$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: hoLBZYef/8bzH2DhASn8dKslJFaAAmKGNdZ1PpmYZFI= Subject key identifier: 26:4F:A8:66:92:69:E0:04:A3:B3:39:64:B9:ED:9E:F5:CF:01:6D:D1 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 012C Signing time: Mon 03 Nov 2025 04:53:48 +0000 Manifest this update: Mon 03 Nov 2025 04:53:48 +0000 Manifest next update: Mon 10 Nov 2025 04:53:48 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: ragQDfjYTEJbDLRSfBhAZ/TWDmnmU8sRRQwLnxBUbfQ=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Nov 3 04:53:48 2025 GMT Not After : Nov 10 04:53:48 2025 GMT Subject: CN=6908355c-3348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1e:8d:70:78:3a:ec:13:14:26:4d:36:8f:38: d2:29:33:4c:fc:af:da:45:b3:75:6b:46:40:c4:f7: 00:d6:86:74:bc:39:33:5f:52:de:da:a2:cb:c6:e2: e4:b3:87:49:12:48:38:3f:85:c5:6a:61:7a:25:82: fd:bb:af:b7:35:7a:73:6f:64:6a:cf:34:69:ad:67: 1f:7b:80:c6:b1:13:bc:e6:e0:1f:45:9f:16:45:ee: ca:dc:60:6c:b6:ef:7e:a0:07:9f:5b:54:f3:b9:09: 98:f1:ee:e3:4a:79:fa:39:29:56:8f:31:a6:35:28: a3:8b:a6:06:bc:20:55:4b:6a:00:70:a6:cf:78:39: 3f:5d:a9:e5:d5:67:0d:24:76:1a:88:f0:9c:24:7e: f7:91:f3:a5:5f:48:a1:f8:e2:e7:ed:bb:26:c2:28: 9d:be:76:dd:c2:2b:4b:d1:ee:3c:2c:93:78:ae:e8: 0c:69:0f:7c:91:87:09:0b:3e:5b:45:79:72:25:54: 53:f8:eb:59:d1:2e:d0:5c:ca:5e:00:57:c8:93:0f: 61:6e:c4:9e:dc:ff:42:a4:50:1d:38:26:5e:38:05: d9:db:a7:21:5c:c6:8d:b7:51:b8:65:c5:b0:98:28: 41:f2:0b:06:d6:7f:a1:25:c9:b8:cc:00:55:f3:4d: bf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4F:A8:66:92:69:E0:04:A3:B3:39:64:B9:ED:9E:F5:CF:01:6D:D1 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:55:13:84:3f:ea:ce:9d:32:ff:c5:71:19:ed:fa:da:54:63: 71:1a:4b:7f:70:0e:4f:2c:72:e0:19:2a:2a:c1:03:c7:f6:14: f7:6b:13:fd:5b:be:e0:e8:aa:cb:4e:81:90:8e:45:0a:d2:da: ca:8d:9f:92:80:0a:a5:6f:6d:c5:c1:7c:bf:73:76:f8:df:91: 38:36:4e:23:bd:ba:00:c7:37:4f:5d:15:fd:d2:c1:6a:44:50: a2:5d:d2:81:15:b4:bc:04:3e:a1:b5:28:6e:c0:07:5a:01:1e: bb:73:b6:33:f5:97:66:4f:6c:df:d8:64:f1:01:56:98:d2:41: ee:27:9d:1d:90:cd:13:4e:d7:1c:87:2e:8b:75:b6:a7:a0:62: bd:6f:10:95:01:9f:e0:47:f6:8d:93:85:84:37:82:1e:82:7b: 1f:12:bf:b6:f2:bd:8c:d1:88:5e:8e:96:46:72:b4:30:16:25: c2:ca:8d:36:77:fb:0e:53:8c:9f:6b:e1:82:4a:e8:43:05:4f: 42:f4:9b:ea:2b:37:80:0c:61:10:7a:8b:60:e3:0d:4f:16:67: 3f:09:98:5c:64:7f:52:ea:21:01:46:dc:09:48:a7:d2:1f:1a: ae:03:6b:b3:31:4c:2a:2d:c8:e8:8f:c3:33:6e:13:ce:34:58: fa:93:ef:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUxMTAzMDQ1MzQ4WhcNMjUxMTEwMDQ1MzQ4WjAYMRYwFAYD VQQDEw02OTA4MzU1Yy0zMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8R6NcHg67BMUJk02jzjSKTNM/K/aRbN1a0ZAxPcA1oZ0vDkzX1Le2qLLxuLk s4dJEkg4P4XFamF6JYL9u6+3NXpzb2RqzzRprWcfe4DGsRO85uAfRZ8WRe7K3GBs tu9+oAefW1TzuQmY8e7jSnn6OSlWjzGmNSiji6YGvCBVS2oAcKbPeDk/Xanl1WcN JHYaiPCcJH73kfOlX0ih+OLn7bsmwiidvnbdwitL0e48LJN4rugMaQ98kYcJCz5b RXlyJVRT+OtZ0S7QXMpeAFfIkw9hbsSe3P9CpFAdOCZeOAXZ26chXMaNt1G4ZcWw mChB8gsG1n+hJcm4zABV802/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZPqGaS aeAEo7M5ZLntnvXPAW3RMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtVROEP+rOnTL/xXEZ7fraVGNxGkt/cA5PLHLgGSoqwQPH9hT3axP9 W77g6KrLToGQjkUK0trKjZ+SgAqlb23FwXy/c3b435E4Nk4jvboAxzdPXRX90sFq RFCiXdKBFbS8BD6htShuwAdaAR67c7Yz9ZdmT2zf2GTxAVaY0kHuJ50dkM0TTtcc hy6LdbanoGK9bxCVAZ/gR/aNk4WEN4IegnsfEr+28r2M0YhejpZGcrQwFiXCyo02 d/sOU4yfa+GCSuhDBU9C9JvqKzeADGEQeotg4w1PFmc/CZhcZH9S6iEBRtwJSKfS HxquA2uzMUwqLcjoj8MzbhPONFj6k+8B -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:05 2025 by rpki-client