$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: G8MWuPWZ5OZykBHnnCIh+HaKCEa/JHkVau1qHTI3zyM= Subject key identifier: 28:07:EA:0C:05:5A:4D:CF:0A:6A:13:BB:66:98:D3:BD:52:CA:94:4E Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: 01DE Signing time: Wed 05 Nov 2025 02:51:32 +0000 Manifest this update: Wed 05 Nov 2025 02:51:31 +0000 Manifest next update: Wed 12 Nov 2025 02:51:31 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: Zhy+gKdsOvDMhqAplF+ZnhUSNQcezFzxrLYa7/yeCNo=) 2: B188CE748E7011F08CF3B91AC4F9AE02.roa (hash: z9aB/eMQsAs4dx5UPgq7iMP6FyNI1Namac/Cs27VAaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2, serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: Nov 5 02:51:31 2025 GMT Not After : Nov 12 02:51:31 2025 GMT Subject: CN=690abbb3-1bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9b:39:09:3a:b2:c1:4b:ec:6c:98:ce:e1:58: b2:24:e0:6f:d1:3f:aa:c4:48:74:a5:b0:5f:3f:a6: 3d:cf:76:7d:af:2f:0d:f6:5d:65:88:c4:5e:6a:5d: 29:78:2e:11:e3:72:1a:cd:47:ed:95:b5:63:a9:e9: d8:12:1b:06:a4:35:ea:c9:c8:80:72:24:ee:88:e9: 1d:74:8e:2e:5e:b7:23:11:7b:02:da:ec:52:52:00: 37:a1:df:86:4b:54:5b:1a:09:51:c1:d6:33:47:9d: 05:3d:93:f5:6c:d0:9d:26:d8:0d:be:a3:01:30:29: 9d:5a:8c:8f:75:5c:39:e9:af:e5:67:12:82:f6:cd: b9:b6:d2:c8:da:bc:bf:9c:96:df:ac:54:91:9b:5f: 10:79:b2:1c:76:49:b5:19:ca:ff:07:47:e2:95:7e: 3e:e0:11:5c:43:d2:8e:88:55:41:06:d0:5a:7e:4c: 8e:59:87:72:02:9d:53:07:0b:f9:38:c3:bf:2b:90: eb:3b:f0:85:64:e7:8b:cc:c6:2b:8e:ad:06:e9:fd: e4:03:e0:4b:26:06:df:98:0b:b8:4d:6b:74:54:8c: 31:f9:2a:2b:99:46:df:10:2a:56:ac:f9:75:17:c3: 26:80:e9:f8:34:f9:44:6a:47:57:5b:12:9f:d4:a5: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:07:EA:0C:05:5A:4D:CF:0A:6A:13:BB:66:98:D3:BD:52:CA:94:4E X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b9:40:6b:7f:b5:28:8d:a3:74:f4:64:99:94:09:fd:84:ae: 90:b5:63:6e:29:cc:cc:f5:34:55:78:82:82:97:86:cb:0d:b6: 42:9e:6b:1c:0e:28:d0:74:c6:4b:35:64:d9:47:85:3f:77:91: 01:62:00:e0:8e:c4:ae:fa:43:37:93:36:52:2c:f4:6c:77:ee: f5:d3:52:0c:38:50:22:c9:49:47:4a:7c:ed:56:50:72:f3:cf: ca:a8:b5:5d:9d:ca:93:6d:63:a2:fe:2d:e1:19:c8:c9:51:d8: 33:52:a3:02:ac:8d:c3:e1:d5:88:6a:f5:b4:de:08:2f:2d:76: ff:6d:cc:85:3a:e3:78:d8:ae:db:ef:f3:c7:5f:52:5c:18:e8: 36:d3:de:97:7a:70:a4:aa:52:17:76:58:ab:bf:9d:8e:d0:82: dc:61:79:ac:3c:44:72:73:88:ab:41:2e:7f:fc:7d:9f:0b:9d: 7b:ce:d9:81:75:94:ec:a8:6b:8f:cb:cd:84:a3:c4:da:10:dd: 18:fb:29:5f:17:4f:41:b7:af:fa:03:8c:72:93:1f:e7:a7:43: 4f:20:f3:fd:2d:7c:78:9b:b8:a0:24:12:b9:dc:48:a8:f5:b1: e1:ad:e2:19:2f:bf:e2:c4:29:80:72:dc:42:34:c8:ea:22:71: 5a:c1:da:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjUxMTA1MDI1MTMxWhcNMjUxMTEyMDI1MTMxWjAYMRYwFAYD VQQDEw02OTBhYmJiMy0xYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ps5CTqywUvsbJjO4ViyJOBv0T+qxEh0pbBfP6Y9z3Z9ry8N9l1liMReal0p eC4R43IazUftlbVjqenYEhsGpDXqyciAciTuiOkddI4uXrcjEXsC2uxSUgA3od+G S1RbGglRwdYzR50FPZP1bNCdJtgNvqMBMCmdWoyPdVw56a/lZxKC9s25ttLI2ry/ nJbfrFSRm18QebIcdkm1Gcr/B0filX4+4BFcQ9KOiFVBBtBafkyOWYdyAp1TBwv5 OMO/K5DrO/CFZOeLzMYrjq0G6f3kA+BLJgbfmAu4TWt0VIwx+SormUbfECpWrPl1 F8MmgOn4NPlEakdXWxKf1KUYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgH6gwF Wk3PCmoTu2aY071SypROMB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuuUBrf7UojaN09GSZlAn9hK6QtWNuKczM9TRVeIKCl4bLDbZCnmsc DijQdMZLNWTZR4U/d5EBYgDgjsSu+kM3kzZSLPRsd+7101IMOFAiyUlHSnztVlBy 88/KqLVdncqTbWOi/i3hGcjJUdgzUqMCrI3D4dWIavW03ggvLXb/bcyFOuN42K7b 7/PHX1JcGOg2096XenCkqlIXdlirv52O0ILcYXmsPERyc4irQS5//H2fC517ztmB dZTsqGuPy82Eo8TaEN0Y+ylfF09Bt6/6A4xykx/np0NPIPP9LXx4m7igJBK53Eio 9bHhreIZL7/ixCmActxCNMjqInFawdru -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:24 2025 by rpki-client