$ rpki-client -vvf rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft File: NEp3XiRcztCAx5UhWW4yyPBtiMg.mft (raw, json) Hash identifier: 9bP0lrtl0uDx9eDwZnb2Mb8VKeqLr8vpckXxkLNX2Fs= Subject key identifier: C5:93:09:FD:14:0D:FB:BD:14:AE:51:B6:F3:6D:47:EE:5F:ED:72:B3 Authority key identifier: 34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 Certificate issuer: /CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Certificate serial: 17F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft Manifest number: 17E0 Signing time: Sun 02 Nov 2025 16:33:46 +0000 Manifest this update: Sun 02 Nov 2025 16:33:45 +0000 Manifest next update: Sun 09 Nov 2025 16:33:45 +0000 Files and hashes: 1: NEp3XiRcztCAx5UhWW4yyPBtiMg.crl (hash: 6xgZiFODRbg0kxvye8/WceCZhYpm2N8d16bTiV6Xwtw=) 2: 2F840DD2740911EDA7146F2DC4F9AE02.roa (hash: YPOOK5AIk3gBw37/F4hGfOPvVpq+0nympVjwZNkZ59I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6134 (0x17f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915517D, serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Validity Not Before: Nov 2 16:33:45 2025 GMT Not After : Nov 9 16:33:45 2025 GMT Subject: CN=690787ea-fb91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:df:a0:42:20:fa:24:b4:63:2d:f0:c9:7a: df:74:0b:fa:a0:28:54:27:d2:a5:78:df:ab:a1:9f: 68:53:7b:cd:f5:8b:30:5b:9a:2e:1a:e8:5b:5a:a5: e3:0f:a8:ea:73:7d:56:9e:0e:a6:86:19:e1:0a:ce: db:03:4d:88:20:da:4f:a9:de:db:90:a9:37:fb:7c: 9a:8f:77:e4:1d:00:9e:de:d5:ae:a6:be:50:e2:65: 3e:f8:6a:a4:24:d0:1d:ff:da:af:e2:8f:db:bc:ee: 53:e7:fa:c2:11:15:38:c1:54:ff:33:c0:9b:64:a8: 45:02:7f:d9:c7:67:61:46:16:51:56:18:b0:33:69: 61:b6:08:24:e7:db:e1:6d:8a:d5:18:73:a5:f6:9c: 50:3c:a7:6f:23:aa:0d:df:db:34:eb:ba:82:34:6f: 69:41:09:57:40:9a:a2:3b:5e:5e:47:f7:af:31:60: 1c:f1:8e:bb:a5:82:6e:12:18:db:34:a1:9d:20:ef: 73:48:a8:d3:34:86:48:e9:53:05:e4:aa:7e:ca:6a: 6d:a1:91:cb:77:9a:79:92:c0:73:f7:fe:d9:9a:e6: 4d:7a:ce:19:e0:0a:7d:4a:73:35:bd:26:ae:a1:10: d6:47:01:80:db:52:54:b8:c3:92:c2:a5:66:03:6b: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:93:09:FD:14:0D:FB:BD:14:AE:51:B6:F3:6D:47:EE:5F:ED:72:B3 X509v3 Authority Key Identifier: keyid:34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:c7:c6:44:c2:c9:91:d9:44:71:4b:89:02:78:0e:82:ad:d8: 84:dc:3f:d0:15:d3:d3:db:d3:06:9c:31:f9:7e:db:e8:69:f3: a6:94:f8:33:14:72:b0:61:33:95:54:32:82:bb:3d:9a:60:49: fa:cf:97:be:17:8c:c2:ab:11:75:d1:00:81:11:42:89:08:44: e3:44:5b:16:d8:66:6c:4a:2c:15:f4:77:6c:da:a6:bd:e1:db: 1a:0a:40:88:40:b6:ce:e9:67:94:8c:b5:24:5c:bf:01:e1:69: 78:9e:13:fc:16:d1:bd:6b:40:58:6c:29:c3:3b:c7:33:fa:e5: 28:b1:23:8b:c0:85:31:1b:9c:be:fd:ec:41:07:73:ca:16:da: 98:76:11:ed:d3:38:8b:5d:f7:a3:20:aa:3a:cd:5e:99:17:52: 7b:45:b0:79:be:f3:45:5b:24:6b:9f:9c:cc:89:c9:88:73:01: cf:87:85:88:38:e0:50:9e:d8:d7:42:18:96:53:d4:49:1e:73: 38:b8:5e:c8:e0:76:db:ff:24:ee:82:69:81:2f:24:b3:b6:a2: 6f:81:1a:8e:d0:9c:cb:ff:14:82:9e:08:72:c4:9d:41:5d:81: 9d:eb:e2:6f:d1:92:2c:93:8b:ab:90:d6:cd:65:9d:33:84:4d: 20:d7:f0:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxN0QxMTAvBgNVBAUTKDM0NEE3NzVFMjQ1Q0NFRDA4MEM3OTUyMTU5NkUzMkM4 RjA2RDg4QzgwHhcNMjUxMTAyMTYzMzQ1WhcNMjUxMTA5MTYzMzQ1WjAYMRYwFAYD VQQDEw02OTA3ODdlYS1mYjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvbfoEIg+iS0Yy3wyXrfdAv6oChUJ9KleN+roZ9oU3vN9YswW5ouGuhbWqXj D6jqc31Wng6mhhnhCs7bA02IINpPqd7bkKk3+3yaj3fkHQCe3tWupr5Q4mU++Gqk JNAd/9qv4o/bvO5T5/rCERU4wVT/M8CbZKhFAn/Zx2dhRhZRVhiwM2lhtggk59vh bYrVGHOl9pxQPKdvI6oN39s067qCNG9pQQlXQJqiO15eR/evMWAc8Y67pYJuEhjb NKGdIO9zSKjTNIZI6VMF5Kp+ymptoZHLd5p5ksBz9/7ZmuZNes4Z4Ap9SnM1vSau oRDWRwGA21JUuMOSwqVmA2ti5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWTCf0U Dfu9FK5RtvNtR+5f7XKzMB8GA1UdIwQYMBaAFDRKd14kXM7QgMeVIVluMsjwbYjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE3RC8zRDdBNjI4NkNG NTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0Q0F4NVVoV1c0eXlQQnRp TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FcDNYaVJjenRDQXg1VWhXVzR5eVBCdGlNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE3RC8zRDdBNjI4NkNGNTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0 Q0F4NVVoV1c0eXlQQnRpTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMx8ZEwsmR2URxS4kCeA6CrdiE3D/QFdPT29MGnDH5ftvoafOmlPgz FHKwYTOVVDKCuz2aYEn6z5e+F4zCqxF10QCBEUKJCETjRFsW2GZsSiwV9Hds2qa9 4dsaCkCIQLbO6WeUjLUkXL8B4Wl4nhP8FtG9a0BYbCnDO8cz+uUosSOLwIUxG5y+ /exBB3PKFtqYdhHt0ziLXfejIKo6zV6ZF1J7RbB5vvNFWyRrn5zMicmIcwHPh4WI OOBQntjXQhiWU9RJHnM4uF7I4Hbb/yTugmmBLySztqJvgRqO0JzL/xSCnghyxJ1B XYGd6+Jv0ZIsk4urkNbNZZ0zhE0g1/DL -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:51 2025 by rpki-client