$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: /5oS6qmmT0KrhM3M4LA/F8blEPK3NqCDcxFuBW6c6+4= Subject key identifier: FF:69:54:90:1A:BB:F0:D2:24:26:8F:FF:22:06:0D:EF:01:59:C6:15 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 06D5 Signing time: Sat 18 Oct 2025 23:28:50 +0000 Manifest this update: Sat 18 Oct 2025 23:28:49 +0000 Manifest next update: Sat 25 Oct 2025 23:28:49 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: asDONinsEMul/q7yHiK9fDRhTxjKC9uapDkjKdXYYGo=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Oct 18 23:28:49 2025 GMT Not After : Oct 25 23:28:49 2025 GMT Subject: CN=68f422b1-4c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b2:0e:5c:ac:25:76:12:e8:2f:34:68:5b:88: 7c:a5:28:b1:bd:27:24:f1:66:cb:c2:12:e6:c1:a8: f7:93:57:5c:ac:b5:e5:7c:b2:c4:a5:27:f2:d8:47: 84:6b:88:fe:36:c1:a6:a3:f8:43:c0:cc:e0:6a:f4: 4f:bc:e0:fa:80:f4:70:34:87:39:d6:14:91:5b:ce: f2:10:59:d2:41:43:71:cb:a4:b3:41:95:46:51:48: 3d:08:e7:f5:c9:fb:39:98:95:11:15:61:ec:d0:7b: cb:8f:fa:85:5d:72:71:ce:a0:be:ed:30:e7:69:61: 4a:4a:e5:21:78:9f:14:fb:6c:26:8b:3d:35:3e:a6: 71:f7:23:ea:59:70:9c:c5:13:24:55:bf:6b:dd:32: b5:01:12:0d:c1:15:13:cf:84:c6:5c:a1:e0:e9:c9: 22:88:0e:7d:56:53:b7:82:c2:22:ee:c9:75:08:07: 64:a1:fe:1a:7a:b0:a0:04:d2:54:d9:81:9e:4e:92: ef:fd:96:a6:8d:9e:ab:e1:63:c8:5a:e9:94:2a:c6: cf:22:cb:17:71:20:a2:97:9f:d9:d5:4a:72:97:9c: 61:31:0e:4d:c2:60:43:95:4c:62:d2:3c:06:0c:9a: c5:f2:57:cc:8f:9d:44:24:23:16:1f:54:87:45:a1: 72:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:69:54:90:1A:BB:F0:D2:24:26:8F:FF:22:06:0D:EF:01:59:C6:15 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:b7:47:ac:4e:4c:65:ac:47:01:c3:ef:53:e5:d5:a2:44:df: 31:3d:ea:6f:92:18:ab:02:72:c9:42:c5:0e:cd:63:ad:37:24: b6:85:d2:99:75:a0:76:18:f2:6e:7f:87:32:0c:a0:a7:a5:72: 00:99:0f:95:31:5c:1c:d3:29:f3:86:dc:b1:1c:c8:7e:f5:65: 7c:58:96:29:c1:d8:bb:cc:e0:b2:95:32:a1:d5:98:d6:28:36: eb:2a:c4:12:5b:cd:d1:11:f3:51:49:f6:cc:a9:22:70:4b:b3: dd:14:b2:ec:6c:c6:16:44:c6:e1:cf:ff:4e:b0:d4:bd:59:5e: 69:be:44:47:21:fe:f7:77:f3:de:2b:c8:a8:c2:f5:9f:15:2e: ac:17:0d:79:53:81:f1:93:6f:ab:44:78:25:11:2d:29:1e:d0: 86:63:62:8f:d6:90:12:ac:f5:3a:0c:a5:5e:c2:4b:98:f5:d0: 31:71:10:04:9e:b1:16:35:db:94:5a:e5:d2:2e:b2:74:0f:5a: fb:dc:bf:29:dc:75:66:f2:75:ca:61:54:76:ec:9e:bd:26:7e: a7:11:65:70:d0:c9:5c:9a:f0:ea:e3:93:b3:d7:1e:46:7f:79: d5:a9:82:0f:ce:52:42:04:f2:8f:04:82:44:e0:77:1e:38:b9: 1d:b2:7d:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUxMDE4MjMyODQ5WhcNMjUxMDI1MjMyODQ5WjAYMRYwFAYD VQQDEw02OGY0MjJiMS00YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7IOXKwldhLoLzRoW4h8pSixvSck8WbLwhLmwaj3k1dcrLXlfLLEpSfy2EeE a4j+NsGmo/hDwMzgavRPvOD6gPRwNIc51hSRW87yEFnSQUNxy6SzQZVGUUg9COf1 yfs5mJURFWHs0HvLj/qFXXJxzqC+7TDnaWFKSuUheJ8U+2wmiz01PqZx9yPqWXCc xRMkVb9r3TK1ARINwRUTz4TGXKHg6ckiiA59VlO3gsIi7sl1CAdkof4aerCgBNJU 2YGeTpLv/ZamjZ6r4WPIWumUKsbPIssXcSCil5/Z1Upyl5xhMQ5NwmBDlUxi0jwG DJrF8lfMj51EJCMWH1SHRaFyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9pVJAa u/DSJCaP/yIGDe8BWcYVMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGt0esTkxlrEcBw+9T5dWiRN8xPepvkhirAnLJQsUOzWOtNyS2hdKZ daB2GPJuf4cyDKCnpXIAmQ+VMVwc0ynzhtyxHMh+9WV8WJYpwdi7zOCylTKh1ZjW KDbrKsQSW83REfNRSfbMqSJwS7PdFLLsbMYWRMbhz/9OsNS9WV5pvkRHIf73d/Pe K8iowvWfFS6sFw15U4Hxk2+rRHglES0pHtCGY2KP1pASrPU6DKVewkuY9dAxcRAE nrEWNduUWuXSLrJ0D1r73L8p3HVm8nXKYVR27J69Jn6nEWVw0MlcmvDq45Oz1x5G f3nVqYIPzlJCBPKPBIJE4HceOLkdsn0N -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:11 2025 by rpki-client