$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: XuLkZ8rpH3E2i/GklWGaTN5b/xVAN9Wmv0SmP9CAn24= Subject key identifier: 3D:A4:6D:50:2E:07:48:DA:C0:72:74:43:9A:7E:24:1E:3B:4D:CA:6D Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08AB Signing time: Tue 04 Nov 2025 20:39:22 +0000 Manifest this update: Tue 04 Nov 2025 20:39:22 +0000 Manifest next update: Tue 11 Nov 2025 20:39:22 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: IT5rUdmaeF9so0xEh17MNAj0/9aGte95fI9smsfqwhA=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: 50ACgx85pKWBSdecvm1PzIpRWx2Le1Y9DodxHydptpU=) 5: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2271 (0x8df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Nov 4 20:39:22 2025 GMT Not After : Nov 11 20:39:22 2025 GMT Subject: CN=690a647a-92a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6e:54:ed:d3:56:65:97:57:73:3c:bc:d9:d1: 2a:15:1e:34:4d:d5:4e:2b:61:97:d1:f8:59:3a:e0: 5f:1c:ce:ca:48:8d:67:00:2a:a2:04:35:4f:8c:02: 70:5e:eb:6c:d9:7b:7d:dd:4b:7f:32:fc:be:25:a5: 50:45:ef:7d:23:2b:04:00:ba:39:70:d5:9e:c8:6c: e6:ce:4e:a1:d0:e7:b7:e2:e9:52:42:49:48:bc:39: ae:06:59:87:fa:fb:e8:67:20:62:85:a5:3a:46:99: 36:29:77:8e:3d:84:9e:2a:04:53:9e:c2:68:67:dd: 94:62:74:fc:bc:e9:c2:77:8d:3c:b2:f2:03:96:3b: 72:e5:c0:4b:3b:d3:9e:d0:23:51:75:a5:53:27:2b: ce:aa:17:61:e3:1c:50:62:4c:86:ea:e1:65:74:cb: a4:f8:f7:5b:36:ea:b0:6d:84:50:27:44:0d:a1:4d: dc:77:47:20:01:03:1c:e5:5e:2f:59:37:2a:99:c7: 58:1d:2b:98:25:82:15:b3:ba:18:c9:a6:e2:b6:b6: 1c:c6:e3:79:88:b2:34:43:68:79:4a:d1:24:c2:46: b8:79:47:b8:f3:bf:67:8e:3f:54:e9:11:17:6d:6b: 78:16:65:91:e0:6d:62:2d:46:c4:08:ef:1d:4f:e1: 7c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A4:6D:50:2E:07:48:DA:C0:72:74:43:9A:7E:24:1E:3B:4D:CA:6D X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e5:93:9b:e8:2e:6f:36:01:d9:91:24:b4:3a:00:b7:96:8e: f7:4a:06:dd:e0:d4:1b:eb:8d:ca:8e:44:8d:b4:f4:d0:11:69: 76:30:5a:5b:92:9a:c1:28:78:a2:48:3a:ba:94:2f:59:4a:1b: 5a:d2:99:b5:23:f4:3c:38:b1:90:bf:9d:3c:da:7b:a2:f0:79: 48:bd:33:6a:47:d6:a2:4b:2b:4b:5c:10:1a:bc:24:db:c5:15: 32:f1:a4:a2:05:a2:6f:a3:a9:8b:1e:d3:24:8c:8d:6a:0a:8e: 47:d3:78:2c:1c:28:5d:95:57:43:1f:a5:40:0d:80:3d:0e:9b: 84:df:97:99:ec:9e:79:62:1c:9a:58:5d:d3:9e:b5:36:15:e5: 39:ea:4c:ba:f4:1f:59:17:8c:53:21:e0:64:d7:3a:81:eb:bd: 11:eb:79:72:85:39:af:89:7d:33:ea:6f:b9:fb:6a:3e:e9:fe: f5:cd:a6:16:44:1d:48:48:bf:57:c7:9d:0d:80:bc:71:37:5e: c0:55:09:70:df:50:b9:eb:21:98:89:e5:e3:a5:2f:42:53:ba: f2:46:18:27:2e:49:2c:29:00:63:ed:a8:c0:6a:e1:0a:9d:8e: b1:c7:ba:9d:2f:b7:91:41:6d:5a:2c:80:e4:f6:c1:96:8e:d2: cd:fb:45:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMTA0MjAzOTIyWhcNMjUxMTExMjAzOTIyWjAYMRYwFAYD VQQDEw02OTBhNjQ3YS05MmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W5U7dNWZZdXczy82dEqFR40TdVOK2GX0fhZOuBfHM7KSI1nACqiBDVPjAJw Xuts2Xt93Ut/Mvy+JaVQRe99IysEALo5cNWeyGzmzk6h0Oe34ulSQklIvDmuBlmH +vvoZyBihaU6Rpk2KXeOPYSeKgRTnsJoZ92UYnT8vOnCd408svIDljty5cBLO9Oe 0CNRdaVTJyvOqhdh4xxQYkyG6uFldMuk+PdbNuqwbYRQJ0QNoU3cd0cgAQMc5V4v WTcqmcdYHSuYJYIVs7oYyabitrYcxuN5iLI0Q2h5StEkwka4eUe4879njj9U6REX bWt4FmWR4G1iLUbECO8dT+F8kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2kbVAu B0jawHJ0Q5p+JB47TcptMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS5ZOb6C5vNgHZkSS0OgC3lo73Sgbd4NQb643KjkSNtPTQEWl2MFpb kprBKHiiSDq6lC9ZShta0pm1I/Q8OLGQv5082nui8HlIvTNqR9aiSytLXBAavCTb xRUy8aSiBaJvo6mLHtMkjI1qCo5H03gsHChdlVdDH6VADYA9DpuE35eZ7J55Yhya WF3TnrU2FeU56ky69B9ZF4xTIeBk1zqB670R63lyhTmviX0z6m+5+2o+6f71zaYW RB1ISL9Xx50NgLxxN17AVQlw31C56yGYieXjpS9CU7ryRhgnLkksKQBj7ajAauEK nY6xx7qdL7eRQW1aLIDk9sGWjtLN+0X5 -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:02 2025 by rpki-client