$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: D6hq//72zC85KWlnj8vfwmUsjhhLtgrniCh1RvGM1/A= Subject key identifier: 95:E2:2D:6E:A6:83:CF:01:DB:0C:2A:18:F0:2B:D7:1B:5F:9C:34:9D Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 04DE Signing time: Tue 04 Nov 2025 23:52:45 +0000 Manifest this update: Tue 04 Nov 2025 23:52:44 +0000 Manifest next update: Tue 11 Nov 2025 23:52:44 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: Pu7JSW5OhkmJpF4ZnZjZ4lC/+6C1/KLYRJ+cy5c9PEM=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: nj3zL8oObjV8NLXqj4IbNKya+FtBjMvRptjlINscrUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: Nov 4 23:52:44 2025 GMT Not After : Nov 11 23:52:44 2025 GMT Subject: CN=690a91cc-d3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:10:ca:3c:5c:c0:2f:32:7b:5e:79:57:78:51: 03:cd:fb:8a:e2:d9:2a:9a:dd:b1:94:3b:04:98:de: 7c:ab:25:c2:a1:cc:cd:93:95:35:6d:8b:6e:1c:c1: 01:97:3c:d4:9a:8b:8e:69:45:07:ee:a0:11:d4:25: 77:12:62:cc:a0:f0:51:b1:02:d5:f9:41:47:18:b8: c6:e8:b8:3c:fb:db:f2:1a:d9:f5:41:2d:35:10:1e: cf:e7:d3:f0:f6:aa:2a:5a:33:8d:0f:f5:29:33:f5: 77:5b:4b:d1:af:10:0b:90:07:d8:ae:3e:09:ae:30: 2f:2c:26:32:02:46:04:2e:9c:94:46:1c:2e:c5:de: 32:26:d0:4b:fd:b9:2f:06:0d:5a:2f:85:ec:a1:28: 40:f5:0f:fe:17:8b:14:a2:94:2c:35:35:63:3b:27: 46:83:9f:1b:b1:10:8a:1e:b0:2d:8e:73:9b:b9:99: af:1a:c9:c6:8c:eb:31:26:53:02:a3:6a:e7:38:da: b9:bc:4f:6f:99:29:e1:06:f2:8c:1a:83:64:ad:3c: 55:f8:83:c4:bb:2d:d7:1f:d8:5a:ab:46:51:31:bf: 5a:10:87:d8:23:61:55:6b:61:63:e2:ba:4d:a2:82: 06:98:72:69:c2:d3:8a:e3:7a:41:84:73:d6:c4:56: de:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E2:2D:6E:A6:83:CF:01:DB:0C:2A:18:F0:2B:D7:1B:5F:9C:34:9D X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b4:41:e3:98:08:da:09:ee:a8:06:29:ae:92:1b:97:05:a1: 31:a0:be:55:e8:91:f3:37:5e:64:ab:49:e1:17:3a:66:21:b0: 6e:78:34:41:19:bd:2d:b4:16:25:b4:c9:a0:85:39:2c:30:c1: 83:8e:3d:3c:a6:f3:7c:71:61:55:e7:6f:33:76:18:a9:17:1a: 4b:6a:d6:76:f3:65:e1:05:b5:c9:cd:37:2a:1a:f3:63:a0:8f: 4b:1f:3f:37:df:f8:c2:f2:6a:28:1b:81:f0:bb:01:40:be:f2: 9b:4f:12:ef:90:ad:d8:94:d2:00:7c:34:a9:37:f2:91:72:f4: 2f:be:40:ba:21:f7:88:f8:24:f3:e9:de:de:0a:ed:d8:e1:3a: b5:c2:81:1c:d2:8c:f3:ec:1b:b3:df:a7:b0:6d:14:90:56:53: 74:9d:ad:15:99:a8:bd:33:73:86:85:42:c9:20:f5:d0:66:af: c3:ca:3b:d5:e2:2a:27:45:4e:75:c6:7a:12:a2:82:f7:6a:a8: 6e:0b:58:74:ea:3b:76:09:f0:17:2a:29:c4:7f:2e:2a:76:92: 7a:d4:d3:41:a2:d9:80:41:9c:fa:d2:97:90:bc:d1:80:83:5d: 11:5c:8a:97:c6:35:cf:89:f7:15:0c:1a:15:b2:b1:6f:f9:8f: a3:03:8f:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjUxMTA0MjM1MjQ0WhcNMjUxMTExMjM1MjQ0WjAYMRYwFAYD VQQDEw02OTBhOTFjYy1kM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhDKPFzALzJ7XnlXeFEDzfuK4tkqmt2xlDsEmN58qyXCoczNk5U1bYtuHMEB lzzUmouOaUUH7qAR1CV3EmLMoPBRsQLV+UFHGLjG6Lg8+9vyGtn1QS01EB7P59Pw 9qoqWjOND/UpM/V3W0vRrxALkAfYrj4JrjAvLCYyAkYELpyURhwuxd4yJtBL/bkv Bg1aL4XsoShA9Q/+F4sUopQsNTVjOydGg58bsRCKHrAtjnObuZmvGsnGjOsxJlMC o2rnONq5vE9vmSnhBvKMGoNkrTxV+IPEuy3XH9haq0ZRMb9aEIfYI2FVa2Fj4rpN ooIGmHJpwtOK43pBhHPWxFbehQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXiLW6m g88B2wwqGPAr1xtfnDSdMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTtEHjmAjaCe6oBimukhuXBaExoL5V6JHzN15kq0nhFzpmIbBueDRB Gb0ttBYltMmghTksMMGDjj08pvN8cWFV528zdhipFxpLatZ282XhBbXJzTcqGvNj oI9LHz833/jC8mooG4HwuwFAvvKbTxLvkK3YlNIAfDSpN/KRcvQvvkC6IfeI+CTz 6d7eCu3Y4Tq1woEc0ozz7Buz36ewbRSQVlN0na0Vmai9M3OGhULJIPXQZq/DyjvV 4ionRU51xnoSooL3aqhuC1h06jt2CfAXKinEfy4qdpJ61NNBotmAQZz60peQvNGA g10RXIqXxjXPifcVDBoVsrFv+Y+jA4/M -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:25 2025 by rpki-client