$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: +RHjfvz4npIuBVzi3jgFYeMYrZ3J3WpYfFC6RFGZAzo= Subject key identifier: 89:68:19:D7:F4:2A:15:A8:74:46:9B:3E:05:BC:D2:6F:A7:C8:B8:CD Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2AD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2A98 Signing time: Sat 18 Oct 2025 15:46:16 +0000 Manifest this update: Sat 18 Oct 2025 15:46:15 +0000 Manifest next update: Sat 25 Oct 2025 15:46:15 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: WFuEskTUmrdx8wDL/5qkxy/IVIJO3mWTGZdvs/rgtE0=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: Ey/Kmg1iRRIttYY5811s3SHGsRnkg9ROhR5r3BngPPg=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: foVnGp/jqxcrwmjuMi9JIuJxuKPFhTJXYXUK/5x/qrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10968 (0x2ad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Oct 18 15:46:15 2025 GMT Not After : Oct 25 15:46:15 2025 GMT Subject: CN=68f3b647-8a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:05:ca:a5:5b:c2:34:10:19:12:d6:6e:97:a7: 83:66:9c:ba:d2:3d:cb:3e:8f:02:a6:55:59:78:06: f1:4f:42:3d:5a:d0:b0:59:85:c7:5f:45:48:28:41: b2:7f:37:77:b6:08:0c:96:0e:7a:2d:52:99:e9:a2: 43:08:e2:9d:31:8b:d8:2e:3c:49:a4:51:6b:9c:97: c6:d6:01:15:4e:36:3b:c5:6a:d5:53:aa:9d:50:a1: 77:6d:c4:96:e9:72:cc:6f:17:fd:b4:d8:c6:c3:60: fa:5a:b6:da:ca:7c:ab:4f:8f:6b:a0:05:45:d5:f2: 99:e5:0a:51:17:31:23:34:c0:c1:2b:9f:36:e4:f3: 64:de:e5:4c:55:05:16:41:f5:da:bd:e9:ff:1b:71: b3:53:67:13:d7:95:87:76:b4:2a:dc:3b:d6:c6:08: df:67:d2:40:13:ee:a6:8c:26:25:a3:98:24:71:b3: 34:20:ea:7e:8c:b8:e5:9e:5a:c3:24:88:12:d9:39: c4:05:c5:c0:df:43:59:28:99:fa:5b:e9:65:0a:8f: fc:23:34:5d:50:c3:10:69:89:55:74:9d:f3:2c:e4: 02:5f:3f:68:e6:b7:78:8b:07:92:56:22:f2:75:8b: f8:ef:6c:79:87:6f:db:0e:ba:4a:85:6a:40:b7:85: 68:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:68:19:D7:F4:2A:15:A8:74:46:9B:3E:05:BC:D2:6F:A7:C8:B8:CD X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:11:7d:c3:aa:96:3f:fc:a0:fc:e7:32:7d:be:87:d2:6d:d8: 03:6e:f2:7d:97:e8:e4:d6:a9:19:7d:9a:20:bd:f5:fa:88:0e: 72:74:59:f4:01:d4:3e:9f:e3:b2:c5:c2:e2:6b:19:ac:f9:ff: 75:b7:d8:32:f3:ba:10:01:21:7c:5d:f2:10:86:71:ce:be:c9: a7:54:67:dd:d9:ca:bc:6d:54:43:50:11:3d:17:45:46:e2:31: 8b:13:3c:5a:70:2d:50:d3:f2:e8:af:1e:30:04:c4:c7:04:94: d0:47:cb:ce:ad:fa:2d:e0:e6:c0:e1:cf:89:52:73:1b:14:e4: df:e0:83:05:37:8a:87:0c:e1:61:81:69:9d:58:fe:3d:2f:71: 0e:8f:9f:76:2b:73:22:3c:ce:ac:dc:60:f6:64:7e:00:3a:8f: d7:4c:55:40:ab:71:72:92:43:98:28:d0:d5:f6:25:9c:93:1b: 53:2c:59:9f:cb:78:96:e0:5e:6d:16:81:24:f8:08:f9:d8:b4: 35:c8:42:a2:ab:d3:e7:5a:ff:1b:fc:f6:9f:23:af:65:4f:66: 3f:09:ce:07:ed:02:08:8c:9e:05:ae:a6:20:87:85:a6:87:66: e8:0c:12:74:61:70:78:b1:38:02:8b:10:17:e1:b6:17:d4:5b: 54:75:54:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUxMDE4MTU0NjE1WhcNMjUxMDI1MTU0NjE1WjAYMRYwFAYD VQQDEw02OGYzYjY0Ny04YThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QXKpVvCNBAZEtZul6eDZpy60j3LPo8CplVZeAbxT0I9WtCwWYXHX0VIKEGy fzd3tggMlg56LVKZ6aJDCOKdMYvYLjxJpFFrnJfG1gEVTjY7xWrVU6qdUKF3bcSW 6XLMbxf9tNjGw2D6WrbaynyrT49roAVF1fKZ5QpRFzEjNMDBK5825PNk3uVMVQUW QfXaven/G3GzU2cT15WHdrQq3DvWxgjfZ9JAE+6mjCYlo5gkcbM0IOp+jLjlnlrD JIgS2TnEBcXA30NZKJn6W+llCo/8IzRdUMMQaYlVdJ3zLOQCXz9o5rd4iweSViLy dYv472x5h2/bDrpKhWpAt4Vo8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIloGdf0 KhWodEabPgW80m+nyLjNMB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjEX3DqpY//KD85zJ9vofSbdgDbvJ9l+jk1qkZfZogvfX6iA5ydFn0 AdQ+n+OyxcLiaxms+f91t9gy87oQASF8XfIQhnHOvsmnVGfd2cq8bVRDUBE9F0VG 4jGLEzxacC1Q0/Lorx4wBMTHBJTQR8vOrfot4ObA4c+JUnMbFOTf4IMFN4qHDOFh gWmdWP49L3EOj592K3MiPM6s3GD2ZH4AOo/XTFVAq3FykkOYKNDV9iWckxtTLFmf y3iW4F5tFoEk+Aj52LQ1yEKiq9PnWv8b/PafI69lT2Y/Cc4H7QIIjJ4FrqYgh4Wm h2boDBJ0YXB4sTgCixAX4bYX1FtUdVQJ -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:26 2025 by rpki-client