$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: zwWNIQr0mJ/sGRRfP1dlb/YD+XopT8YkSxs09BcG0bo= Subject key identifier: 7C:3E:BC:3C:6E:5C:D7:A9:05:79:28:84:D8:D2:BF:71:0C:CA:88:BC Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 0689 Signing time: Sun 02 Nov 2025 22:24:56 +0000 Manifest this update: Sun 02 Nov 2025 22:24:55 +0000 Manifest next update: Sun 09 Nov 2025 22:24:55 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: gzsaeSPqxqysCWJo4wr2D73E0QE/l/bhXpwtYSSrs7w=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Nov 2 22:24:55 2025 GMT Not After : Nov 9 22:24:55 2025 GMT Subject: CN=6907da37-647b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:49:65:f9:d4:b4:26:03:3f:39:8c:3e:dd:e3: 7a:0a:3a:5c:36:0c:d0:a1:49:db:5f:f4:89:da:1d: a1:0a:37:b7:45:b1:0c:84:8c:d3:4e:e2:45:36:14: 99:d8:5e:51:1b:7d:24:0d:f5:44:6d:21:7d:1b:27: 31:14:da:7a:c6:a5:23:41:2f:52:0d:32:3c:13:60: e4:3c:23:ac:e2:e2:fa:9d:7a:27:86:e8:b7:8d:4a: 2c:38:d2:05:63:ed:de:76:e2:26:7f:e5:12:10:ec: 24:5e:68:75:e6:dc:71:20:f1:b3:61:b5:1c:82:09: ae:4f:dc:d8:8b:48:2d:25:63:08:af:36:3f:d5:15: e7:47:e4:5d:5a:28:2f:9b:3d:82:6b:b3:b1:4c:b1: cf:5a:3b:34:18:31:cf:15:d2:c8:7c:ff:15:ac:83: 03:4e:1e:31:d8:43:54:cc:70:57:5a:87:48:96:d6: 08:1c:1b:41:7e:e5:6f:7f:6b:da:0a:30:cb:8f:23: 8e:fd:bb:5d:33:5d:a8:e5:d1:e1:3c:a5:37:95:f7: 78:f0:a3:f2:55:06:ce:af:62:ed:16:b4:f4:08:d9: 3a:30:6d:92:98:84:0d:34:35:2e:c4:d2:5d:71:71: 7e:fa:1b:42:b8:d8:cc:70:c1:0e:ba:8a:1c:d0:38: 1b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3E:BC:3C:6E:5C:D7:A9:05:79:28:84:D8:D2:BF:71:0C:CA:88:BC X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0d:d6:fa:9f:86:f5:a7:0a:2c:65:1c:0c:96:e7:02:0a:7e: 0d:ca:cb:42:be:aa:38:2a:49:11:d1:11:2c:36:84:40:29:ed: 2f:8c:40:84:4c:2c:78:67:30:ae:88:e7:fd:be:e9:6a:06:64: d4:70:d2:6d:14:d6:8a:3e:9d:20:a8:40:c2:29:b8:e7:f9:e6: ef:8c:55:79:d1:a0:79:eb:49:de:b5:8c:a4:96:27:64:e3:8e: 2f:2d:01:7c:ed:8a:e3:53:1c:6a:16:95:94:45:39:42:70:9f: b6:d9:9a:c3:a6:b3:f6:f1:32:bd:10:ea:a3:0f:26:77:a0:b9: 78:0f:ba:f8:90:ca:3e:d7:25:27:f3:83:c4:99:3f:d3:3e:37: 15:1f:11:21:a9:3e:d7:77:c9:6e:da:31:7d:b8:b8:06:11:fb: 1f:4e:11:64:5b:40:80:fe:b6:1e:5d:d8:3e:b2:89:87:55:5a: 47:4a:24:e4:e8:07:46:d3:f7:5e:b9:fe:0a:00:ad:32:f6:c8: 2e:1e:dc:6c:eb:c5:d3:00:19:43:e7:58:96:c1:5d:f2:f1:e7: 51:a2:13:54:25:14:f8:0a:8b:1f:19:74:15:cf:ed:ea:ac:28: f7:f1:01:a3:d5:bf:7c:1b:99:90:a2:b9:33:11:a0:af:3a:bc: fe:22:cd:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUxMTAyMjIyNDU1WhcNMjUxMTA5MjIyNDU1WjAYMRYwFAYD VQQDEw02OTA3ZGEzNy02NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0ll+dS0JgM/OYw+3eN6CjpcNgzQoUnbX/SJ2h2hCje3RbEMhIzTTuJFNhSZ 2F5RG30kDfVEbSF9GycxFNp6xqUjQS9SDTI8E2DkPCOs4uL6nXonhui3jUosONIF Y+3eduImf+USEOwkXmh15txxIPGzYbUcggmuT9zYi0gtJWMIrzY/1RXnR+RdWigv mz2Ca7OxTLHPWjs0GDHPFdLIfP8VrIMDTh4x2ENUzHBXWodIltYIHBtBfuVvf2va CjDLjyOO/btdM12o5dHhPKU3lfd48KPyVQbOr2LtFrT0CNk6MG2SmIQNNDUuxNJd cXF++htCuNjMcMEOuooc0DgbwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw+vDxu XNepBXkohNjSv3EMyoi8MB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Ddb6n4b1pwosZRwMlucCCn4NystCvqo4KkkR0REsNoRAKe0vjECE TCx4ZzCuiOf9vulqBmTUcNJtFNaKPp0gqEDCKbjn+ebvjFV50aB560netYyklidk 444vLQF87YrjUxxqFpWURTlCcJ+22ZrDprP28TK9EOqjDyZ3oLl4D7r4kMo+1yUn 84PEmT/TPjcVHxEhqT7Xd8lu2jF9uLgGEfsfThFkW0CA/rYeXdg+somHVVpHSiTk 6AdG0/deuf4KAK0y9sguHtxs68XTABlD51iWwV3y8edRohNUJRT4CosfGXQVz+3q rCj38QGj1b98G5mQorkzEaCvOrz+Is1r -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:32 2025 by rpki-client