$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: t/Eh0ua9fHxvF7h8DXZ7ShDdN2sW438RdsA6vp1dCQM= Subject key identifier: B7:07:68:DA:D6:B6:3A:30:71:ED:49:DB:9A:E5:AE:EA:5A:A2:AA:C7 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D68 Signing time: Sat 18 Oct 2025 18:38:54 +0000 Manifest this update: Sat 18 Oct 2025 18:38:54 +0000 Manifest next update: Sat 25 Oct 2025 18:38:54 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: ovTioQzUkUtgexOWS16kJWKhtRpnShU0/1wgFGsGGGc=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Oct 18 18:38:54 2025 GMT Not After : Oct 25 18:38:54 2025 GMT Subject: CN=68f3debe-087c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:65:4d:da:0d:1d:22:11:6c:58:83:81:e1:ec: 10:77:ca:30:06:cd:6a:53:7f:16:eb:07:af:95:bc: 44:ce:54:e0:fc:59:03:71:70:8d:20:a3:b6:ca:32: 35:98:1d:d6:b7:94:2c:e0:89:65:c8:a1:25:e1:4f: 86:b5:4e:52:df:97:6a:19:29:fc:8a:d2:5e:69:e9: 5e:9c:6c:71:43:c2:a4:e2:46:9d:d0:1c:8b:05:43: 1a:e8:03:82:cb:39:d4:63:20:9d:45:ec:2c:b4:90: 8f:4c:12:88:3f:a5:6a:3f:f1:76:a3:e9:f0:28:0e: 27:86:17:89:76:3e:fb:0f:b1:4c:19:45:92:83:f7: c3:f0:03:b8:48:e6:f9:54:dc:c8:ad:9a:9f:ad:cf: c0:d9:93:a5:07:27:d8:6c:92:f3:a3:b8:ff:b4:39: be:12:1c:c1:a1:c0:5b:0b:84:85:58:f3:15:b3:35: e3:c5:fd:1a:9c:c1:c0:7d:49:07:ad:8a:fe:b0:0c: cb:5f:c3:3d:d8:14:cb:8f:18:38:0e:51:0c:07:b8: 35:fd:b4:9b:ef:56:af:5c:0f:44:68:7e:ff:c5:a4: 07:26:ca:52:3e:53:c3:48:f1:1b:18:a9:fe:e0:57: ad:0f:2d:0a:e3:4e:5e:f3:33:e4:88:bf:24:bb:2f: 43:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:07:68:DA:D6:B6:3A:30:71:ED:49:DB:9A:E5:AE:EA:5A:A2:AA:C7 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d2:c5:3d:8f:17:47:3c:98:e1:83:0b:dd:91:2a:d6:72:c4: 5f:5f:fe:b5:b1:99:b5:36:93:de:ad:6f:f0:4c:d2:36:54:cb: d0:02:1a:b6:7a:f0:ca:dd:16:74:c8:0b:37:90:80:68:20:be: a6:fb:3b:7d:5d:46:d4:ee:a5:2a:33:24:ee:1f:f2:c5:ca:22: 8f:d5:ba:e1:d4:d5:24:20:09:a3:e5:81:3b:00:3e:e1:33:3d: 84:f2:08:31:6c:e4:5e:e6:10:ab:85:80:2d:d3:22:82:23:5d: df:7b:87:88:36:62:4c:73:49:2a:b8:96:97:80:5b:37:fd:ee: 0e:2e:d5:c6:51:2c:75:24:1e:65:fd:ce:63:e1:dd:ba:ba:a2: b9:d3:1b:93:01:52:4c:79:ab:1b:9a:fc:bb:cc:8f:66:f4:c7: 6c:4d:03:a5:a5:3b:b2:0f:88:00:a1:25:f6:36:b7:37:f4:39: e1:3d:d1:75:81:f9:28:37:97:8f:90:70:02:13:c1:58:41:76: 72:46:64:06:68:b6:34:46:a2:21:a3:10:e2:5c:7c:dc:7e:50: d0:49:2c:52:80:12:9e:e9:69:b9:64:7c:fd:30:73:64:82:65: d8:dd:77:fa:ab:f4:7d:e1:cf:89:05:c6:22:b6:18:8f:65:d8: 19:dc:61:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUxMDE4MTgzODU0WhcNMjUxMDI1MTgzODU0WjAYMRYwFAYD VQQDEw02OGYzZGViZS0wODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GVN2g0dIhFsWIOB4ewQd8owBs1qU38W6wevlbxEzlTg/FkDcXCNIKO2yjI1 mB3Wt5Qs4IllyKEl4U+GtU5S35dqGSn8itJeaelenGxxQ8Kk4kad0ByLBUMa6AOC yznUYyCdRewstJCPTBKIP6VqP/F2o+nwKA4nhheJdj77D7FMGUWSg/fD8AO4SOb5 VNzIrZqfrc/A2ZOlByfYbJLzo7j/tDm+EhzBocBbC4SFWPMVszXjxf0anMHAfUkH rYr+sAzLX8M92BTLjxg4DlEMB7g1/bSb71avXA9EaH7/xaQHJspSPlPDSPEbGKn+ 4FetDy0K405e8zPkiL8kuy9DUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcHaNrW tjowce1J25rlrupaoqrHMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF0sU9jxdHPJjhgwvdkSrWcsRfX/61sZm1NpPerW/wTNI2VMvQAhq2 evDK3RZ0yAs3kIBoIL6m+zt9XUbU7qUqMyTuH/LFyiKP1brh1NUkIAmj5YE7AD7h Mz2E8ggxbORe5hCrhYAt0yKCI13fe4eINmJMc0kquJaXgFs3/e4OLtXGUSx1JB5l /c5j4d26uqK50xuTAVJMeasbmvy7zI9m9MdsTQOlpTuyD4gAoSX2Nrc39DnhPdF1 gfkoN5ePkHACE8FYQXZyRmQGaLY0RqIhoxDiXHzcflDQSSxSgBKe6Wm5ZHz9MHNk gmXY3Xf6q/R94c+JBcYithiPZdgZ3GGo -----END CERTIFICATE-----Generated at Mon Oct 20 03:57:37 2025 by rpki-client