$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: 6GGgjyoJYx6451pBB308bY0fatPRXBT/wokAwN/jjus= Subject key identifier: B4:F5:D6:D1:DD:DC:A1:D8:0E:66:3F:FB:FB:03:A4:F7:41:4D:99:90 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 01D7 Signing time: Sat 18 Oct 2025 17:35:15 +0000 Manifest this update: Sat 18 Oct 2025 17:35:14 +0000 Manifest next update: Sat 25 Oct 2025 17:35:14 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: r1GgeloI/xqE8tGOTRBkpntfmdhij0YMT2TnqE0w0KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Oct 18 17:35:14 2025 GMT Not After : Oct 25 17:35:14 2025 GMT Subject: CN=68f3cfd3-19f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:de:04:54:0c:3c:15:f4:13:aa:51:e1:69:4e: a3:ec:c9:30:04:0f:6b:89:28:41:b4:22:7d:5e:6e: bd:7f:10:14:c8:ee:dc:d6:fe:d3:a8:fd:21:b1:e9: 8d:e6:c6:52:9a:12:90:e3:de:ba:6e:23:4e:ed:f3: cd:a2:f7:c3:61:0c:05:ee:67:8a:25:0a:e7:d8:0e: 29:20:ef:12:78:b0:59:08:b5:eb:07:e0:79:c7:51: 14:60:df:59:b5:af:02:b8:eb:26:8b:72:af:e6:2e: 49:c1:fb:cc:99:e6:9f:7b:62:f8:9e:57:2d:ff:fb: 42:a7:45:28:ca:c3:6c:6d:64:ec:4a:8f:f0:05:b5: fb:23:7f:38:4b:9e:ed:95:66:c2:5a:b0:2a:1a:d7: 37:f2:df:34:8e:fd:d6:64:a4:04:9e:bb:58:94:d1: 08:53:73:31:1a:57:7f:3b:e0:6c:52:d8:83:7a:74: a5:5a:cc:21:02:e6:c7:10:1f:6d:b9:6c:17:74:43: 7e:e5:cf:ff:db:54:a7:9f:49:8c:51:50:28:fb:a3: 8f:18:29:73:38:02:81:07:6a:c1:d6:c9:c6:9d:3b: d9:13:1d:c1:5e:8f:2f:0f:3d:1d:ca:4a:7b:6a:b2: 24:30:bd:b5:ad:02:0f:6a:6c:4a:c2:95:29:65:f6: 9d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F5:D6:D1:DD:DC:A1:D8:0E:66:3F:FB:FB:03:A4:F7:41:4D:99:90 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:95:ef:d5:8f:d5:c1:f3:cb:26:cf:58:c6:13:f0:ba:83:ad: 9d:a1:7a:14:3f:67:90:a4:db:ef:72:f2:ae:e6:8b:4a:1d:5f: 4e:6a:cb:bf:c3:cd:98:00:22:90:6d:71:f0:9a:d0:0d:80:6d: 2f:b1:43:94:89:cf:47:5d:6b:43:54:44:bb:6c:af:e5:64:a6: b7:28:2d:37:6b:c4:82:e2:f2:64:ec:31:7a:bb:b4:1e:d8:d8: 7f:39:2a:25:4e:87:e0:84:e6:2c:d1:71:77:60:79:0d:ef:a6: d4:a3:fc:3d:9e:2d:ad:7e:7b:56:b9:4e:a1:eb:b6:52:77:81: 5c:38:3b:9a:2a:37:e5:83:54:19:fc:d7:a0:90:6d:40:a0:49: 42:6a:5a:02:e2:1a:0c:f6:a7:dd:e3:24:4a:85:6e:b8:0e:64: 1d:9b:22:38:04:21:c4:27:23:e2:d7:0b:70:2c:20:15:39:cd: e6:c4:82:cb:cf:8b:43:7f:33:5a:ed:63:2a:9f:85:66:47:71: a6:33:8e:1c:38:79:3c:e1:ce:d9:56:46:23:15:5f:3c:39:ee: e2:3e:52:ce:07:47:4d:3e:8e:a5:4e:77:b2:49:48:80:5b:29: 83:e8:88:3e:45:34:8a:1e:30:8b:b1:8c:83:97:11:c3:cc:38: 10:57:db:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUxMDE4MTczNTE0WhcNMjUxMDI1MTczNTE0WjAYMRYwFAYD VQQDEw02OGYzY2ZkMy0xOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7d4EVAw8FfQTqlHhaU6j7MkwBA9riShBtCJ9Xm69fxAUyO7c1v7TqP0hsemN 5sZSmhKQ4966biNO7fPNovfDYQwF7meKJQrn2A4pIO8SeLBZCLXrB+B5x1EUYN9Z ta8CuOsmi3Kv5i5JwfvMmeafe2L4nlct//tCp0UoysNsbWTsSo/wBbX7I384S57t lWbCWrAqGtc38t80jv3WZKQEnrtYlNEIU3MxGld/O+BsUtiDenSlWswhAubHEB9t uWwXdEN+5c//21Snn0mMUVAo+6OPGClzOAKBB2rB1snGnTvZEx3BXo8vDz0dykp7 arIkML21rQIPamxKwpUpZfadKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLT11tHd 3KHYDmY/+/sDpPdBTZmQMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALle/Vj9XB88smz1jGE/C6g62doXoUP2eQpNvvcvKu5otKHV9Oasu/ w82YACKQbXHwmtANgG0vsUOUic9HXWtDVES7bK/lZKa3KC03a8SC4vJk7DF6u7Qe 2Nh/OSolTofghOYs0XF3YHkN76bUo/w9ni2tfntWuU6h67ZSd4FcODuaKjflg1QZ /NegkG1AoElCaloC4hoM9qfd4yRKhW64DmQdmyI4BCHEJyPi1wtwLCAVOc3mxILL z4tDfzNa7WMqn4VmR3GmM44cOHk84c7ZVkYjFV88Oe7iPlLOB0dNPo6lTneySUiA WymD6Ig+RTSKHjCLsYyDlxHDzDgQV9s8 -----END CERTIFICATE-----Generated at Mon Oct 20 18:37:18 2025 by rpki-client