$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: fWrcqmSAKt5cUqMMvaID6ycChg4XzRn2P+r8+4RZt/Y= Subject key identifier: 6F:C7:CB:5E:6E:43:EB:13:5A:ED:91:C0:A5:AB:81:99:1A:E0:51:A8 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0794 Signing time: Sun 02 Nov 2025 21:27:53 +0000 Manifest this update: Sun 02 Nov 2025 21:27:53 +0000 Manifest next update: Sun 09 Nov 2025 21:27:53 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: Mv3i4kfPvC8Hkw+PjSLKkM+6X1bmVRbnmqwKQJRKbkQ=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Nov 2 21:27:53 2025 GMT Not After : Nov 9 21:27:53 2025 GMT Subject: CN=6907ccd9-406e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:fd:1b:b0:42:6d:99:a0:99:66:f9:57:b6: 49:a7:0d:0d:22:53:43:a7:e5:c8:74:a1:99:d4:a7: ec:17:5b:ea:1d:da:79:16:8d:c2:ad:a3:6d:a3:3f: b5:80:30:53:04:8a:b6:10:3e:29:5a:7e:e2:44:6c: 13:99:2a:cc:97:52:fe:99:e7:f4:1f:ed:7f:b4:f1: ca:2a:e6:57:83:ab:e7:b5:1b:3a:bb:20:73:f7:98: 06:7b:67:40:79:74:18:a5:8f:95:c3:9d:86:ed:17: 5c:e3:ce:1d:9d:62:2c:cf:b3:03:be:e5:9c:be:8f: d8:48:27:f5:c3:3d:fa:1f:41:c9:80:af:6c:20:92: 4d:d2:10:49:c8:c7:6b:af:18:37:74:1f:9c:43:1a: 6f:4b:5a:aa:cc:9d:b3:ff:f7:f3:02:98:eb:0f:ae: 0b:16:8b:2a:8e:33:1d:68:9c:95:47:3e:84:5f:fe: da:de:a6:9d:de:9e:cd:11:11:df:dd:cb:ea:dd:30: 5c:7f:cf:cd:ed:ce:f3:8d:8d:7a:7d:6d:bc:71:c9: 26:7b:cb:8f:e7:da:aa:0c:53:fa:df:84:a8:46:a6: ea:17:9d:9e:e4:1d:fc:70:11:98:78:63:7f:ea:c3: a7:22:27:9d:d3:2c:45:7b:3b:da:76:99:ac:f5:44: f3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C7:CB:5E:6E:43:EB:13:5A:ED:91:C0:A5:AB:81:99:1A:E0:51:A8 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ac:68:29:c1:5a:75:9b:d5:7e:ed:f1:fe:28:a8:c4:e4:ef: f3:76:36:66:fe:7c:ee:f9:bc:25:ab:18:a4:65:1c:3e:98:96: 94:5c:6f:be:15:21:f1:a9:fa:f4:06:32:8a:84:5d:9d:3b:d7: cd:c0:af:f5:15:0e:c1:22:2a:e1:8c:45:30:96:cd:01:df:2d: eb:cd:a2:58:05:b2:d1:6f:05:32:26:ce:16:76:9c:9f:a0:75: 2c:60:7c:1a:f2:69:74:2d:53:d1:32:f0:5d:b7:00:6e:b4:e8: c7:2b:57:2c:ed:b0:3f:93:c3:4b:ca:35:e3:33:1d:16:4a:14: 3c:7f:5b:53:db:e1:79:0a:d5:01:a4:f5:8b:3d:a7:6f:3d:34: 0b:50:8c:7f:65:56:50:3e:39:78:21:ca:cd:01:0a:a6:61:49: 2d:85:78:72:24:a1:22:8f:19:ea:af:e2:dd:28:07:29:54:1d: 38:06:90:b8:9b:72:ec:65:24:c1:d6:c9:11:03:c8:2c:1f:bc: 2f:12:af:b1:62:c8:37:20:b6:f9:02:be:0c:13:eb:bc:ac:08: d3:b3:a3:d8:1f:56:ad:ac:21:67:64:8f:b7:40:67:09:1a:12: 94:49:d2:3f:a3:0d:ae:79:36:2c:f6:39:33:83:3d:7d:fa:7c: 7a:ad:f7:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUxMTAyMjEyNzUzWhcNMjUxMTA5MjEyNzUzWjAYMRYwFAYD VQQDEw02OTA3Y2NkOS00MDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7D9G7BCbZmgmWb5V7ZJpw0NIlNDp+XIdKGZ1KfsF1vqHdp5Fo3CraNtoz+1 gDBTBIq2ED4pWn7iRGwTmSrMl1L+mef0H+1/tPHKKuZXg6vntRs6uyBz95gGe2dA eXQYpY+Vw52G7Rdc484dnWIsz7MDvuWcvo/YSCf1wz36H0HJgK9sIJJN0hBJyMdr rxg3dB+cQxpvS1qqzJ2z//fzApjrD64LFosqjjMdaJyVRz6EX/7a3qad3p7NERHf 3cvq3TBcf8/N7c7zjY16fW28cckme8uP59qqDFP634SoRqbqF52e5B38cBGYeGN/ 6sOnIied0yxFezvadpms9UTz/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/Hy15u Q+sTWu2RwKWrgZka4FGoMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCrGgpwVp1m9V+7fH+KKjE5O/zdjZm/nzu+bwlqxikZRw+mJaUXG++ FSHxqfr0BjKKhF2dO9fNwK/1FQ7BIirhjEUwls0B3y3rzaJYBbLRbwUyJs4Wdpyf oHUsYHwa8ml0LVPRMvBdtwButOjHK1cs7bA/k8NLyjXjMx0WShQ8f1tT2+F5CtUB pPWLPadvPTQLUIx/ZVZQPjl4IcrNAQqmYUkthXhyJKEijxnqr+LdKAcpVB04BpC4 m3LsZSTB1skRA8gsH7wvEq+xYsg3ILb5Ar4ME+u8rAjTs6PYH1atrCFnZI+3QGcJ GhKUSdI/ow2ueTYs9jkzgz19+nx6rfcF -----END CERTIFICATE-----Generated at Tue Nov 4 07:22:35 2025 by rpki-client