2EcuItM= Subject key identifier: 83:1F:29:D0:21:5D:73:7F:90:B0:01:B0:2A:C9:12:9E:B4:ED:7F:40 Authority key identifier: 9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB Certificate issuer: /CN=A91430D6/serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft Manifest number: 34 Signing time: Sun 19 Oct 2025 11:05:07 +0000 Manifest this update: Sun 19 Oct 2025 11:05:06 +0000 Manifest next update: Sun 26 Oct 2025 11:05:06 +0000 Files and hashes: 1: nxMMOdAwdvSok0-jNJXO2TfiMKs.crl (hash: SyzisnUkDCoJcGEQOutazA5t5od2TYeU7fw1pLwmPM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91430D6, serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Validity Not Before: Oct 19 11:05:06 2025 GMT Not After : Oct 26 11:05:06 2025 GMT Subject: CN=68f4c5e3-1f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9d:33:e4:ba:c3:9c:c7:ca:11:ee:d5:2c:f2: 47:33:f7:f5:6d:aa:16:f8:87:64:d8:98:a2:1c:e5: ce:1b:2e:1c:73:74:16:82:46:a6:23:df:2e:f2:a0: fc:c0:5a:ce:40:64:1a:ed:40:1c:36:80:48:3f:a7: 7f:0b:f1:bd:ac:d4:be:69:fe:a7:1a:c0:84:43:56: 23:65:6a:ea:ce:0f:35:aa:0f:54:ab:63:5a:a5:b0: 02:92:b6:e7:81:fc:a8:50:9d:dd:06:96:a5:d7:1e: a8:18:93:82:54:70:a5:fe:65:5a:c5:81:a0:47:24: fc:a9:ed:d0:6c:07:05:49:de:5f:62:96:a5:89:46: ff:47:12:d7:ec:2d:b9:30:ea:d4:88:91:98:0e:dd: bf:1f:be:3c:d3:b3:a5:ed:be:1a:f3:5e:2d:e9:f0: dd:f7:75:bc:a6:1e:c2:87:2d:6d:69:25:76:6f:1d: 9a:71:ea:a2:09:03:6c:6e:04:de:60:f0:5c:40:06: 57:b6:f7:96:6a:dd:7c:cf:66:e9:8d:4c:5d:82:c8: 20:96:35:b8:1a:46:ce:bd:dc:eb:89:cf:78:7a:0c: 2d:de:e1:20:ec:3c:e7:d9:11:22:c8:66:87:84:e8: 95:89:4e:73:48:08:46:a9:5e:e4:a2:95:6c:75:f5: 91:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1F:29:D0:21:5D:73:7F:90:B0:01:B0:2A:C9:12:9E:B4:ED:7F:40 X509v3 Authority Key Identifier: keyid:9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:5c:0a:10:7f:39:ce:34:a9:7d:7b:56:33:86:3e:c2:36:d0: b7:32:24:c8:f8:9a:93:1d:6d:d7:e0:28:2a:65:d4:18:74:14: 8a:c3:ef:db:e3:8c:e0:52:88:56:55:27:ec:6a:c0:d1:eb:35: 49:13:12:f6:2a:c5:5c:60:ab:ec:a8:5c:9a:7f:51:e6:a5:ce: c9:20:58:4b:20:0b:8b:a0:d9:43:1c:55:43:e1:7f:c8:ef:df: 2d:12:59:8a:49:68:85:2a:ac:6b:4e:02:de:ac:9c:12:7c:43: e5:c5:44:2e:bb:d8:21:72:d1:9b:67:0e:63:c7:4c:f8:73:17: 8f:f0:6e:de:83:82:34:77:fb:68:81:01:53:28:b8:af:45:3c: 60:91:3f:25:95:ce:74:d4:46:82:5e:d7:ea:8e:11:99:8a:ed: 7c:a0:81:e2:85:82:ca:f8:f1:10:87:ee:8b:fa:b1:e2:14:7c: 17:35:c6:4d:f7:06:b5:c7:07:2c:58:b3:30:09:1d:65:94:b6: ca:90:9a:27:60:a7:0b:f1:f0:95:64:5a:28:5b:fc:8d:7d:e6: 51:52:fe:4a:d1:39:63:21:cd:63:7b:99:a3:8e:df:36:d8:16: c8:5f:4f:5d:f8:60:8d:ec:f6:f9:08:ed:6d:d9:08:5e:88:5e: 4a:bb:c9:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MzBENjExMC8GA1UEBRMoOUYxMzBDMzlEMDMwNzZGNEE4OTM0RkEzMzQ5NUNFRDkz N0UyMzBBQjAeFw0yNTEwMTkxMTA1MDZaFw0yNTEwMjYxMTA1MDZaMBgxFjAUBgNV BAMTDTY4ZjRjNWUzLTFmNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvnTPkusOcx8oR7tUs8kcz9/Vtqhb4h2TYmKIc5c4bLhxzdBaCRqYj3y7yoPzA Ws5AZBrtQBw2gEg/p38L8b2s1L5p/qcawIRDViNlaurODzWqD1SrY1qlsAKStueB /KhQnd0GlqXXHqgYk4JUcKX+ZVrFgaBHJPyp7dBsBwVJ3l9ilqWJRv9HEtfsLbkw 6tSIkZgO3b8fvjzTs6XtvhrzXi3p8N33dbymHsKHLW1pJXZvHZpx6qIJA2xuBN5g 8FxABle295Zq3XzPZumNTF2CyCCWNbgaRs693OuJz3h6DC3e4SDsPOfZESLIZoeE 6JWJTnNICEapXuSilWx19ZE1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgx8p0CFd c3+QsAGwKskSnrTtf0AwHwYDVR0jBBgwFoAUnxMMOdAwdvSok0+jNJXO2TfiMKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzMEQ2LzIwRjlGM0IwNUZF MDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZTb2swLWpOSlhPMlRmaU1L cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnhNTU9kQXdkdlNvazAtak5KWE8yVGZpTUtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQz MEQ2LzIwRjlGM0IwNUZFMDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZT b2swLWpOSlhPMlRmaU1Lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEpcChB/Oc40qX17VjOGPsI20LcyJMj4mpMdbdfgKCpl1Bh0FIrD79vj jOBSiFZVJ+xqwNHrNUkTEvYqxVxgq+yoXJp/UealzskgWEsgC4ug2UMcVUPhf8jv 3y0SWYpJaIUqrGtOAt6snBJ8Q+XFRC672CFy0ZtnDmPHTPhzF4/wbt6DgjR3+2iB AVMouK9FPGCRPyWVznTURoJe1+qOEZmK7XyggeKFgsr48RCH7ov6seIUfBc1xk33 BrXHByxYszAJHWWUtsqQmidgpwvx8JVkWihb/I195lFS/krROWMhzWN7maOO3zbY FshfT134YI3s9vkI7W3ZCF6IXkq7ycI= -----END CERTIFICATE-----Generated at Mon Oct 20 02:07:20 2025 by rpki-client