$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json) Hash identifier: qm79jO/M1LQcqX9LhRUxuZIZaqDb5/5rAL7/wL73kpE= Subject key identifier: 9D:69:B6:14:32:9C:6E:8D:0E:25:86:DD:70:8C:37:35:69:41:4C:70 Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft Manifest number: 39 Signing time: Mon 03 Nov 2025 07:32:31 +0000 Manifest this update: Mon 03 Nov 2025 07:32:30 +0000 Manifest next update: Mon 10 Nov 2025 07:32:30 +0000 Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: mD0/D4ml9kBFjIlN0O7/qlb1vrGVxakxJoOnEtw0pqM=) 2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: YXoQ9r4tej6CnG1FdK26UeZMqNkqakqvZSbUkeab5Z8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Nov 3 07:32:30 2025 GMT Not After : Nov 10 07:32:30 2025 GMT Subject: CN=69085a8e-adea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:08:c2:74:66:c3:ae:83:bc:73:31:2f:a7: dd:a4:00:78:25:4d:89:24:5b:29:3e:ad:97:b9:81: bc:42:7a:9f:87:9e:52:65:d9:9e:12:1f:91:47:8a: 84:a2:0f:c8:80:4c:34:1b:d1:bb:b9:ce:ac:57:d8: 6b:3c:cd:32:00:63:e8:18:c8:6e:d8:eb:1e:9d:17: 81:e2:e2:07:22:fa:d5:70:91:ce:6f:fe:cc:d9:23: 15:e3:78:2e:f6:aa:9c:b7:d8:c4:2d:6c:3f:38:c7: 42:fc:d8:46:ce:48:e4:b7:bf:aa:47:bf:5c:b8:35: da:dc:e6:e8:4e:ea:ff:ad:e7:80:e0:e7:1c:e6:95: 61:6e:dd:d2:41:7d:db:88:48:20:6d:f0:5f:d2:38: 0b:71:9b:2b:b2:7b:a6:cb:e8:98:e1:38:93:0e:9c: 54:fc:af:1a:b5:21:86:3d:a3:ba:60:8e:3d:d8:73: e0:39:8d:27:83:48:5b:e2:c5:b2:49:69:54:e1:3f: 3c:8b:ca:e2:dc:1f:6d:5d:ad:11:42:3f:86:d3:f3: 4b:24:4f:11:96:cc:39:14:cc:9d:93:32:be:cd:eb: 8a:cf:76:87:a3:b3:31:57:93:f0:8f:2e:a8:0b:de: 06:7f:25:5f:5f:0c:4b:7b:fd:e0:f4:e3:c2:e1:e8: 55:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:69:B6:14:32:9C:6E:8D:0E:25:86:DD:70:8C:37:35:69:41:4C:70 X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e3:13:f0:71:7a:4b:26:4b:ea:93:b7:ff:c3:7a:3b:48:d1: 8f:a2:3f:e3:02:f5:e9:41:b9:8a:ea:94:e5:22:61:b5:d5:68: 78:43:0e:2e:08:25:44:37:55:89:a6:c5:a2:6a:b1:7a:d4:99: ab:c5:9b:ff:4d:fb:1c:ec:7f:ee:36:8d:f9:e9:18:37:b7:e5: a4:41:21:32:14:c2:d4:a3:49:2e:e7:62:c9:b5:4d:be:76:8e: 8d:dd:74:e5:58:3c:3e:fe:5e:44:f2:2c:66:e7:99:77:e0:53: 81:b6:ff:c2:8b:27:ce:8d:d7:5c:89:28:8d:4a:b4:a8:18:e1: ee:1e:35:a7:d3:3e:b2:a3:36:cc:a0:94:27:b6:a9:1c:6e:8c: 3e:b4:17:2e:1c:68:84:5a:54:66:19:9f:c9:d8:48:3a:d8:0c: 4a:51:13:dd:35:ee:cf:f0:3c:e1:1b:29:94:0d:98:65:53:33: 73:c9:36:59:15:19:fb:32:35:7e:90:df:6d:70:43:98:18:a5: 1f:20:70:53:7b:a5:63:ee:7d:eb:f6:ff:4f:f9:bb:70:d4:12: ca:7e:95:f9:28:d2:d6:24:cb:99:ca:96:e8:2f:b7:d0:05:bd: b6:f7:da:b2:4f:fc:a8:f7:82:c1:44:fc:13:c3:1a:fe:95:5c: a7:20:c6:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNTExMDMwNzMyMzBaFw0yNTExMTAwNzMyMzBaMBgxFjAUBgNV BAMTDTY5MDg1YThlLWFkZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2igjCdGbDroO8czEvp92kAHglTYkkWyk+rZe5gbxCep+HnlJl2Z4SH5FHioSi D8iATDQb0bu5zqxX2Gs8zTIAY+gYyG7Y6x6dF4Hi4gci+tVwkc5v/szZIxXjeC72 qpy32MQtbD84x0L82EbOSOS3v6pHv1y4Ndrc5uhO6v+t54Dg5xzmlWFu3dJBfduI SCBt8F/SOAtxmyuye6bL6JjhOJMOnFT8rxq1IYY9o7pgjj3Yc+A5jSeDSFvixbJJ aVThPzyLyuLcH21drRFCP4bT80skTxGWzDkUzJ2TMr7N64rPdoejszFXk/CPLqgL 3gZ/JV9fDEt7/eD048Lh6FV/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnWm2FDKc bo0OJYbdcIw3NWlBTHAwHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD RTFEL0I1NDhEQkUyNjJERjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEz ODBGUms4UTFDc1RCaVVYWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAALjE/BxeksmS+qTt//DejtI0Y+iP+MC9elBuYrqlOUiYbXVaHhDDi4I JUQ3VYmmxaJqsXrUmavFm/9N+xzsf+42jfnpGDe35aRBITIUwtSjSS7nYsm1Tb52 jo3ddOVYPD7+XkTyLGbnmXfgU4G2/8KLJ86N11yJKI1KtKgY4e4eNafTPrKjNsyg lCe2qRxujD60Fy4caIRaVGYZn8nYSDrYDEpRE9017s/wPOEbKZQNmGVTM3PJNlkV GfsyNX6Q321wQ5gYpR8gcFN7pWPufev2/0/5u3DUEsp+lfko0tYky5nKlugvt9AF vbb32rJP/Kj3gsFE/BPDGv6VXKcgxuo= -----END CERTIFICATE-----Generated at Wed Nov 5 06:00:24 2025 by rpki-client