$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: gMomHhRkLZZ/I2v4/4iFrZDgFAb/owOSy5b5r4iIHP4= Subject key identifier: 27:F1:CF:55:A2:97:74:FE:AB:C3:FC:BA:6C:A0:92:58:8A:24:CC:4C Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 068A Signing time: Tue 04 Nov 2025 22:31:13 +0000 Manifest this update: Tue 04 Nov 2025 22:31:13 +0000 Manifest next update: Tue 11 Nov 2025 22:31:13 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: hnUH0/wMI848aWdvl6GP+V9cauyl33foQTBc7FXFlzM=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Nov 4 22:31:13 2025 GMT Not After : Nov 11 22:31:13 2025 GMT Subject: CN=690a7eb1-064c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:d9:23:b8:bc:16:61:ee:ec:fc:59:ac:c1:0f: 34:5a:66:61:68:ab:25:a7:b3:b0:10:8c:26:b2:18: 4d:1b:e8:b0:b8:8f:ba:54:70:22:31:5b:f5:d5:6a: 8c:ac:d0:ec:68:72:39:63:a8:a8:1d:e2:ee:da:bf: 4b:1c:dc:cd:a8:8c:55:c8:dd:a4:57:c9:a1:8c:a7: 52:51:90:0c:df:56:4b:1c:e1:dd:ff:23:3f:f6:aa: 5a:6b:ee:6c:13:1e:06:9d:bd:07:69:a0:e7:86:f1: dc:9c:f2:bc:06:b8:01:78:1b:a0:af:e9:35:77:eb: da:9f:d8:69:5e:bc:5e:31:df:ff:bd:0d:9f:77:88: 55:59:d9:60:cb:63:05:94:19:17:b3:3f:73:7d:6b: eb:58:5f:09:3a:92:99:67:38:31:a4:c5:b0:4c:8b: 87:e7:5c:29:37:01:9f:83:b3:71:52:ae:bc:d6:f2: 6a:4c:81:e7:64:66:cc:76:b9:5b:e5:d4:e9:84:ce: e3:9f:15:16:24:62:ab:e4:83:d7:c6:fc:71:81:71: b8:dd:0e:36:f2:ac:ec:d9:22:99:1f:04:11:0c:d3: bf:cf:d5:63:d4:e5:a3:98:4e:8d:01:51:34:be:69: 5d:94:0e:2c:c8:50:68:4a:d8:fa:e3:cc:7b:fe:5b: 27:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F1:CF:55:A2:97:74:FE:AB:C3:FC:BA:6C:A0:92:58:8A:24:CC:4C X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:4c:9c:2e:21:db:d2:99:ff:64:cb:a9:f5:4f:eb:08:2a:cb: 65:25:1d:c7:df:0c:5d:30:ea:50:55:e7:9e:ba:de:da:6f:eb: e7:fd:6e:a9:2a:03:62:99:6c:7a:0f:17:c8:d1:96:55:9a:26: 5d:0a:ff:89:63:64:40:a3:d3:34:d8:42:b3:1e:21:4d:e0:53: ac:15:35:dc:6c:c1:8e:83:32:ee:4d:20:95:65:40:31:a6:15: 04:5c:74:94:4c:5e:d4:0d:1c:92:fd:39:a9:2c:cf:04:63:e1: 10:1d:ae:81:6c:32:36:81:0b:81:0d:b9:d4:9f:d1:1c:fc:b9: 0b:4c:63:07:e3:0a:df:bc:c6:d0:ad:aa:49:ad:9e:f6:e6:95: a2:0f:c6:f6:99:28:a3:46:a8:62:96:72:bf:73:d8:f4:81:91: 25:ce:0a:5e:99:a2:26:9e:b1:74:62:0c:30:e1:88:de:f5:a4: 9b:07:b6:1b:92:a1:4e:91:c1:d7:0d:7c:a1:d4:fb:e7:6a:dd: cb:77:ca:a7:08:16:e7:45:a1:5f:77:9c:e4:30:19:5c:e1:9e: 18:00:38:85:05:41:89:3b:72:d7:9c:32:16:23:46:1c:36:11: 81:5f:70:c1:06:b8:5c:e0:a7:84:17:e4:1e:81:73:11:82:ef: 8c:8a:1b:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUxMTA0MjIzMTEzWhcNMjUxMTExMjIzMTEzWjAYMRYwFAYD VQQDEw02OTBhN2ViMS0wNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/tkjuLwWYe7s/FmswQ80WmZhaKslp7OwEIwmshhNG+iwuI+6VHAiMVv11WqM rNDsaHI5Y6ioHeLu2r9LHNzNqIxVyN2kV8mhjKdSUZAM31ZLHOHd/yM/9qpaa+5s Ex4Gnb0HaaDnhvHcnPK8BrgBeBugr+k1d+van9hpXrxeMd//vQ2fd4hVWdlgy2MF lBkXsz9zfWvrWF8JOpKZZzgxpMWwTIuH51wpNwGfg7NxUq681vJqTIHnZGbMdrlb 5dTphM7jnxUWJGKr5IPXxvxxgXG43Q428qzs2SKZHwQRDNO/z9Vj1OWjmE6NAVE0 vmldlA4syFBoStj648x7/lsnbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfxz1Wi l3T+q8P8umygkliKJMxMMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKTJwuIdvSmf9ky6n1T+sIKstlJR3H3wxdMOpQVeeeut7ab+vn/W6p KgNimWx6DxfI0ZZVmiZdCv+JY2RAo9M02EKzHiFN4FOsFTXcbMGOgzLuTSCVZUAx phUEXHSUTF7UDRyS/TmpLM8EY+EQHa6BbDI2gQuBDbnUn9Ec/LkLTGMH4wrfvMbQ rapJrZ725pWiD8b2mSijRqhilnK/c9j0gZElzgpemaImnrF0Ygww4Yje9aSbB7Yb kqFOkcHXDXyh1Pvnat3Ld8qnCBbnRaFfd5zkMBlc4Z4YADiFBUGJO3LXnDIWI0Yc NhGBX3DBBrhc4KeEF+QegXMRgu+Mihud -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:41 2025 by rpki-client