$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: 3F8PEZf5f029mwk4/Ua3776XypUbyMPExbY9nBYGNKM= Subject key identifier: 17:A7:7A:3A:9C:4A:F9:2D:A7:97:A3:AF:8D:6E:33:C1:2B:2B:2E:EA Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CC5 Signing time: Tue 04 Nov 2025 18:18:14 +0000 Manifest this update: Tue 04 Nov 2025 18:18:13 +0000 Manifest next update: Tue 11 Nov 2025 18:18:13 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: hku6Xa0uCzG+x4g7vrcBiDVQC8LvUyxXLmD4Oz1cX4M=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: DxAfEgav23qNw9acbrJvstjPzIpBZbMgGcy+koP3ZBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Nov 4 18:18:13 2025 GMT Not After : Nov 11 18:18:13 2025 GMT Subject: CN=690a4366-5bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:82:21:0f:a3:e1:88:13:44:00:57:87:2c:87: ab:d9:c8:ac:e7:e0:88:8c:03:e2:d9:fd:6a:de:97: 67:4e:37:c4:0f:f1:22:31:a0:fb:24:83:a2:bc:18: 52:85:59:3d:f8:78:15:a2:53:62:28:bc:3a:bf:40: be:05:4b:dc:f8:45:e0:ac:86:a8:ff:b2:12:31:e4: f3:41:5f:69:5b:7a:ff:cd:a2:00:10:0f:9f:b7:a7: a0:79:33:0e:bc:20:5b:2a:c7:a5:e3:59:d8:9e:86: e7:66:93:5b:ce:c7:cd:b5:5d:c4:58:0b:0c:6b:53: e6:65:8d:89:36:8f:26:21:09:f3:9d:86:22:5e:3e: 17:5b:ce:45:6a:7a:f4:c2:c2:4b:25:f6:2a:0c:24: 6a:bb:b0:a1:fa:82:82:9f:78:29:5e:55:93:68:d6: 04:91:b3:ac:05:d3:2d:d0:5c:3e:00:4a:99:b2:44: a4:b4:d1:c9:76:06:df:fd:26:8e:d9:f3:68:cf:f2: 59:a7:23:c4:33:a4:49:19:33:02:11:b8:7b:3b:19: 8b:e9:19:16:8a:65:ee:a3:26:83:09:a4:dc:18:68: fa:61:ea:50:54:8c:b9:66:eb:b0:e5:67:34:2d:54: f2:1c:48:10:88:4e:52:45:86:1f:09:f7:e7:2d:a1: b0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A7:7A:3A:9C:4A:F9:2D:A7:97:A3:AF:8D:6E:33:C1:2B:2B:2E:EA X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:28:2d:a6:54:f6:29:1d:0b:c7:3f:8d:0f:cb:8a:5a:24:a8: 64:9c:d1:dc:21:7a:fd:d0:2f:8a:1c:69:77:f4:95:ae:ae:79: 24:85:a7:c6:28:16:c6:41:81:8a:ad:4d:f2:ec:08:a0:41:53: 73:9e:55:84:a9:24:7c:85:dd:55:fc:ac:e9:a2:bb:8b:dd:63: ab:cc:ca:55:22:49:c4:4e:e1:00:b6:52:a8:4d:34:a2:e4:a2: 14:24:83:09:bd:61:e9:49:89:7f:1c:ee:0b:b1:03:78:a3:e5: 73:c8:24:36:ac:db:4f:f0:57:0c:4c:48:79:e1:00:0e:bd:76: 01:ab:a8:1a:d3:e8:6d:83:dc:c2:35:cd:e6:ac:64:5a:e0:68: a7:e8:d8:91:87:a5:af:86:85:6d:bd:91:19:41:47:cb:eb:ad: 36:17:30:62:94:cc:79:c4:08:f2:c3:09:5c:ee:54:16:3d:f9: 42:58:0a:1f:11:2e:c4:74:1e:63:7a:d6:4c:bb:c4:1d:05:92: 29:18:e2:4f:7f:e5:d2:37:1f:2b:a3:ba:c0:cd:0c:53:58:ef: eb:b4:e7:ac:8c:bf:a5:2f:29:88:62:a1:d8:fd:f2:43:b6:85: 56:55:a5:20:a4:a6:a4:b0:96:62:7a:1e:9b:61:51:c7:af:7d: ec:0d:a1:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUxMTA0MTgxODEzWhcNMjUxMTExMTgxODEzWjAYMRYwFAYD VQQDEw02OTBhNDM2Ni01YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YIhD6PhiBNEAFeHLIer2cis5+CIjAPi2f1q3pdnTjfED/EiMaD7JIOivBhS hVk9+HgVolNiKLw6v0C+BUvc+EXgrIao/7ISMeTzQV9pW3r/zaIAEA+ft6egeTMO vCBbKsel41nYnobnZpNbzsfNtV3EWAsMa1PmZY2JNo8mIQnznYYiXj4XW85Fanr0 wsJLJfYqDCRqu7Ch+oKCn3gpXlWTaNYEkbOsBdMt0Fw+AEqZskSktNHJdgbf/SaO 2fNoz/JZpyPEM6RJGTMCEbh7OxmL6RkWimXuoyaDCaTcGGj6YepQVIy5Zuuw5Wc0 LVTyHEgQiE5SRYYfCffnLaGwxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBenejqc Svktp5ejr41uM8ErKy7qMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoKC2mVPYpHQvHP40Py4paJKhknNHcIXr90C+KHGl39JWurnkkhafG KBbGQYGKrU3y7AigQVNznlWEqSR8hd1V/KzporuL3WOrzMpVIknETuEAtlKoTTSi 5KIUJIMJvWHpSYl/HO4LsQN4o+VzyCQ2rNtP8FcMTEh54QAOvXYBq6ga0+htg9zC Nc3mrGRa4Gin6NiRh6WvhoVtvZEZQUfL6602FzBilMx5xAjywwlc7lQWPflCWAof ES7EdB5jetZMu8QdBZIpGOJPf+XSNx8ro7rAzQxTWO/rtOesjL+lLymIYqHY/fJD toVWVaUgpKaksJZieh6bYVHHr33sDaGS -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:04 2025 by rpki-client