$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: X5+w7R3GlQqwA/nV1XPiJmgysCoNe3PX1aJlWWHuHCo= Subject key identifier: 2D:C9:63:55:9B:FB:AE:B3:D9:87:E9:C5:A5:F0:9A:B2:3B:58:28:AA Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 8E Signing time: Wed 05 Nov 2025 06:45:00 +0000 Manifest this update: Wed 05 Nov 2025 06:45:00 +0000 Manifest next update: Wed 12 Nov 2025 06:45:00 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: Jpc2ReQOD4U9bK7IeunS6Xjx/gOccKPqG15rw6dldcU=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: wy+E0shlE0SgKblGT9mkubbsdEgdl8xDfG6j2pKg5CM=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: rUHAonKHyKGTHsXqPvAHU77iis+UDkigScpxL6u+DWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Nov 5 06:45:00 2025 GMT Not After : Nov 12 06:45:00 2025 GMT Subject: CN=690af26c-1548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7a:f8:05:72:21:64:6f:a6:81:b8:63:fc:ef: 2e:46:dd:5a:56:0e:51:84:af:98:68:d5:42:bf:7e: bb:c5:27:86:f5:93:a9:1c:fd:e9:73:a6:17:92:ff: a8:59:61:0b:3d:f0:a6:bb:33:55:f9:86:49:41:2a: 97:a8:13:30:14:b1:eb:52:a0:2d:e3:aa:3c:87:93: 3d:06:e0:08:d6:94:34:43:2f:c4:10:f6:47:d1:7f: ff:9e:b7:36:4c:ae:6e:a5:b8:ec:11:96:b8:05:8a: 6d:db:a1:4f:87:09:1f:46:80:34:fb:5d:1d:23:40: bf:3f:a5:66:2d:b4:8c:c0:df:b4:6a:bf:f4:6f:cf: c8:da:07:ee:28:cb:18:41:2d:ef:51:42:b4:33:75: 03:e1:95:ef:c4:a4:55:29:82:04:0c:d4:54:83:ae: a7:31:61:a0:22:18:5f:2c:51:4d:ea:dd:9e:ca:e2: 10:cc:1f:05:98:82:c4:48:00:96:85:49:92:86:8a: e7:5b:34:79:36:bb:40:21:9a:b8:c7:92:d4:cb:70: 61:eb:58:4e:61:04:44:f7:00:2a:78:78:8a:f2:e9: 7c:f7:ea:a7:b8:da:1f:d9:dd:33:bf:e0:0a:3b:45: d7:f9:bc:5f:23:83:85:3d:18:27:7e:fd:6f:23:65: 3c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C9:63:55:9B:FB:AE:B3:D9:87:E9:C5:A5:F0:9A:B2:3B:58:28:AA X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:45:da:72:76:6e:1a:5c:5b:96:10:5c:0f:9d:c7:34:e4:89: 1d:24:b4:4b:0c:5c:4b:45:51:32:a1:bd:13:92:95:24:e3:81: ac:16:13:a4:fb:fe:9b:ea:b7:e2:18:50:ba:eb:37:5b:cc:93: 91:39:30:38:a7:91:ea:c2:6e:93:64:61:c3:3d:51:28:c0:ad: 94:09:70:04:81:a6:9b:20:88:34:76:aa:87:6d:e1:d6:ba:5a: 48:55:78:04:84:db:56:40:2c:dd:b6:69:56:b6:eb:e5:4e:39: 64:7c:eb:45:c7:58:18:ac:19:3d:c6:f6:c2:5b:fa:2b:3f:32: 2b:70:21:e8:b6:47:b7:63:11:1e:42:0d:6c:64:52:2f:1c:42: aa:af:4d:4e:e0:10:c2:5f:00:6a:44:e5:ed:8d:46:10:cc:17: 06:1e:47:58:ed:8e:fb:cb:7e:8f:f7:c1:16:74:f9:69:be:1b: 31:61:09:3a:26:34:f5:03:4e:f5:2f:3a:5a:ca:a5:a2:15:83: 12:3b:64:13:e9:b0:58:92:be:bd:08:35:71:e9:af:79:13:63: 6f:38:6f:94:75:33:11:b4:91:f0:14:f1:29:5e:25:40:22:b0: 6a:43:99:b9:26:f7:82:3e:14:ec:e9:ab:e2:cb:b0:d1:84:69: 46:d1:15:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwMzcxMTAvBgNVBAUTKDM3NjEyMTJBMTY3MEE1NzE5QUI3MUZBMjAzQjkyRUM2 ODZGMjExNzcwHhcNMjUxMTA1MDY0NTAwWhcNMjUxMTEyMDY0NTAwWjAYMRYwFAYD VQQDEw02OTBhZjI2Yy0xNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXr4BXIhZG+mgbhj/O8uRt1aVg5RhK+YaNVCv367xSeG9ZOpHP3pc6YXkv+o WWELPfCmuzNV+YZJQSqXqBMwFLHrUqAt46o8h5M9BuAI1pQ0Qy/EEPZH0X//nrc2 TK5upbjsEZa4BYpt26FPhwkfRoA0+10dI0C/P6VmLbSMwN+0ar/0b8/I2gfuKMsY QS3vUUK0M3UD4ZXvxKRVKYIEDNRUg66nMWGgIhhfLFFN6t2eyuIQzB8FmILESACW hUmShornWzR5NrtAIZq4x5LUy3Bh61hOYQRE9wAqeHiK8ul89+qnuNof2d0zv+AK O0XX+bxfI4OFPRgnfv1vI2U8uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3JY1Wb +66z2YfpxaXwmrI7WCiqMB8GA1UdIwQYMBaAFDdhISoWcKVxmrcfogO5LsaG8hF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjAzNy81QzA1QzBDOEU0 MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BYR2F0eC1pQTdrdXhvYnlF WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjAzNy81QzA1QzBDOEU0MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BY R2F0eC1pQTdrdXhvYnlFWGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Rdpydm4aXFuWEFwPncc05IkdJLRLDFxLRVEyob0TkpUk44GsFhOk +/6b6rfiGFC66zdbzJOROTA4p5Hqwm6TZGHDPVEowK2UCXAEgaabIIg0dqqHbeHW ulpIVXgEhNtWQCzdtmlWtuvlTjlkfOtFx1gYrBk9xvbCW/orPzIrcCHotke3YxEe Qg1sZFIvHEKqr01O4BDCXwBqROXtjUYQzBcGHkdY7Y77y36P98EWdPlpvhsxYQk6 JjT1A071LzpayqWiFYMSO2QT6bBYkr69CDVx6a95E2NvOG+UdTMRtJHwFPEpXiVA IrBqQ5m5JveCPhTs6aviy7DRhGlG0RUJ -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:42 2025 by rpki-client