$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: 1M3ABUIXfVQk17i5cqMhnPRMJQ1prh/DUzARmbM+MRE= Subject key identifier: 6A:61:2C:1D:E5:1C:F2:6A:E8:F3:BE:20:A8:51:2A:78:D9:43:CD:1F Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 094C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 0945 Signing time: Sat 18 Oct 2025 21:15:07 +0000 Manifest this update: Sat 18 Oct 2025 21:15:06 +0000 Manifest next update: Sat 25 Oct 2025 21:15:06 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: NpPwWpvjFHPfTcuqjy0488J5MbVwfGaPUvRap1BECcg=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2380 (0x94c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Oct 18 21:15:06 2025 GMT Not After : Oct 25 21:15:06 2025 GMT Subject: CN=68f4035b-f8b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bc:d2:e2:75:86:37:8c:de:93:e2:e9:6d:2e: 42:8a:0b:05:1a:d2:29:60:07:01:d2:42:df:73:c0: 93:ae:92:2a:aa:7a:ef:8d:11:a4:8f:60:6d:d6:37: ce:24:c8:6f:3c:ae:d5:72:70:59:2d:9c:12:04:89: 3f:85:13:8c:cc:33:e6:39:8b:7a:b9:4f:18:c0:46: 10:52:27:8a:27:a6:2b:20:04:b2:8b:b5:fa:cb:27: 36:18:30:d2:68:f4:a6:4f:24:70:23:55:c8:0c:89: 5f:e5:5b:92:83:28:e9:e5:8e:ff:2a:a4:c7:40:74: 34:01:c6:63:af:96:73:f5:11:5b:13:7c:f4:84:2d: 59:df:db:ac:1f:1f:34:a2:1d:21:a6:03:31:e1:fb: 57:78:ba:a1:33:bf:d8:55:f9:e0:a6:b4:0e:5c:8c: 2d:00:15:9e:da:a9:25:ea:e3:d9:00:74:43:53:a7: 97:18:2a:22:bf:eb:4e:0f:15:15:28:ac:d1:69:35: 4c:22:0d:41:c2:79:3f:e1:c4:50:07:5b:fc:5c:02: f3:d5:da:27:2e:21:aa:39:32:f9:41:08:d9:fc:74: 3c:2d:46:4c:39:0a:c6:34:a9:a5:30:7e:0e:59:e1: 78:22:c4:bb:ea:06:af:6d:42:f0:c7:23:ac:03:d0: b6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:61:2C:1D:E5:1C:F2:6A:E8:F3:BE:20:A8:51:2A:78:D9:43:CD:1F X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:1e:1b:67:f8:cf:47:0e:8f:74:21:6d:d9:3a:24:4b:be:14: 61:73:85:b5:2d:ce:aa:b7:f6:94:75:f4:ea:d2:f0:35:07:c7: d3:31:b5:11:86:52:88:26:0c:ba:b4:0c:83:03:74:5c:6a:09: 2f:ff:17:d7:b0:37:6e:17:0e:a4:56:f5:82:97:5d:e1:9a:ae: d1:c1:c1:9c:1e:51:ed:a0:e0:a6:c5:69:a6:f7:6c:88:98:e2: 01:2e:55:79:52:05:b9:13:d8:33:d0:27:d3:e8:c3:f8:7f:27: f3:85:e0:14:74:5b:f8:b4:ad:f6:97:7f:22:d2:90:6b:f9:6f: c9:66:01:79:46:c3:09:83:55:3b:79:11:70:9f:96:47:66:db: 36:d2:89:6f:b9:a6:0a:95:7c:bf:c5:77:cf:df:71:c0:bb:72: 49:2a:e9:04:bf:82:e3:1b:4d:a9:94:0a:89:eb:92:fe:34:9c: 1c:04:9b:2a:ea:cf:9f:67:ae:34:f3:a8:f1:5d:23:84:b2:52: 36:dc:44:c1:4a:7d:b0:a7:02:a4:77:89:34:56:de:b5:ca:ac: e5:22:c3:46:ab:ed:12:86:36:06:b5:b6:4a:eb:77:f5:9e:f0: a2:8a:d3:40:18:fb:9c:f2:81:9a:86:f2:25:be:e8:61:dd:7f: b3:28:96:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUxMDE4MjExNTA2WhcNMjUxMDI1MjExNTA2WjAYMRYwFAYD VQQDEw02OGY0MDM1Yi1mOGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobzS4nWGN4zek+LpbS5CigsFGtIpYAcB0kLfc8CTrpIqqnrvjRGkj2Bt1jfO JMhvPK7VcnBZLZwSBIk/hROMzDPmOYt6uU8YwEYQUieKJ6YrIASyi7X6yyc2GDDS aPSmTyRwI1XIDIlf5VuSgyjp5Y7/KqTHQHQ0AcZjr5Zz9RFbE3z0hC1Z39usHx80 oh0hpgMx4ftXeLqhM7/YVfngprQOXIwtABWe2qkl6uPZAHRDU6eXGCoiv+tODxUV KKzRaTVMIg1Bwnk/4cRQB1v8XALz1donLiGqOTL5QQjZ/HQ8LUZMOQrGNKmlMH4O WeF4IsS76gavbULwxyOsA9C2UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGphLB3l HPJq6PO+IKhRKnjZQ80fMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJHhtn+M9HDo90IW3ZOiRLvhRhc4W1Lc6qt/aUdfTq0vA1B8fTMbUR hlKIJgy6tAyDA3Rcagkv/xfXsDduFw6kVvWCl13hmq7RwcGcHlHtoOCmxWmm92yI mOIBLlV5UgW5E9gz0CfT6MP4fyfzheAUdFv4tK32l38i0pBr+W/JZgF5RsMJg1U7 eRFwn5ZHZts20olvuaYKlXy/xXfP33HAu3JJKukEv4LjG02plAqJ65L+NJwcBJsq 6s+fZ64086jxXSOEslI23ETBSn2wpwKkd4k0Vt61yqzlIsNGq+0ShjYGtbZK63f1 nvCiitNAGPuc8oGahvIlvuhh3X+zKJa9 -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:55 2025 by rpki-client