$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: x3HepR5i/sAHXH8/UQoIzdIT7/wTJuwgj4BMmLBMGBQ= Subject key identifier: AB:D8:95:FC:26:51:E2:26:20:B0:BF:C2:3D:8E:33:D5:A6:D0:11:9B Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 67 Signing time: Sun 19 Oct 2025 10:22:28 +0000 Manifest this update: Sun 19 Oct 2025 10:22:27 +0000 Manifest next update: Sun 26 Oct 2025 10:22:27 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: lEDH1PACD7P9cqpYE2iQwbOIo4zS2+g+m4XFv2UX7as=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Oct 19 10:22:27 2025 GMT Not After : Oct 26 10:22:27 2025 GMT Subject: CN=68f4bbe3-bf90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:13:2b:3e:59:72:01:39:bf:77:77:96:f1:63: 52:e8:b3:0e:5a:e8:17:cc:cb:b6:7f:e9:2a:e4:6f: d5:1b:d9:4a:72:74:b8:97:bd:c0:cb:28:87:97:ff: 60:1b:c1:39:4b:82:8d:15:de:77:fe:12:00:4d:78: b5:57:ff:4f:b0:7d:3b:ae:c6:d9:e8:94:1f:7d:eb: 26:26:6f:0d:2f:e9:09:75:a5:38:bf:b8:a9:40:e1: 18:a8:31:f2:0b:d9:8f:5f:4c:63:f8:0c:da:6c:b7: 20:16:a7:b8:97:e5:aa:4d:6a:86:8f:6e:62:46:af: b8:73:76:45:df:90:8f:0e:eb:61:61:50:3b:50:68: d2:84:93:b9:ea:90:27:a2:38:2c:23:9b:e9:58:40: 30:49:50:68:df:1b:76:81:6e:40:25:44:31:ac:f1: c4:aa:a1:d1:f0:9a:1b:9d:97:62:e5:1c:5a:6a:94: 7f:69:a4:6d:98:d0:a9:f3:1c:87:79:f7:22:07:70: 4e:7d:7c:82:d3:24:7d:ef:7a:00:b5:66:ef:39:38: 6f:57:0a:ce:af:8a:68:0d:83:29:83:0e:44:b2:32: bb:68:1a:40:47:48:e9:f1:45:09:f0:ca:75:04:2b: 07:e5:36:90:1a:02:ab:38:2c:27:33:62:d1:97:bc: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D8:95:FC:26:51:E2:26:20:B0:BF:C2:3D:8E:33:D5:A6:D0:11:9B X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:8d:17:2a:95:3b:5c:a2:9d:63:0d:71:f8:1c:e7:35:fa:73: 6e:c8:01:f9:82:fc:a5:37:9e:24:df:ad:5b:c1:4b:bf:ca:48: ba:7b:0f:50:05:24:a2:32:69:ae:0c:21:6c:90:92:32:43:38: 48:ff:a9:cb:d3:5d:6d:9c:11:d3:63:23:b2:92:37:38:ec:26: eb:03:b0:06:35:5b:78:e5:01:b5:b0:02:a3:46:8f:15:fd:e6: e8:44:16:95:01:07:56:da:1c:4f:18:70:c5:0c:3b:86:af:76: 79:4c:07:5f:6b:b1:61:a0:1a:83:19:6a:c1:4f:0f:9f:6e:36: fd:0e:45:e5:b8:b2:83:08:e0:39:7a:ec:62:cc:8a:8b:1f:ca: a8:25:66:7a:45:75:93:98:3f:c9:4b:e8:b6:6f:08:1f:ff:90: 34:e0:d8:72:e2:3b:fc:5f:a6:01:dd:b8:bd:8f:48:ef:76:28: 82:fc:a8:3f:2a:d5:69:91:e6:81:ba:b9:7e:88:0d:17:2d:75: 5e:ee:0f:0b:fb:0e:46:30:ba:9f:4b:e1:a0:a1:63:92:06:85: ab:42:27:f0:c1:e1:a2:3f:3a:44:e3:5b:8f:63:8b:7a:2c:93: 74:dd:db:9c:be:bd:9e:0c:aa:70:d7:b1:86:d8:14:7e:28:de: 18:cb:c6:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTEwMTkxMDIyMjdaFw0yNTEwMjYxMDIyMjdaMBgxFjAUBgNV BAMTDTY4ZjRiYmUzLWJmOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMEys+WXIBOb93d5bxY1Losw5a6BfMy7Z/6Srkb9Ub2UpydLiXvcDLKIeX/2Ab wTlLgo0V3nf+EgBNeLVX/0+wfTuuxtnolB996yYmbw0v6Ql1pTi/uKlA4RioMfIL 2Y9fTGP4DNpstyAWp7iX5apNaoaPbmJGr7hzdkXfkI8O62FhUDtQaNKEk7nqkCei OCwjm+lYQDBJUGjfG3aBbkAlRDGs8cSqodHwmhudl2LlHFpqlH9ppG2Y0KnzHId5 9yIHcE59fILTJH3vegC1Zu85OG9XCs6vimgNgymDDkSyMrtoGkBHSOnxRQnwynUE KwflNpAaAqs4LCczYtGXvCg/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUq9iV/CZR 4iYgsL/CPY4z1abQEZswHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAqNFyqVO1yinWMNcfgc5zX6c27IAfmC/KU3niTfrVvBS7/KSLp7D1AF JKIyaa4MIWyQkjJDOEj/qcvTXW2cEdNjI7KSNzjsJusDsAY1W3jlAbWwAqNGjxX9 5uhEFpUBB1baHE8YcMUMO4avdnlMB19rsWGgGoMZasFPD59uNv0OReW4soMI4Dl6 7GLMiosfyqglZnpFdZOYP8lL6LZvCB//kDTg2HLiO/xfpgHduL2PSO92KIL8qD8q 1WmR5oG6uX6IDRctdV7uDwv7DkYwup9L4aChY5IGhatCJ/DB4aI/OkTjW49ji3os k3Td25y+vZ4MqnDXsYbYFH4o3hjLxl4= -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:52 2025 by rpki-client