$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: xJrRMJClh0XFwVn6stLtovA+j6HocUJhqrhLVQ/jIyQ= Subject key identifier: 58:26:14:7B:95:50:C7:9C:3D:4C:B6:C9:8A:82:CC:B4:9A:69:1D:9B Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: 6E Signing time: Wed 05 Nov 2025 07:07:39 +0000 Manifest this update: Wed 05 Nov 2025 07:07:38 +0000 Manifest next update: Wed 12 Nov 2025 07:07:38 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: bmvwQ9OZAK5rdNTsx/2kypztkQpb+Mco315rm+qsfuc=) 2: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: ZDuunhoBLIFxkgffUJp6fhz6W2Ysr7yM0HyGKDGLaSU=) 3: 4A3C802012A711F099020A73C4F9AE02.roa (hash: EvMFCkIZLxU/4T9yDv4rTrnplB41rjMOAziWwMgP5hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Nov 5 07:07:38 2025 GMT Not After : Nov 12 07:07:38 2025 GMT Subject: CN=690af7bb-4167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:6c:94:5a:5e:00:bf:29:c2:17:9d:ed:e8: 8d:ad:07:65:5a:d7:63:28:50:f5:db:f5:0d:bc:04: e4:15:61:7e:1e:37:67:c7:78:d4:e4:8d:a4:c0:61: e0:e7:4c:bf:42:3f:7d:d5:0e:43:c7:36:a9:d7:c6: 78:c5:54:26:5d:65:cc:1c:66:23:98:c0:fd:74:35: da:94:6a:ad:e4:72:a5:dc:da:53:45:1e:16:7c:87: ff:c6:db:0e:f4:81:6f:cd:20:5c:58:ab:7b:6e:e9: 14:c9:f2:f3:70:54:f4:73:0e:a2:e2:48:23:5a:45: 80:f3:17:67:8f:32:40:a0:c3:3a:81:bf:6d:fc:e0: 3c:91:f2:57:61:23:44:c2:50:3b:80:a9:3c:fb:0f: ac:79:db:92:ee:26:f3:af:35:8a:6f:30:ba:e1:b5: 30:33:bd:1d:e4:fc:36:9c:f0:65:ab:39:19:a8:d5: 14:b2:2a:e3:d9:16:6d:75:5b:e6:00:aa:62:cd:05: 7d:ce:fa:42:8a:59:ab:f9:d3:03:34:45:e0:e0:c2: e8:dc:b7:4f:cb:c3:35:83:f0:7b:56:9f:4b:b9:fa: 1c:55:25:e2:d1:99:2a:e8:93:95:8d:4b:3c:66:f9: eb:68:ff:e8:98:ea:b7:04:6d:95:59:59:ab:88:fb: 49:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:26:14:7B:95:50:C7:9C:3D:4C:B6:C9:8A:82:CC:B4:9A:69:1D:9B X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d3:6f:68:ae:b3:8a:5d:ad:4a:1a:1a:88:5a:b6:84:95:5c: 1c:e3:15:28:a5:61:26:c2:f4:97:f2:ab:44:bc:c9:e3:83:0d: a1:40:3a:3f:2c:ab:62:7c:14:ff:89:d1:40:0a:50:2d:0a:56: c5:9c:ef:96:13:dc:73:a4:4d:1a:15:3e:8c:fa:5b:3d:ea:03: 4f:1f:4b:87:cc:f5:61:ae:d0:a9:34:22:21:a1:f4:8e:9e:a9: cc:3e:87:ac:e8:b0:d0:40:67:e0:e8:f4:0a:6d:0c:0f:bc:66: 41:98:69:2a:c4:fc:ed:64:11:43:f0:05:30:2b:e4:eb:9e:4f: c8:d5:29:06:14:00:85:4d:78:34:2a:af:e3:f8:66:e6:5f:26: 68:8f:bc:01:48:3d:49:20:e8:59:62:e1:a5:6f:07:2f:7e:fc: df:f8:e1:d2:50:51:89:d7:2b:6d:8e:d3:45:5d:08:6b:54:d7: cb:7a:7f:05:17:f5:46:2b:56:72:a6:a3:c1:fb:11:00:4c:5d: c1:ae:30:f8:2c:24:b6:b3:c1:22:f7:c8:47:d6:63:8f:6b:48: bf:33:98:48:3c:e4:a7:a5:68:1c:d9:4c:ae:0c:e3:36:93:47: c5:0f:19:30:4d:2c:e0:16:59:56:f9:01:84:b8:e8:70:47:82: bf:c2:4c:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUYzRTExMC8GA1UEBRMoOUNFOTE3REMzQUUwQzVCQTJFNzdDQjc3NUEzQUQ5OUM2 ODVDNDA2QjAeFw0yNTExMDUwNzA3MzhaFw0yNTExMTIwNzA3MzhaMBgxFjAUBgNV BAMTDTY5MGFmN2JiLTQxNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC09WyUWl4AvynCF53t6I2tB2Va12MoUPXb9Q28BOQVYX4eN2fHeNTkjaTAYeDn TL9CP33VDkPHNqnXxnjFVCZdZcwcZiOYwP10NdqUaq3kcqXc2lNFHhZ8h//G2w70 gW/NIFxYq3tu6RTJ8vNwVPRzDqLiSCNaRYDzF2ePMkCgwzqBv2384DyR8ldhI0TC UDuAqTz7D6x525LuJvOvNYpvMLrhtTAzvR3k/Dac8GWrORmo1RSyKuPZFm11W+YA qmLNBX3O+kKKWav50wM0ReDgwujct0/LwzWD8HtWn0u5+hxVJeLRmSrok5WNSzxm +eto/+iY6rcEbZVZWauI+0kzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWCYUe5VQ x5w9TLbJioLMtJppHZswHwYDVR0jBBgwFoAUnOkX3Drgxboud8t3WjrZnGhcQGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjNFLzMzOUVERTY4MTBF NDExRjBCNzVCODE2NkM0RjlBRTAyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk9rWDNEcmd4Ym91ZDh0M1dqclpuR2hjUUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx RjNFLzMzOUVERTY4MTBFNDExRjBCNzVCODE2NkM0RjlBRTAyL25Pa1gzRHJneGJv dWQ4dDNXanJabkdoY1FHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACXTb2ius4pdrUoaGohatoSVXBzjFSilYSbC9Jfyq0S8yeODDaFAOj8s q2J8FP+J0UAKUC0KVsWc75YT3HOkTRoVPoz6Wz3qA08fS4fM9WGu0Kk0IiGh9I6e qcw+h6zosNBAZ+Do9AptDA+8ZkGYaSrE/O1kEUPwBTAr5OueT8jVKQYUAIVNeDQq r+P4ZuZfJmiPvAFIPUkg6Fli4aVvBy9+/N/44dJQUYnXK22O00VdCGtU18t6fwUX 9UYrVnKmo8H7EQBMXcGuMPgsJLazwSL3yEfWY49rSL8zmEg85KelaBzZTK4M4zaT R8UPGTBNLOAWWVb5AYS46HBHgr/CTME= -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:35 2025 by rpki-client