$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: 3G0dbFFlyC4R5YPCzCGXTET2m/WkugL/PgsBCXNMXGs= Subject key identifier: 5A:CF:2F:C4:C9:30:40:ED:89:8E:25:F2:3A:F4:A8:EC:8F:3E:ED:E9 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0B01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 13B7 Signing time: Sun 02 Nov 2025 19:18:28 +0000 Manifest this update: Sun 02 Nov 2025 19:18:27 +0000 Manifest next update: Sun 09 Nov 2025 19:18:27 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: Ml+1dBncjEwsO6zfZCGQqZYG48iMQwISYkKsSAaZ/5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2817 (0xb01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Nov 2 19:18:27 2025 GMT Not After : Nov 9 19:18:27 2025 GMT Subject: CN=6907ae84-1253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f6:a8:33:d0:02:db:20:90:5c:e3:75:b5:c1: d7:22:fd:e0:eb:90:75:aa:e6:ea:2f:0b:ae:9a:db: ae:73:ab:8f:7e:b4:cf:6a:a6:a6:f1:ae:64:56:21: 0c:ec:1d:9c:d2:f3:d9:88:55:7d:fb:52:30:22:67: 72:69:d8:61:4f:6b:1b:74:10:fe:72:0f:9e:4c:30: 28:d4:84:76:2d:00:bd:b1:bf:95:96:2b:5d:30:57: 41:fa:4f:5d:de:ea:63:7f:ae:26:e4:8f:02:0b:d7: bb:55:59:c3:85:83:b9:b2:e2:84:66:7e:51:6b:4c: 30:22:15:58:2e:da:62:41:5c:39:88:d1:48:4e:00: 9f:33:9c:26:2c:d0:fe:4a:aa:c5:b0:15:b1:0c:e6: 3e:00:a2:5d:fc:3f:92:b0:13:e5:f0:52:de:8f:02: 30:2f:6f:c1:65:82:bf:4f:51:93:79:e4:d7:8d:a0: 2b:05:c8:60:03:6b:0b:2f:27:08:88:df:3b:bb:31: 61:06:cb:e5:70:10:ba:cf:70:fd:45:44:91:d4:e6: c6:6e:91:85:a2:c2:72:e0:79:5b:f1:9b:09:20:9f: 13:53:93:73:b6:1e:b1:74:ce:3e:65:73:35:d1:6a: b8:dc:e4:8d:d0:06:ec:ea:fc:60:d8:4d:21:b7:4f: a8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CF:2F:C4:C9:30:40:ED:89:8E:25:F2:3A:F4:A8:EC:8F:3E:ED:E9 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1d:95:19:7e:3e:46:a5:13:a3:6b:e1:a7:7b:9b:32:d8:08: 6c:15:8a:a9:f5:97:9b:c5:80:74:43:d0:89:3f:b3:f2:48:f2: 00:83:9d:84:27:e7:d9:b2:73:51:c4:4a:df:61:48:3e:5e:c1: d8:43:a2:88:f9:62:c9:1f:b0:54:8c:02:71:2d:37:53:c2:4a: be:30:c7:c5:8d:12:f8:91:e3:65:6a:1a:1a:9b:03:ba:19:24: 36:20:3a:9e:58:eb:14:51:00:9d:5d:e6:29:f1:31:25:4c:78: 40:e9:62:8d:aa:ce:71:ee:ec:cf:a1:45:6e:e4:a6:cb:8d:cb: 1d:5a:fa:32:b6:60:2b:b0:3c:82:64:08:c1:78:c9:d3:e3:ff: 9e:58:a5:2d:97:d1:b5:1e:3a:18:91:22:71:98:a9:e7:64:a0: 56:2d:48:83:ad:4e:9f:5f:e4:ed:f4:18:56:11:ad:40:8b:c5: 0d:bf:67:5a:ef:3c:b1:7d:0d:42:5e:2a:82:20:60:2a:4f:34: 1c:8b:f2:eb:3a:78:3f:60:9b:d7:15:fe:d9:24:a4:e4:c3:97: 0f:1b:4e:59:51:7e:a9:30:c8:7c:ff:49:a8:f6:20:3a:44:0d: 1d:e0:26:15:fc:1a:d6:c5:e5:fb:97:c8:3e:06:c2:e9:65:30: 51:4c:1c:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUxMTAyMTkxODI3WhcNMjUxMTA5MTkxODI3WjAYMRYwFAYD VQQDEw02OTA3YWU4NC0xMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvaoM9AC2yCQXON1tcHXIv3g65B1qubqLwuumtuuc6uPfrTPaqam8a5kViEM 7B2c0vPZiFV9+1IwImdyadhhT2sbdBD+cg+eTDAo1IR2LQC9sb+VlitdMFdB+k9d 3upjf64m5I8CC9e7VVnDhYO5suKEZn5Ra0wwIhVYLtpiQVw5iNFITgCfM5wmLND+ SqrFsBWxDOY+AKJd/D+SsBPl8FLejwIwL2/BZYK/T1GTeeTXjaArBchgA2sLLycI iN87uzFhBsvlcBC6z3D9RUSR1ObGbpGFosJy4Hlb8ZsJIJ8TU5Nzth6xdM4+ZXM1 0Wq43OSN0Abs6vxg2E0ht0+olQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrPL8TJ MEDtiY4l8jr0qOyPPu3pMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXHZUZfj5GpROja+Gne5sy2AhsFYqp9ZebxYB0Q9CJP7PySPIAg52E J+fZsnNRxErfYUg+XsHYQ6KI+WLJH7BUjAJxLTdTwkq+MMfFjRL4keNlahoamwO6 GSQ2IDqeWOsUUQCdXeYp8TElTHhA6WKNqs5x7uzPoUVu5KbLjcsdWvoytmArsDyC ZAjBeMnT4/+eWKUtl9G1HjoYkSJxmKnnZKBWLUiDrU6fX+Tt9BhWEa1Ai8UNv2da 7zyxfQ1CXiqCIGAqTzQci/LrOng/YJvXFf7ZJKTkw5cPG05ZUX6pMMh8/0mo9iA6 RA0d4CYV/BrWxeX7l8g+BsLpZTBRTBwK -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:59 2025 by rpki-client