$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: OcXIBCUs2hbv3mmRxDTwUl1C8+Kkei2Yj8CGonmbTEs= Subject key identifier: B4:82:85:77:C6:B4:AC:7C:91:02:21:A8:51:34:E0:D8:8E:BA:A9:6E Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 6E Signing time: Mon 03 Nov 2025 06:55:50 +0000 Manifest this update: Mon 03 Nov 2025 06:55:50 +0000 Manifest next update: Mon 10 Nov 2025 06:55:50 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: ZXQflZ/N9fbzvGlkuIgGZlEfWa1d1LaFCeWcddgYtYc=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Nov 3 06:55:50 2025 GMT Not After : Nov 10 06:55:50 2025 GMT Subject: CN=690851f6-e0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:82:85:2d:bc:1e:2a:4b:ce:59:d1:8c:8f:8c: 54:10:6e:c3:68:6b:c9:9d:24:bf:96:9a:c2:04:fe: ed:6d:c3:7e:85:be:58:eb:ad:de:c8:91:6e:98:f0: 40:6e:25:57:1e:45:3a:81:e7:62:3f:b7:a1:eb:bf: dd:38:8a:35:41:ae:38:92:83:38:01:bb:e8:3c:2b: bb:73:1a:92:c2:d4:42:da:8e:be:8e:18:86:4b:e8: 50:39:af:54:18:44:da:b1:9e:a4:46:52:74:0a:64: 86:58:73:3a:27:24:c2:b3:9c:8c:cf:7c:87:7e:84: 18:e3:2d:79:b2:19:a0:94:49:6e:52:c3:d3:6f:9f: 00:75:56:a7:c2:8a:e2:e8:0d:ed:b6:b5:bb:fc:dd: c9:f1:1f:b5:a6:e5:e4:08:67:ea:2d:a0:5c:b2:3a: 53:2b:20:b2:fe:7a:a8:05:0b:67:30:7b:4a:73:31: 1c:18:9e:47:94:39:6b:36:70:a7:7b:d3:81:8c:37: 16:76:75:82:b5:6c:38:e0:10:5d:76:b0:07:a2:d7: 2f:54:d6:3f:73:56:79:77:27:79:10:f1:f1:ef:43: aa:2f:c6:72:af:c3:28:53:da:d4:e1:07:99:0d:25: 41:b8:8b:01:65:55:59:3a:a1:57:d4:7e:ed:83:c4: a9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:82:85:77:C6:B4:AC:7C:91:02:21:A8:51:34:E0:D8:8E:BA:A9:6E X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b7:e4:29:ab:b2:03:78:65:33:39:af:a6:72:f8:5b:01:4d: b8:3e:9a:21:b6:83:64:76:c6:99:e0:ea:8d:c7:49:3d:ba:95: 69:f2:d3:ac:6b:40:70:1e:b4:61:22:b5:41:1f:f0:38:1c:36: 45:62:fb:b6:2b:71:50:0f:d4:f2:02:7c:e7:0b:ad:40:ba:52: 9e:56:f6:a5:22:bd:f5:73:51:ff:1a:7b:9f:2c:c9:3b:fd:6c: 38:3d:5e:57:3c:54:17:0d:a5:cc:a1:dc:94:fa:f2:cc:d9:a9: 02:0b:d0:ee:b9:95:21:07:e3:d5:f1:c7:1e:6f:71:b7:cf:0f: d3:19:cd:e7:89:66:68:17:da:2f:c2:b3:38:34:2a:b6:14:11: 1d:e0:07:28:fd:71:6a:96:1c:3e:d3:c9:df:1b:66:e8:e5:6b: 28:21:a0:49:1c:70:e3:2e:04:26:6f:dd:b3:00:3a:ac:bb:8b: 04:ff:ef:e1:7b:88:f1:86:24:d1:a2:e9:f2:85:1e:cd:c0:ed: 72:c1:ba:57:87:27:27:ae:aa:2f:2b:6e:64:d8:2a:76:a2:23: a2:12:ec:42:b8:0f:3d:87:3c:30:9a:8b:fa:74:5d:59:8d:ec: a0:80:45:9a:53:58:6e:9d:0f:b0:99:1a:0d:e0:ba:be:b3:7b: 3f:a6:f2:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTExMDMwNjU1NTBaFw0yNTExMTAwNjU1NTBaMBgxFjAUBgNV BAMTDTY5MDg1MWY2LWUwYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRgoUtvB4qS85Z0YyPjFQQbsNoa8mdJL+WmsIE/u1tw36Fvljrrd7IkW6Y8EBu JVceRTqB52I/t6Hrv904ijVBrjiSgzgBu+g8K7tzGpLC1ELajr6OGIZL6FA5r1QY RNqxnqRGUnQKZIZYczonJMKznIzPfId+hBjjLXmyGaCUSW5Sw9NvnwB1VqfCiuLo De22tbv83cnxH7Wm5eQIZ+otoFyyOlMrILL+eqgFC2cwe0pzMRwYnkeUOWs2cKd7 04GMNxZ2dYK1bDjgEF12sAei1y9U1j9zVnl3J3kQ8fHvQ6ovxnKvwyhT2tThB5kN JUG4iwFlVVk6oVfUfu2DxKl9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtIKFd8a0 rHyRAiGoUTTg2I66qW4wHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE635CmrsgN4ZTM5r6Zy+FsBTbg+miG2g2R2xpng6o3HST26lWny06xr QHAetGEitUEf8DgcNkVi+7YrcVAP1PICfOcLrUC6Up5W9qUivfVzUf8ae58syTv9 bDg9Xlc8VBcNpcyh3JT68szZqQIL0O65lSEH49Xxxx5vcbfPD9MZzeeJZmgX2i/C szg0KrYUER3gByj9cWqWHD7Tyd8bZujlayghoEkccOMuBCZv3bMAOqy7iwT/7+F7 iPGGJNGi6fKFHs3A7XLBuleHJyeuqi8rbmTYKnaiI6IS7EK4Dz2HPDCai/p0XVmN 7KCARZpTWG6dD7CZGg3gur6zez+m8hw= -----END CERTIFICATE-----Generated at Wed Nov 5 07:53:04 2025 by rpki-client