$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: L6V2KGGRtdSfL7pIJTRtFK2LjQ+UlXP222waq8Pv+PE= Subject key identifier: 50:9F:E7:AB:E2:CE:AE:09:81:0B:C3:16:0E:E1:66:FF:15:55:E9:2F Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 02FA Signing time: Wed 05 Nov 2025 01:17:42 +0000 Manifest this update: Wed 05 Nov 2025 01:17:42 +0000 Manifest next update: Wed 12 Nov 2025 01:17:42 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: ZwQETAQEH5N0SinDMY+z3iKJkXS673/sfmJa5xO0jvs=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Nov 5 01:17:42 2025 GMT Not After : Nov 12 01:17:42 2025 GMT Subject: CN=690aa5b6-930d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:31:51:29:98:15:8c:3a:0e:69:da:99:0a:cc: 4a:4e:55:1e:2c:d8:84:b3:cd:ed:af:a6:bb:20:98: a0:d4:b0:a1:9a:76:8e:16:bc:e3:d4:ca:70:99:54: a5:61:db:18:6d:33:5e:53:f4:c9:4d:f9:5d:9c:a6: 96:0b:56:15:7a:d0:4e:79:d3:40:e8:9e:ab:48:18: 2b:37:93:2f:a9:b2:73:e1:96:02:69:aa:3d:d7:4d: 49:4d:28:5c:1f:ca:94:f8:32:b6:ea:95:b2:da:00: b1:6c:26:6a:51:5a:be:8e:07:f6:db:0d:aa:c0:d9: 70:59:c1:14:f8:82:1c:d8:58:ff:55:fd:62:14:b7: aa:af:36:b0:96:15:aa:fd:94:9d:13:52:b8:b8:f2: 3f:ef:50:6e:60:d9:55:39:c8:a7:cf:2a:d2:44:cb: 9c:d4:35:75:a4:30:4e:66:06:af:16:6e:94:1d:7d: 6c:a0:b5:42:54:b0:62:d3:0a:cf:16:4b:e2:41:ff: f0:22:25:c1:ed:ac:99:17:2c:3e:29:f9:01:38:e8: 9d:ad:e4:b9:80:1d:a1:2f:59:60:65:a8:75:47:33: 83:8d:22:ff:35:ae:97:7d:9f:c0:a4:d1:ce:69:61: 86:84:b9:db:69:c5:20:ae:93:03:2a:5d:5b:52:e1: 43:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9F:E7:AB:E2:CE:AE:09:81:0B:C3:16:0E:E1:66:FF:15:55:E9:2F X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:e3:e8:9f:fd:1a:9e:60:88:85:37:14:ab:35:50:da:d7:43: 0f:89:89:4f:0f:6c:80:21:e8:e5:31:9e:dc:42:84:54:71:cd: c9:03:aa:f8:61:86:cc:2c:2b:2e:e5:49:ff:bd:f9:d9:24:5b: 71:a2:6d:fb:d9:99:fb:40:00:fa:e0:cf:f6:e7:2d:74:cc:84: 88:86:d2:82:ff:39:09:95:6b:a5:e8:58:90:d3:42:9d:53:73: 6f:f9:a9:60:1f:c7:77:d4:b1:2c:f1:97:94:b2:43:16:06:1d: 26:ab:b5:ba:86:d4:f0:51:2a:ca:75:8a:08:c9:64:98:4b:33: 36:0b:4f:52:0f:e7:9e:71:98:1f:4c:82:74:61:a5:27:e9:b3: 6d:7e:2c:a3:e3:2e:8f:26:b7:a6:35:18:bf:d7:d0:96:9e:a7: 22:58:11:31:86:ec:3a:d2:7b:ca:a2:09:12:fb:e4:28:bb:18: c6:e7:ee:84:6a:af:ef:99:af:aa:be:9a:08:80:d5:76:69:e9: 2c:21:0e:ea:a2:cb:c7:5e:62:54:9f:be:1e:ff:8c:17:1c:65: 42:05:c1:3a:d2:0b:7a:5b:93:4f:5f:f5:5c:82:a1:45:b6:48: bd:c9:1d:fa:2b:e5:30:a1:59:4a:fa:ed:fb:7c:b5:b3:85:ce: b6:87:ee:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUxMTA1MDExNzQyWhcNMjUxMTEyMDExNzQyWjAYMRYwFAYD VQQDEw02OTBhYTViNi05MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTFRKZgVjDoOadqZCsxKTlUeLNiEs83tr6a7IJig1LChmnaOFrzj1MpwmVSl YdsYbTNeU/TJTfldnKaWC1YVetBOedNA6J6rSBgrN5MvqbJz4ZYCaao9101JTShc H8qU+DK26pWy2gCxbCZqUVq+jgf22w2qwNlwWcEU+IIc2Fj/Vf1iFLeqrzawlhWq /ZSdE1K4uPI/71BuYNlVOcinzyrSRMuc1DV1pDBOZgavFm6UHX1soLVCVLBi0wrP FkviQf/wIiXB7ayZFyw+KfkBOOidreS5gB2hL1lgZah1RzODjSL/Na6XfZ/ApNHO aWGGhLnbacUgrpMDKl1bUuFDMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCf56vi zq4JgQvDFg7hZv8VVekvMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd4+if/RqeYIiFNxSrNVDa10MPiYlPD2yAIejlMZ7cQoRUcc3JA6r4 YYbMLCsu5Un/vfnZJFtxom372Zn7QAD64M/25y10zISIhtKC/zkJlWul6FiQ00Kd U3Nv+algH8d31LEs8ZeUskMWBh0mq7W6htTwUSrKdYoIyWSYSzM2C09SD+eecZgf TIJ0YaUn6bNtfiyj4y6PJremNRi/19CWnqciWBExhuw60nvKogkS++QouxjG5+6E aq/vma+qvpoIgNV2aeksIQ7qosvHXmJUn74e/4wXHGVCBcE60gt6W5NPX/VcgqFF tki9yR36K+UwoVlK+u37fLWzhc62h+5B -----END CERTIFICATE-----Generated at Wed Nov 5 13:32:19 2025 by rpki-client