$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json) Hash identifier: gd5Vp5tKq+X/voyGtQb+I1azbB/O3WqleX0YKhAg/94= Subject key identifier: 73:FE:AF:01:E0:9D:28:FF:85:87:FF:26:97:1A:69:E8:B3:5B:E3:62 Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 350E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft Manifest number: 34F9 Signing time: Tue 04 Nov 2025 14:46:16 +0000 Manifest this update: Tue 04 Nov 2025 14:46:15 +0000 Manifest next update: Tue 11 Nov 2025 14:46:15 +0000 Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: NuKyOEtt5lkQmYzc73NWQHYoeQ+WI0Z0ya0Kq8Uyy/Q=) 2: A7098B604A5411F0A2CC9015C4F9AE02.roa (hash: mBi2xBGJz7ABmwG7Kd/FaX5nMMQUKh+oy7XK2XR044o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13582 (0x350e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Nov 4 14:46:15 2025 GMT Not After : Nov 11 14:46:15 2025 GMT Subject: CN=690a11b8-52d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:55:17:48:73:50:0c:bb:52:94:17:46:fd: b5:e0:91:e3:be:2d:8e:a8:a1:9a:f0:b9:1d:7f:97: 77:57:5c:df:83:d9:08:0c:25:a6:dc:53:4f:38:a3: a1:4d:03:00:1f:11:b7:7b:13:2e:a4:d2:14:85:6f: 2a:91:2e:0c:7e:d7:63:02:08:35:d7:5c:b6:ab:e2: 17:cd:c8:15:3f:ef:7d:b0:45:0f:3a:1f:99:fa:de: 2b:aa:2b:7d:0d:56:00:aa:2e:a5:a3:4c:69:04:9a: 0b:10:dc:a5:97:a9:12:de:e3:a6:39:8f:d5:7e:f5: e3:c0:0b:a1:66:27:30:cf:50:d2:f3:2b:6a:96:eb: ff:fd:72:8a:58:f7:b7:55:95:69:cb:94:eb:b6:78: 40:b0:44:09:ea:f5:23:46:bd:cf:94:3e:80:a3:6f: 13:b7:4c:53:ee:49:b7:a7:09:15:6f:c7:77:d0:d5: e7:91:23:7d:5b:99:67:cd:50:14:c3:3a:4d:94:fe: b7:93:67:53:1b:dc:c1:8d:e7:5e:a0:43:65:9d:61: 60:e9:1f:32:fb:5d:0e:12:45:77:15:97:c6:43:aa: 06:02:bc:26:21:8e:e1:5c:ae:8e:a3:c9:bd:f8:c0: 32:d9:e8:32:5a:5f:a8:60:07:b2:da:6b:14:ee:04: 9f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FE:AF:01:E0:9D:28:FF:85:87:FF:26:97:1A:69:E8:B3:5B:E3:62 X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e1:00:23:74:91:37:95:7a:2a:cb:17:ae:2d:38:69:25:50: b6:42:23:28:04:77:3d:43:dd:e4:dc:60:d3:c9:2e:59:ef:a1: 0f:49:7f:14:e8:8c:73:46:42:cc:74:90:fb:06:4c:f8:30:b3: 8d:f8:2b:f0:53:4e:ef:8b:d3:cb:43:ad:f0:d2:ef:23:04:6b: 96:95:99:3f:19:92:18:c7:08:4e:18:75:d3:77:4c:f0:aa:08: 01:f6:ce:e9:b5:2a:95:77:05:83:96:2a:4d:a7:e8:80:29:8c: 08:33:0c:f7:48:26:b3:64:52:ce:48:df:b5:4e:49:60:cb:a0: 88:b2:a3:57:cc:36:7a:1b:b7:fd:81:60:19:a7:1a:d7:bd:3b: fb:3c:d8:15:4a:68:4e:e2:a7:7f:a9:47:68:99:23:b6:e1:d8: 9d:6f:60:ba:ff:52:64:cc:d2:8e:04:1c:6e:38:0b:4e:76:aa: 37:cc:47:7b:88:cd:1f:47:74:67:8a:0f:ae:4d:09:48:fc:68: 40:f5:f7:39:de:3f:80:00:87:18:0f:fe:a5:87:24:cd:6c:98: f3:b2:2a:ac:71:cc:42:b8:b7:07:c7:c9:32:80:f0:a0:0c:6e: 32:69:2b:6f:15:83:4a:ba:d5:19:1e:08:31:71:2a:fb:c4:bc: 5d:ae:71:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjUxMTA0MTQ0NjE1WhcNMjUxMTExMTQ0NjE1WjAYMRYwFAYD VQQDEw02OTBhMTFiOC01MmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4JVF0hzUAy7UpQXRv214JHjvi2OqKGa8Lkdf5d3V1zfg9kIDCWm3FNPOKOh TQMAHxG3exMupNIUhW8qkS4MftdjAgg111y2q+IXzcgVP+99sEUPOh+Z+t4rqit9 DVYAqi6lo0xpBJoLENyll6kS3uOmOY/VfvXjwAuhZicwz1DS8ytqluv//XKKWPe3 VZVpy5TrtnhAsEQJ6vUjRr3PlD6Ao28Tt0xT7km3pwkVb8d30NXnkSN9W5lnzVAU wzpNlP63k2dTG9zBjedeoENlnWFg6R8y+10OEkV3FZfGQ6oGArwmIY7hXK6Oo8m9 +MAy2egyWl+oYAey2msU7gSfcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHP+rwHg nSj/hYf/JpcaaeizW+NiMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU TU1Hdi1VQmc0VkJWXzA3UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm4QAjdJE3lXoqyxeuLThpJVC2QiMoBHc9Q93k3GDTyS5Z76EPSX8U 6IxzRkLMdJD7Bkz4MLON+CvwU07vi9PLQ63w0u8jBGuWlZk/GZIYxwhOGHXTd0zw qggB9s7ptSqVdwWDlipNp+iAKYwIMwz3SCazZFLOSN+1Tklgy6CIsqNXzDZ6G7f9 gWAZpxrXvTv7PNgVSmhO4qd/qUdomSO24didb2C6/1JkzNKOBBxuOAtOdqo3zEd7 iM0fR3Rnig+uTQlI/GhA9fc53j+AAIcYD/6lhyTNbJjzsiqsccxCuLcHx8kygPCg DG4yaStvFYNKutUZHggxcSr7xLxdrnGW -----END CERTIFICATE-----Generated at Wed Nov 5 16:58:54 2025 by rpki-client