$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: S1StiHUEM8QWFJN/PjVR7BIzUwfDzj2ro/WerpY/qRI= Subject key identifier: 02:CE:9A:83:08:7C:1A:DA:6D:E1:E5:6A:21:85:1C:3E:D5:27:47:BD Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0C8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0C85 Signing time: Mon 20 Oct 2025 19:00:06 +0000 Manifest this update: Mon 20 Oct 2025 19:00:06 +0000 Manifest next update: Mon 27 Oct 2025 19:00:06 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: FHHFV4ey9z7Z8WvON25daaIo12GF6JA7i1Sbm9G4WJY=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: I2P5GKiYO+A0JWj3FCOtq5Wyspf+9wzs4i0nVaTxKFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Oct 20 19:00:06 2025 GMT Not After : Oct 27 19:00:06 2025 GMT Subject: CN=68f686b6-24ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7c:8b:07:70:d6:50:97:34:f5:e7:97:ac:04: 52:2e:e5:ee:b5:dd:52:76:09:ee:b7:d7:de:e5:24: 79:d3:d2:28:35:ed:0f:89:8f:66:87:5d:ac:dc:29: cd:18:f9:8d:a0:07:56:ab:5a:82:7e:dc:3d:79:10: 85:79:ba:2b:67:c7:ab:c5:48:13:8d:6c:e3:07:4c: 9e:77:18:66:d7:de:c5:bc:c2:21:d6:61:84:69:be: c7:e4:55:ff:9b:80:57:3e:98:bc:00:e5:a8:0c:88: 59:7f:68:da:85:71:5d:52:94:50:40:de:36:93:68: 2b:bf:a2:e6:e6:ac:6c:ed:d0:3b:d2:67:c2:d9:58: c1:f8:a8:13:05:2d:8f:8c:6a:f9:f8:5f:99:9d:d7: 12:c8:2a:7e:b3:a0:56:b1:51:fc:f5:98:03:ee:a6: af:4c:ab:04:35:27:57:e0:90:11:2d:80:b4:be:b2: 24:36:3f:37:0c:a6:1f:fb:fe:06:7a:60:f3:41:ab: 9a:04:5a:44:24:4e:75:01:31:73:8b:ab:5d:72:8f: 5e:5b:06:f7:3e:4a:65:22:45:5c:55:99:9e:90:66: e8:88:a9:1c:cf:47:85:6d:f0:39:38:a3:51:e2:ae: c9:9e:47:48:f4:48:75:97:4b:bb:da:07:9d:ba:91: 77:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CE:9A:83:08:7C:1A:DA:6D:E1:E5:6A:21:85:1C:3E:D5:27:47:BD X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:47:d3:73:8c:74:fd:e9:44:84:f5:b6:33:cd:2d:63:88:53: e8:74:0f:e6:2c:ec:32:c6:f7:b2:a8:37:e0:53:29:74:30:a3: b0:7a:71:66:2b:d2:2b:92:48:1c:e5:1b:08:6a:54:82:09:3c: fe:02:3c:f8:d8:c4:01:2b:d2:dc:23:66:15:63:c0:99:bc:5d: a7:a9:c5:d5:30:08:5e:30:7e:ab:ba:94:c3:fa:90:da:9d:4d: 1b:9a:72:9a:9f:11:05:d4:17:2b:bc:8f:dc:9e:a4:08:2d:0f: 09:f8:e9:0d:e1:9c:91:df:bb:51:29:4f:74:2b:49:0a:c4:e8: 8f:8a:8d:f9:44:e4:be:02:28:ab:50:38:f9:6f:9e:5e:24:09: 42:91:62:c3:d7:42:d7:bb:da:ef:0e:eb:d6:94:53:83:f9:98: 27:b2:af:84:00:2e:31:1c:a7:17:e9:96:78:24:c9:3c:9a:df: 1e:4f:58:26:05:9c:18:83:b6:31:c5:21:8a:2b:df:20:11:e0: 91:3e:88:73:f8:bf:77:48:ba:20:ad:2c:b3:48:01:60:ec:47: 8e:3f:d0:06:ce:cd:1a:0c:cf:52:a5:4b:52:80:e9:bb:e0:fb: e0:2e:8b:4e:72:16:b0:00:b1:64:85:9c:3d:7a:8e:63:da:de: f2:74:8c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjUxMDIwMTkwMDA2WhcNMjUxMDI3MTkwMDA2WjAYMRYwFAYD VQQDEw02OGY2ODZiNi0yNGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXyLB3DWUJc09eeXrARSLuXutd1Sdgnut9fe5SR509IoNe0PiY9mh12s3CnN GPmNoAdWq1qCftw9eRCFeborZ8erxUgTjWzjB0yedxhm197FvMIh1mGEab7H5FX/ m4BXPpi8AOWoDIhZf2jahXFdUpRQQN42k2grv6Lm5qxs7dA70mfC2VjB+KgTBS2P jGr5+F+ZndcSyCp+s6BWsVH89ZgD7qavTKsENSdX4JARLYC0vrIkNj83DKYf+/4G emDzQauaBFpEJE51ATFzi6tdco9eWwb3PkplIkVcVZmekGboiKkcz0eFbfA5OKNR 4q7JnkdI9Eh1l0u72gedupF3GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALOmoMI fBrabeHlaiGFHD7VJ0e9MB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJR9NzjHT96USE9bYzzS1jiFPodA/mLOwyxveyqDfgUyl0MKOwenFm K9Irkkgc5RsIalSCCTz+Ajz42MQBK9LcI2YVY8CZvF2nqcXVMAheMH6rupTD+pDa nU0bmnKanxEF1BcrvI/cnqQILQ8J+OkN4ZyR37tRKU90K0kKxOiPio35ROS+Aiir UDj5b55eJAlCkWLD10LXu9rvDuvWlFOD+Zgnsq+EAC4xHKcX6ZZ4JMk8mt8eT1gm BZwYg7YxxSGKK98gEeCRPohz+L93SLogrSyzSAFg7EeOP9AGzs0aDM9SpUtSgOm7 4PvgLotOchawALFkhZw9eo5j2t7ydIyB -----END CERTIFICATE-----Generated at Tue Oct 21 01:38:24 2025 by rpki-client