$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: Q+flo2/ldhrvmwaZ9oU39qtadGZw+gdYUCF0k7bLM7g= Subject key identifier: 58:31:CB:C3:D5:8A:FD:F1:82:0E:40:03:19:9E:03:BC:DA:6E:98:1A Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: F3 Signing time: Mon 03 Nov 2025 05:15:44 +0000 Manifest this update: Mon 03 Nov 2025 05:15:44 +0000 Manifest next update: Mon 10 Nov 2025 05:15:44 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: kLMBkCxCxHh4RYzWuCJjfkQBN+XETZD63WAKLG5EE0Q=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Nov 3 05:15:44 2025 GMT Not After : Nov 10 05:15:44 2025 GMT Subject: CN=69083a80-b538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:cc:9b:7d:ee:5f:d5:3f:19:35:62:88:8e: 20:01:82:92:22:52:0b:05:12:c3:06:58:db:6d:6a: 6b:f8:52:0c:7f:59:be:3a:f6:a5:24:bd:02:13:25: 16:35:61:b5:b0:7b:65:fa:14:55:17:83:42:f9:aa: 93:3d:48:1b:a3:04:e6:61:9f:93:16:30:e1:94:24: 72:c8:ec:26:c5:a5:63:2b:b5:f6:a1:46:45:ea:6e: 9f:a0:e1:80:d1:b4:fe:31:7a:bc:2c:6d:84:a7:b8: ea:57:b0:d6:56:d1:ff:ea:c2:15:ce:f1:56:65:27: 79:4c:af:ab:b2:7e:95:36:f2:99:b8:51:da:6c:71: 51:d6:cc:41:af:34:67:44:34:9b:d4:19:62:42:fb: 80:80:d9:81:ca:31:66:50:f5:a1:55:a5:97:97:4a: 1a:da:bf:1d:f3:0b:86:60:90:3f:88:23:b3:47:57: 42:59:32:58:dd:4d:75:8c:19:2e:60:99:2c:33:b9: b3:4d:38:6e:5a:10:00:75:41:27:70:ec:25:fa:a6: 4f:11:12:87:ee:12:04:75:99:50:a1:de:fd:7c:de: b5:cc:ec:ab:e8:72:52:9d:f5:3b:27:09:1f:75:5d: 1f:1c:a4:b0:84:d4:4d:79:81:f9:fb:b6:1c:38:07: f0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:31:CB:C3:D5:8A:FD:F1:82:0E:40:03:19:9E:03:BC:DA:6E:98:1A X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:1f:7a:b0:a7:93:7f:fc:d7:d6:24:74:33:38:fb:df:c4:21: e9:15:80:d2:b2:40:f9:38:3a:9a:68:26:4f:28:25:15:07:83: 9b:05:c2:99:ee:eb:d4:e9:e9:48:4f:96:3e:89:59:eb:f3:85: 29:5e:65:64:84:f5:2a:33:97:54:2e:31:76:c4:d6:d5:a3:d2: c4:39:22:c8:b3:e9:5b:ce:0f:94:a3:d8:b9:9e:b1:18:0d:b9: fd:95:c0:10:a0:37:24:d3:c7:db:76:a3:43:d7:e5:15:a4:66: a6:5c:d0:8f:74:83:f9:7b:28:80:1f:bd:3c:c9:48:c2:e3:4c: 82:bd:0b:54:27:d1:62:fd:6a:77:5c:e2:4f:ec:42:54:57:70: bd:87:2f:ed:77:6c:3d:0d:71:37:ad:2d:d9:d9:fc:20:83:ee: 83:22:46:b5:52:d9:74:6e:0c:31:99:c0:f9:e1:a9:39:36:40: 31:f2:57:43:a9:fa:ac:44:98:9b:6d:b1:a4:fc:0b:f3:07:53: 00:c0:14:5a:f5:48:d4:ac:6e:0e:f6:33:2d:30:e7:89:d9:a9: 40:44:6c:28:e1:3b:3a:ba:b9:83:19:4b:cb:6c:ac:7d:db:7e: c1:78:c9:e6:bf:ba:94:36:72:ff:ab:d1:08:22:2c:6b:53:3a: 77:62:72:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUxMTAzMDUxNTQ0WhcNMjUxMTEwMDUxNTQ0WjAYMRYwFAYD VQQDEw02OTA4M2E4MC1iNTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJrMm33uX9U/GTViiI4gAYKSIlILBRLDBljbbWpr+FIMf1m+OvalJL0CEyUW NWG1sHtl+hRVF4NC+aqTPUgbowTmYZ+TFjDhlCRyyOwmxaVjK7X2oUZF6m6foOGA 0bT+MXq8LG2Ep7jqV7DWVtH/6sIVzvFWZSd5TK+rsn6VNvKZuFHabHFR1sxBrzRn RDSb1BliQvuAgNmByjFmUPWhVaWXl0oa2r8d8wuGYJA/iCOzR1dCWTJY3U11jBku YJksM7mzTThuWhAAdUEncOwl+qZPERKH7hIEdZlQod79fN61zOyr6HJSnfU7Jwkf dV0fHKSwhNRNeYH5+7YcOAfwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgxy8PV iv3xgg5AAxmeA7zabpgaMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8H3qwp5N//NfWJHQzOPvfxCHpFYDSskD5ODqaaCZPKCUVB4ObBcKZ 7uvU6elIT5Y+iVnr84UpXmVkhPUqM5dULjF2xNbVo9LEOSLIs+lbzg+Uo9i5nrEY Dbn9lcAQoDck08fbdqND1+UVpGamXNCPdIP5eyiAH708yUjC40yCvQtUJ9Fi/Wp3 XOJP7EJUV3C9hy/td2w9DXE3rS3Z2fwgg+6DIka1Utl0bgwxmcD54ak5NkAx8ldD qfqsRJibbbGk/AvzB1MAwBRa9UjUrG4O9jMtMOeJ2alARGwo4Ts6urmDGUvLbKx9 237BeMnmv7qUNnL/q9EIIixrUzp3YnLb -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:41 2025 by rpki-client