$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: D2Qsgs65xZ5cXTfs+stSXujyWNWYsO40PdIXMp4/YFc= Subject key identifier: B8:A9:62:CB:2E:ED:7C:D8:82:0C:81:55:B1:C9:06:3C:38:61:E5:A3 Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 32 Signing time: Fri 17 Oct 2025 11:25:10 +0000 Manifest this update: Fri 17 Oct 2025 11:25:10 +0000 Manifest next update: Fri 24 Oct 2025 11:25:10 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: /GlU/pqNuNQ2rGbRoaKq4J68TM+YQjkfKS/jzrDcCkE=) 2: CD603AAA6B2B11F0B21D7F0EC4F9AE02.roa (hash: I4V72owrg5qiCod5LgKXA3su1gxxiAdnYcB+BZWhJ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Oct 17 11:25:10 2025 GMT Not After : Oct 24 11:25:10 2025 GMT Subject: CN=68f22796-c704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:aa:03:90:c0:b1:0f:d3:03:0a:b5:fb:ff: 63:11:a6:f6:d5:6e:d8:4e:1f:eb:e0:a2:17:9b:7d: 0c:53:71:68:2d:b3:f0:0c:bf:35:2b:f2:e7:ae:8c: cf:a8:e1:1a:78:39:ea:da:d0:d5:44:c8:39:4f:e0: 04:76:91:2f:de:7f:d2:1a:99:cd:8f:a4:16:ec:b8: 99:38:fd:27:8a:d3:31:c2:a9:18:8b:0a:21:d6:87: b4:84:13:6f:a8:dc:9b:8b:78:f0:a6:fe:70:63:32: 09:c1:9a:26:7a:6b:18:0d:30:a3:6a:43:dd:b9:2c: b9:98:47:1b:72:4e:d6:9c:e1:18:84:b7:73:9b:37: 22:3e:67:3b:3e:2f:ea:e3:15:ad:d0:58:88:74:7e: 96:05:ec:28:a7:68:c5:0f:5a:c4:6a:32:06:3e:75: 01:3e:e3:c9:b7:d4:60:de:c9:c6:1c:b2:f0:f5:dd: 10:22:e1:27:d9:7c:54:11:f1:83:80:f7:60:9c:ab: 9e:a6:f6:9a:61:6e:22:e0:7d:94:1f:63:68:b2:d3: 7d:36:1d:76:b4:6f:77:8e:dc:4a:3c:95:68:00:7e: 08:c8:89:68:df:bc:13:41:60:cc:03:43:5e:ab:c1: 1b:2e:44:8d:a0:58:58:96:c5:68:42:c9:d2:39:95: f7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A9:62:CB:2E:ED:7C:D8:82:0C:81:55:B1:C9:06:3C:38:61:E5:A3 X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:a4:b0:ef:53:f7:74:c7:28:28:7b:11:09:b9:84:98:10:54: bb:09:34:a2:ac:d2:e0:13:9f:fd:b0:8f:5a:8f:56:77:20:59: bc:dd:dc:a7:91:45:74:cb:57:fe:1c:04:4b:60:c2:de:e3:78: 90:3d:29:a6:e1:fa:00:6f:88:71:c6:fa:6d:57:16:0c:83:91: 74:ae:38:cb:8f:44:24:a4:d7:2b:88:bc:6b:1d:af:86:26:22: 7d:80:cb:2f:ea:f1:a3:27:c3:11:ba:ff:29:5b:b4:4d:e6:ae: 54:c2:db:62:f4:6c:94:02:c9:fe:0c:d5:a0:2f:77:a5:59:d0: 5d:78:c5:1c:e9:91:d0:b8:98:62:f1:40:61:c1:50:27:bb:1a: 79:8e:1e:67:51:24:b6:79:2f:c3:39:95:71:2b:02:ce:fc:6d: 17:3f:cd:c3:31:f3:76:c8:df:4d:eb:d5:2e:b7:63:5c:1e:3b: 51:86:99:6c:c8:39:e9:f8:6d:e8:54:30:3b:67:df:e5:ef:2c: 8c:d1:1c:db:c5:fa:6c:ea:b5:2d:29:ff:7e:26:a5:86:50:83: 5d:7d:0d:5b:66:f2:f8:9d:5a:97:b2:27:49:24:46:2e:1d:7b: 89:11:03:8b:a9:b8:e4:63:be:58:f4:83:2e:52:6c:92:30:9a: 82:2b:c2:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjVDMzExMC8GA1UEBRMoOUVCREExMjNEOUVFODMwOTQzMDVBMTE4MEMyQTA4MDU3 RkU1NDA2QTAeFw0yNTEwMTcxMTI1MTBaFw0yNTEwMjQxMTI1MTBaMBgxFjAUBgNV BAMTDTY4ZjIyNzk2LWM3MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5SKoDkMCxD9MDCrX7/2MRpvbVbthOH+vgohebfQxTcWgts/AMvzUr8ueujM+o 4Rp4Oera0NVEyDlP4AR2kS/ef9Iamc2PpBbsuJk4/SeK0zHCqRiLCiHWh7SEE2+o 3JuLePCm/nBjMgnBmiZ6axgNMKNqQ925LLmYRxtyTtac4RiEt3ObNyI+Zzs+L+rj Fa3QWIh0fpYF7CinaMUPWsRqMgY+dQE+48m31GDeycYcsvD13RAi4SfZfFQR8YOA 92Ccq56m9pphbiLgfZQfY2iy0302HXa0b3eO3Eo8lWgAfgjIiWjfvBNBYMwDQ16r wRsuRI2gWFiWxWhCydI5lfdBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuKliyy7t fNiCDIFVsckGPDhh5aMwHwYDVR0jBBgwFoAUnr2hI9nugwlDBaEYDCoIBX/lQGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNUMzLzIzMjZDNjNFNjYw NDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbnIyaEk5bnVnd2xEQmFFWURDb0lCWF9sUUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy NUMzLzIzMjZDNjNFNjYwNDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3ds REJhRVlEQ29JQlhfbFFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAiksO9T93THKCh7EQm5hJgQVLsJNKKs0uATn/2wj1qPVncgWbzd3KeR RXTLV/4cBEtgwt7jeJA9Kabh+gBviHHG+m1XFgyDkXSuOMuPRCSk1yuIvGsdr4Ym In2Ayy/q8aMnwxG6/ylbtE3mrlTC22L0bJQCyf4M1aAvd6VZ0F14xRzpkdC4mGLx QGHBUCe7GnmOHmdRJLZ5L8M5lXErAs78bRc/zcMx83bI303r1S63Y1weO1GGmWzI Oen4behUMDtn3+XvLIzRHNvF+mzqtS0p/34mpYZQg119DVtm8vidWpeyJ0kkRi4d e4kRA4upuORjvlj0gy5SbJIwmoIrwuE= -----END CERTIFICATE-----Generated at Sat Oct 18 23:32:50 2025 by rpki-client