$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft File: nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft (raw, json) Hash identifier: IY6vls+TsaY307SpRwrJr688wu8SUUOH0l9Q5Ir1/gk= Subject key identifier: C9:2C:1B:FE:8F:0C:8F:E1:19:0B:89:C0:98:4D:1B:97:11:8B:B0:28 Authority key identifier: 9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE Certificate issuer: /CN=A91A7CDD/serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft Manifest number: 0133 Signing time: Mon 03 Nov 2025 04:29:36 +0000 Manifest this update: Mon 03 Nov 2025 04:29:35 +0000 Manifest next update: Mon 10 Nov 2025 04:29:35 +0000 Files and hashes: 1: nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl (hash: 0y0JZKRBuArsYt2m3hx0gSH8LmX0Sjr8EYaIPNkq9Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Validity Not Before: Nov 3 04:29:35 2025 GMT Not After : Nov 10 04:29:35 2025 GMT Subject: CN=69082faf-a82f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:51:49:32:70:24:a7:fa:24:2d:ea:19:50: 0b:13:5d:b8:e3:27:ed:b0:85:e0:d0:26:43:a0:ba: bd:65:9a:3e:5b:4a:e4:41:6b:4a:8e:ed:62:a0:d4: 0c:9e:8c:53:ce:b1:15:57:82:70:ef:41:6b:5a:05: ff:53:93:8d:b5:9e:ec:af:5a:55:5e:9b:7c:77:be: 0d:6d:76:ff:58:ee:78:ee:8d:ec:25:89:b8:c5:af: 57:87:3f:7b:d6:64:a1:3d:88:2b:37:21:34:2e:0f: 5c:5b:f7:28:01:85:62:42:99:55:44:aa:77:25:8d: 74:c7:28:d3:ed:1b:af:21:1b:3d:06:85:cf:94:c9: 6a:87:0f:94:63:71:61:67:1e:12:6b:7b:b8:4e:7a: 8b:8a:28:a7:46:f8:63:45:8e:49:08:0b:9e:78:74: 52:e3:3c:65:52:85:13:a1:34:4c:17:9b:a5:46:16: 58:58:33:91:ce:86:82:19:01:5a:2c:08:89:7a:23: 5f:11:66:d7:4a:35:67:a4:72:f9:07:df:66:3f:9d: 4a:a5:bb:2a:3e:80:45:13:bf:16:f5:21:65:db:3d: a0:17:5c:06:27:4e:a5:78:34:c6:a2:c8:0b:27:db: 70:f5:64:43:e5:34:79:d3:2c:ee:bd:18:25:82:e5: a4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:2C:1B:FE:8F:0C:8F:E1:19:0B:89:C0:98:4D:1B:97:11:8B:B0:28 X509v3 Authority Key Identifier: keyid:9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f7:91:96:05:07:15:53:2a:79:4b:70:9e:be:f0:41:0a:17: ff:35:01:cf:b3:4b:7a:6e:f5:c6:e2:02:d5:74:f5:d3:9b:77: d6:80:1f:48:fb:1e:ce:fb:39:b4:f5:cd:61:ed:9b:4b:db:f3: 67:83:24:df:1a:71:b3:9f:de:0a:3c:4a:60:d5:b8:20:14:5b: 90:cf:83:df:9f:d7:10:69:b4:e0:65:4a:39:5e:b3:14:69:41: 22:80:d0:a6:ea:15:24:55:3b:25:10:e6:94:f7:1c:27:f3:d9: 80:10:a1:0e:76:fb:22:71:ef:ac:f5:fa:4e:5f:96:b2:8f:f4: b5:e9:65:b6:52:2d:d6:21:70:db:fa:ac:c8:a5:60:85:fe:87: d5:e1:91:3d:7c:12:77:79:8f:38:35:c3:3d:0a:18:20:d7:13: a3:b3:d5:31:d2:dd:a2:0e:9f:5d:ed:ed:9d:5a:fc:cd:3f:65: 3e:10:8d:06:4f:a9:df:2e:f4:ed:85:b7:d4:08:bc:03:fd:89: e0:5d:65:00:e8:62:64:a0:2c:3b:86:f3:77:74:1e:3a:90:52: 2e:42:8c:6b:50:64:9f:18:4f:92:b1:89:c5:be:e8:9c:ca:ed: b2:85:85:5f:0e:31:2c:24:b6:8e:a5:76:aa:de:02:3c:47:86: 45:1f:20:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDlENDYwNDQwNjBGQTk2RTk0QTIzMUUwMzBBMzBFM0Q2 NTRGNDExQUUwHhcNMjUxMTAzMDQyOTM1WhcNMjUxMTEwMDQyOTM1WjAYMRYwFAYD VQQDEw02OTA4MmZhZi1hODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxilRSTJwJKf6JC3qGVALE1244yftsIXg0CZDoLq9ZZo+W0rkQWtKju1ioNQM noxTzrEVV4Jw70FrWgX/U5ONtZ7sr1pVXpt8d74NbXb/WO547o3sJYm4xa9Xhz97 1mShPYgrNyE0Lg9cW/coAYViQplVRKp3JY10xyjT7RuvIRs9BoXPlMlqhw+UY3Fh Zx4Sa3u4TnqLiiinRvhjRY5JCAueeHRS4zxlUoUToTRMF5ulRhZYWDORzoaCGQFa LAiJeiNfEWbXSjVnpHL5B99mP51KpbsqPoBFE78W9SFl2z2gF1wGJ06leDTGosgL J9tw9WRD5TR50yzuvRglguWk3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMksG/6P DI/hGQuJwJhNG5cRi7AoMB8GA1UdIwQYMBaAFJ1GBEBg+pbpSiMeAwow49ZU9BGu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC85MzZCMzFFMERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1bEtJeDREQ2pEajFsVDBF YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25VWUVRR0Q2bHVsS0l4NERDakRqMWxUMEVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC85MzZCMzFFMEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1 bEtJeDREQ2pEajFsVDBFYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf95GWBQcVUyp5S3CevvBBChf/NQHPs0t6bvXG4gLVdPXTm3fWgB9I +x7O+zm09c1h7ZtL2/NngyTfGnGzn94KPEpg1bggFFuQz4Pfn9cQabTgZUo5XrMU aUEigNCm6hUkVTslEOaU9xwn89mAEKEOdvsice+s9fpOX5ayj/S16WW2Ui3WIXDb +qzIpWCF/ofV4ZE9fBJ3eY84NcM9Chgg1xOjs9Ux0t2iDp9d7e2dWvzNP2U+EI0G T6nfLvTthbfUCLwD/YngXWUA6GJkoCw7hvN3dB46kFIuQoxrUGSfGE+SsYnFvuic yu2yhYVfDjEsJLaOpXaq3gI8R4ZFHyDq -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:02 2025 by rpki-client