$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: +6sXb9GBiis1aGPgDeOZZEYlzZGhI4UbETqRe9jkf8s= Subject key identifier: 27:03:02:C3:A5:89:99:20:39:FF:BC:6C:D0:31:79:2C:EB:D6:DC:58 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 13A7 Signing time: Sat 18 Oct 2025 20:16:21 +0000 Manifest this update: Sat 18 Oct 2025 20:16:19 +0000 Manifest next update: Sat 25 Oct 2025 20:16:19 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: htgZ9S2SxiH/3B9s499hxHBGaLYSUzNZ6GuGdgFOppk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Oct 18 20:16:19 2025 GMT Not After : Oct 25 20:16:19 2025 GMT Subject: CN=68f3f594-a34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:01:74:dc:47:c6:f3:7a:d1:69:f6:1a:ec: 74:72:4c:b4:05:bd:c7:33:8e:d9:d3:71:9b:9c:a1: 8e:59:26:99:ff:07:d9:83:3b:88:e8:81:5f:48:0e: f2:58:19:18:2b:7a:79:2f:6b:48:5e:86:7f:02:b6: 7d:ed:21:2c:98:c6:c0:99:8f:96:e3:86:a6:69:bb: df:7d:3a:cf:4f:e2:7c:67:3a:6e:46:1a:fc:ce:c0: fd:bc:c1:3c:47:0c:a5:bc:f9:49:07:de:0b:41:62: 8c:5e:0e:b1:8f:e5:9f:ab:9a:71:cf:33:9a:bc:b7: 02:f1:7c:f9:ad:25:5d:bd:66:54:de:2f:be:84:a1: 46:f5:e6:b3:d5:2c:f6:b4:9e:18:f7:8d:f8:52:15: 9b:35:69:a7:fa:ce:23:11:dc:ee:1c:cb:79:0a:01: c3:74:8c:90:d1:c5:20:01:4e:86:7c:5f:7f:72:09: e5:6c:54:d9:fe:af:16:7a:32:4c:73:14:6c:7d:1b: f3:c6:3b:a7:6d:50:4a:87:ed:4d:0f:2a:ac:d0:91: a0:98:51:11:88:2a:93:71:28:5a:bb:0e:9b:20:36: e6:5c:97:31:af:21:1f:d5:d9:64:68:6a:3f:b1:41: 99:a6:c8:12:65:f8:fe:ef:8f:9d:52:1b:a8:a7:82: b7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:03:02:C3:A5:89:99:20:39:FF:BC:6C:D0:31:79:2C:EB:D6:DC:58 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:f7:10:3b:e9:05:41:43:e7:7f:1f:5d:9a:26:9d:4b:59:32: 33:b9:19:59:90:35:c6:0c:8d:ab:8f:ff:10:c9:64:6b:7b:a9: 7e:78:4b:86:db:3b:9c:2c:77:a9:06:62:8b:8b:2e:ea:60:71: 19:53:ef:25:01:ff:df:e1:81:65:06:b2:fe:b5:d7:d4:ff:a0: a3:a7:9e:01:60:f9:5d:db:6f:68:fd:04:5e:17:b1:47:65:ed: 27:c8:f1:03:04:6a:0d:7f:55:9d:3d:2d:b9:77:0b:10:1d:7b: f7:b9:25:d5:3e:3b:34:d7:81:02:a0:b1:b0:4f:e3:46:6b:d3: ef:ae:02:3d:70:47:0e:a8:6c:2f:b2:21:e2:43:63:0e:76:81: cb:90:02:bd:e0:98:f3:fc:82:e4:1e:67:39:e2:0d:32:bd:be: 32:06:0d:a7:0b:74:71:1a:f1:8a:86:4f:d6:73:aa:44:71:ff: 8a:4e:a6:e1:76:fd:41:2f:71:ff:e0:2a:3a:a7:38:cc:01:10: 57:cd:9c:67:73:bc:b9:a4:34:96:6a:5f:85:c5:29:83:3b:e7: 37:09:eb:bd:5b:7b:11:4f:4c:9a:cd:9d:e7:8a:19:b0:42:2c: 21:a3:d4:f7:8c:dd:ae:dd:96:64:87:7b:a0:00:69:d3:d7:c8: 27:bb:cf:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUxMDE4MjAxNjE5WhcNMjUxMDI1MjAxNjE5WjAYMRYwFAYD VQQDEw02OGYzZjU5NC1hMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m0BdNxHxvN60Wn2Gux0cky0Bb3HM47Z03GbnKGOWSaZ/wfZgzuI6IFfSA7y WBkYK3p5L2tIXoZ/ArZ97SEsmMbAmY+W44amabvffTrPT+J8ZzpuRhr8zsD9vME8 RwylvPlJB94LQWKMXg6xj+Wfq5pxzzOavLcC8Xz5rSVdvWZU3i++hKFG9eaz1Sz2 tJ4Y9434UhWbNWmn+s4jEdzuHMt5CgHDdIyQ0cUgAU6GfF9/cgnlbFTZ/q8WejJM cxRsfRvzxjunbVBKh+1NDyqs0JGgmFERiCqTcShauw6bIDbmXJcxryEf1dlkaGo/ sUGZpsgSZfj+74+dUhuop4K3zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcDAsOl iZkgOf+8bNAxeSzr1txYMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC79xA76QVBQ+d/H12aJp1LWTIzuRlZkDXGDI2rj/8QyWRre6l+eEuG 2zucLHepBmKLiy7qYHEZU+8lAf/f4YFlBrL+tdfU/6Cjp54BYPld229o/QReF7FH Ze0nyPEDBGoNf1WdPS25dwsQHXv3uSXVPjs014ECoLGwT+NGa9PvrgI9cEcOqGwv siHiQ2MOdoHLkAK94Jjz/ILkHmc54g0yvb4yBg2nC3RxGvGKhk/Wc6pEcf+KTqbh dv1BL3H/4Co6pzjMARBXzZxnc7y5pDSWal+FxSmDO+c3Ceu9W3sRT0yazZ3nihmw Qiwho9T3jN2u3ZZkh3ugAGnT18gnu88B -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:47 2025 by rpki-client