$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft File: nczQgPBy3iTvhCxqopJJnvE2m_Q.mft (raw, json) Hash identifier: XMqB8KilTLmaxg9OQ+D2T0bIAW86zIpnxFbAVVQenUU= Subject key identifier: 28:1E:8A:C5:2C:21:11:1D:48:7A:7E:86:03:E3:BA:D5:ED:10:04:65 Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft Manifest number: 9A Signing time: Wed 05 Nov 2025 06:37:59 +0000 Manifest this update: Wed 05 Nov 2025 06:37:58 +0000 Manifest next update: Wed 12 Nov 2025 06:37:58 +0000 Files and hashes: 1: nczQgPBy3iTvhCxqopJJnvE2m_Q.crl (hash: pDvZCMk6ax5T2wjU64erZYHnCeNr19gxV6ds8xZRmKU=) 2: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (hash: 759eVfeplnxkWNaLr3cFwL2y/eV2CJBpdnC5ec+BIG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: Nov 5 06:37:58 2025 GMT Not After : Nov 12 06:37:58 2025 GMT Subject: CN=690af0c7-7266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:97:e9:1b:d6:40:f2:fb:22:25:ca:b0:15:9a: b9:74:4e:dd:73:91:5b:3e:9f:41:6d:35:88:a3:78: be:67:01:ea:a9:26:19:d2:37:36:6a:cf:bf:c1:e8: 9f:10:8a:fa:4f:36:e7:d9:77:4c:4c:6f:1a:61:55: d2:25:10:93:78:57:46:cf:dd:59:ea:87:50:5b:5d: 3c:f5:ae:fe:77:f5:7e:3e:12:31:5a:f4:a7:ca:3d: 47:0a:59:e3:7d:8e:a0:c3:88:ad:50:f9:94:74:59: 0d:12:d6:c3:99:59:69:ad:85:b8:0a:9f:b0:3d:8e: f9:c7:68:57:e5:49:05:0d:79:85:9d:4d:85:57:bd: a8:4a:12:4d:51:49:95:6f:0e:45:4f:e6:df:43:a4: af:ed:ce:a5:5d:5f:41:25:21:a2:6a:6f:c7:65:37: 5c:c2:28:5c:41:a3:68:fd:80:19:fa:0a:75:88:0e: 39:67:7a:18:eb:8b:fc:d0:fe:a2:db:c8:87:02:f0: b3:bd:1e:c1:09:9f:d6:33:dc:45:7c:fd:fe:8d:f1: e2:4f:48:d1:98:a0:a8:01:cc:53:12:60:41:e5:a2: ce:d6:e1:37:db:70:92:19:c9:33:3e:de:cd:c5:b9: a7:9e:1e:7a:24:e0:ff:6b:02:0a:9d:a8:90:d1:ca: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1E:8A:C5:2C:21:11:1D:48:7A:7E:86:03:E3:BA:D5:ED:10:04:65 X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:55:55:99:65:a1:36:a2:25:ae:a6:ad:ec:00:7f:5b:4f:54: 22:66:ff:29:30:07:7c:9c:31:ae:e1:59:e0:97:39:ac:fc:e8: 85:1a:a7:b1:a0:a9:54:7c:60:7c:95:2e:4b:a8:61:a6:31:1f: e7:86:04:a3:33:31:36:ce:59:dc:ee:61:e8:13:35:02:c8:85: e6:1f:62:f2:cf:fb:d2:66:8b:86:bf:83:79:5a:a7:ba:69:ec: 16:2b:35:e2:6e:90:a7:17:ee:b2:b7:ba:c3:60:17:b6:f4:5e: 5d:df:76:a8:74:70:2c:f4:18:0a:fa:22:7a:f8:f1:ad:63:66: cd:87:d3:46:ba:4a:e8:c2:87:bb:3b:4a:6b:bb:87:3a:db:fc: a3:23:6c:63:63:e8:34:f3:58:fd:24:2f:1e:69:27:06:ca:55: 33:8e:53:ce:35:d9:6f:81:94:d3:50:85:d9:55:f1:4e:2d:ad: ca:45:1b:7c:fd:c9:3c:2f:60:4e:c7:e7:41:cc:a6:31:3b:45: 7f:8b:09:ba:d5:87:04:96:5a:3b:34:0a:04:8b:54:91:01:20: 64:e8:39:c4:cf:51:1e:ed:ca:9d:0d:5a:15:d7:f6:2f:ce:a6: 6d:fc:19:90:1d:fa:e2:c2:cb:d0:fc:5f:fd:e3:97:72:ce:ac: 25:2d:69:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MDQxMTAvBgNVBAUTKDlEQ0NEMDgwRjA3MkRFMjRFRjg0MkM2QUEyOTI0OTlF RjEzNjlCRjQwHhcNMjUxMTA1MDYzNzU4WhcNMjUxMTEyMDYzNzU4WjAYMRYwFAYD VQQDEw02OTBhZjBjNy03MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+pfpG9ZA8vsiJcqwFZq5dE7dc5FbPp9BbTWIo3i+ZwHqqSYZ0jc2as+/weif EIr6Tzbn2XdMTG8aYVXSJRCTeFdGz91Z6odQW1089a7+d/V+PhIxWvSnyj1HClnj fY6gw4itUPmUdFkNEtbDmVlprYW4Cp+wPY75x2hX5UkFDXmFnU2FV72oShJNUUmV bw5FT+bfQ6Sv7c6lXV9BJSGiam/HZTdcwihcQaNo/YAZ+gp1iA45Z3oY64v80P6i 28iHAvCzvR7BCZ/WM9xFfP3+jfHiT0jRmKCoAcxTEmBB5aLO1uE323CSGckzPt7N xbmnnh56JOD/awIKnaiQ0cpQDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgeisUs IREdSHp+hgPjutXtEARlMB8GA1UdIwQYMBaAFJ3M0IDwct4k74QsaqKSSZ7xNpv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUwNC8zMjFCQzQ4Q0Qz QUIxMUVGOEVCRDBDMkJDNEY5QUUwMi9uY3pRZ1BCeTNpVHZoQ3hxb3BKSm52RTJt X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUwNC8zMjFCQzQ4Q0QzQUIxMUVGOEVCRDBDMkJDNEY5QUUwMi9uY3pRZ1BCeTNp VHZoQ3hxb3BKSm52RTJtX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJVVWZZaE2oiWupq3sAH9bT1QiZv8pMAd8nDGu4Vnglzms/OiFGqex oKlUfGB8lS5LqGGmMR/nhgSjMzE2zlnc7mHoEzUCyIXmH2Lyz/vSZouGv4N5Wqe6 aewWKzXibpCnF+6yt7rDYBe29F5d33aodHAs9BgK+iJ6+PGtY2bNh9NGukrowoe7 O0pru4c62/yjI2xjY+g081j9JC8eaScGylUzjlPONdlvgZTTUIXZVfFOLa3KRRt8 /ck8L2BOx+dBzKYxO0V/iwm61YcEllo7NAoEi1SRASBk6DnEz1Ee7cqdDVoV1/Yv zqZt/BmQHfriwsvQ/F/945dyzqwlLWlI -----END CERTIFICATE-----Generated at Wed Nov 5 12:03:42 2025 by rpki-client