$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json) Hash identifier: RERUp3ylknQH12zptgly+RyqKpWWmkfDAacYALVm/TI= Subject key identifier: 67:5B:4E:51:FF:D3:0B:0C:56:94:5B:36:81:E1:82:68:B3:3E:C7:8B Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft Manifest number: 3A Signing time: Wed 05 Nov 2025 07:44:07 +0000 Manifest this update: Wed 05 Nov 2025 07:44:07 +0000 Manifest next update: Wed 12 Nov 2025 07:44:07 +0000 Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: 9PiWnzEEIRssRKb7jI8dFIvC+abwAHvvrSCi1/BwCo8=) 2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: YXoQ9r4tej6CnG1FdK26UeZMqNkqakqvZSbUkeab5Z8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Nov 5 07:44:07 2025 GMT Not After : Nov 12 07:44:07 2025 GMT Subject: CN=690b0047-f83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9b:dd:34:2f:0b:b0:25:a9:c2:e2:39:b8:f5: 15:2a:0a:0e:9f:ae:ad:11:e3:90:4d:0b:b9:8f:c7: 67:cc:99:30:3a:7c:58:e7:8b:d3:68:98:0b:af:30: 51:c1:43:7b:34:ee:5a:58:40:32:1b:89:57:f4:92: d8:7e:ac:a3:f8:92:58:6f:02:57:bc:22:22:c8:c2: 87:7a:d1:32:f9:f5:3e:68:5a:ce:1e:fb:38:22:b8: c2:39:77:23:97:a3:86:62:9c:6f:a5:9d:51:ad:4d: ad:58:43:25:2e:ce:e2:58:63:7f:c9:2d:ea:2a:2e: 7a:b6:e3:1e:90:08:82:3c:d6:41:59:3f:9f:55:89: 39:e0:fb:d9:de:61:d6:e3:46:47:91:bf:4d:b3:6a: 74:a6:df:02:96:f2:6d:35:02:50:ed:6d:a3:93:7c: 0f:cd:b9:f1:f6:37:e0:af:20:f0:4b:9c:51:bc:2b: 3c:71:8a:a9:9a:c6:c5:b9:42:14:7b:5d:6b:95:7c: 8a:1e:c4:6b:71:98:f0:b3:38:bf:85:52:c1:ec:43: 70:1b:a1:4d:77:a0:b3:3d:e2:72:ef:27:02:dc:2f: a3:22:52:36:9a:c8:85:73:ab:77:72:c3:55:fd:48: 44:5f:17:a0:08:a3:fe:43:43:e1:34:6d:61:83:6b: b6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5B:4E:51:FF:D3:0B:0C:56:94:5B:36:81:E1:82:68:B3:3E:C7:8B X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:cc:55:e9:d1:97:89:29:9c:46:b2:32:e9:92:83:62:81:3b: 80:e3:e6:eb:77:d8:87:1f:2b:37:45:80:5e:d1:5c:35:e4:d6: ac:eb:94:37:48:91:15:e8:2f:27:0e:6a:a4:be:6c:a4:20:10: ac:0b:ec:be:68:47:56:04:7e:ba:7f:21:78:2a:8e:a2:6c:ff: f2:6c:2b:9c:8c:f4:af:ec:d6:aa:38:a4:2f:d7:5c:8a:3d:d8: 1b:a8:1a:cf:4a:69:d4:b1:26:7e:d8:6c:9e:bf:a9:ce:d3:8b: a3:59:a8:a9:fc:da:7e:31:39:45:9b:36:aa:b4:b5:b7:e1:35: 3d:b7:16:f7:51:8a:5d:fa:81:2f:c7:ab:27:57:37:c2:e9:e6: e1:c4:a6:3d:6b:37:52:49:31:dc:19:fd:c2:5d:82:b5:fd:a6: 85:82:c6:ca:69:fd:c0:71:d2:e9:87:02:eb:a7:3a:08:9c:fc: 62:f6:1a:6e:38:fd:a9:2f:df:47:d7:9b:8f:37:2d:e3:38:67: 44:6b:f2:26:b4:1c:73:ec:18:df:83:8f:4e:b5:16:74:44:79: 30:c5:8b:89:97:98:87:a3:6a:bc:e8:95:18:ec:6a:01:6f:bf: 79:32:02:53:e9:ea:3f:5e:10:05:db:5f:b6:5f:40:e8:b1:b2: 73:b6:bb:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNTExMDUwNzQ0MDdaFw0yNTExMTIwNzQ0MDdaMBgxFjAUBgNV BAMTDTY5MGIwMDQ3LWY4M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMm900LwuwJanC4jm49RUqCg6frq0R45BNC7mPx2fMmTA6fFjni9NomAuvMFHB Q3s07lpYQDIbiVf0kth+rKP4klhvAle8IiLIwod60TL59T5oWs4e+zgiuMI5dyOX o4ZinG+lnVGtTa1YQyUuzuJYY3/JLeoqLnq24x6QCII81kFZP59ViTng+9neYdbj RkeRv02zanSm3wKW8m01AlDtbaOTfA/NufH2N+CvIPBLnFG8KzxxiqmaxsW5QhR7 XWuVfIoexGtxmPCzOL+FUsHsQ3AboU13oLM94nLvJwLcL6MiUjaayIVzq3dyw1X9 SERfF6AIo/5DQ+E0bWGDa7apAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ1tOUf/T CwxWlFs2geGCaLM+x4swHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD RTFEL0I1NDhEQkUyNjJERjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEz ODBGUms4UTFDc1RCaVVYWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIrMVenRl4kpnEayMumSg2KBO4Dj5ut32IcfKzdFgF7RXDXk1qzrlDdI kRXoLycOaqS+bKQgEKwL7L5oR1YEfrp/IXgqjqJs//JsK5yM9K/s1qo4pC/XXIo9 2BuoGs9KadSxJn7YbJ6/qc7Ti6NZqKn82n4xOUWbNqq0tbfhNT23FvdRil36gS/H qydXN8Lp5uHEpj1rN1JJMdwZ/cJdgrX9poWCxspp/cBx0umHAuunOgic/GL2Gm44 /akv30fXm483LeM4Z0Rr8ia0HHPsGN+Dj061FnREeTDFi4mXmIejarzolRjsagFv v3kyAlPp6j9eEAXbX7ZfQOixsnO2u3U= -----END CERTIFICATE-----Generated at Wed Nov 5 19:50:11 2025 by rpki-client