$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: v2PuQp81C19TGI3lmHTBolHDLbjahLva8/ixQivGFl0= Subject key identifier: 7A:97:E5:0D:0F:BA:40:1D:EB:23:15:C7:A0:AA:3E:4E:21:1C:42:64 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D71 Signing time: Tue 04 Nov 2025 18:02:31 +0000 Manifest this update: Tue 04 Nov 2025 18:02:30 +0000 Manifest next update: Tue 11 Nov 2025 18:02:30 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: SGjpx+CNMXmewyw+QlJHAESCYAS1aTOp/BXAilsWwoU=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3463 (0xd87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Nov 4 18:02:30 2025 GMT Not After : Nov 11 18:02:30 2025 GMT Subject: CN=690a3fb7-1f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:26:5f:7b:12:db:ef:73:8b:58:41:f7:92:2c: c5:be:82:00:f8:31:d7:7e:7e:56:f2:fb:27:32:9e: 26:30:68:40:fa:8e:c8:72:ea:98:62:09:0b:b1:26: 74:1e:21:eb:68:1e:fb:8e:27:8b:ce:01:a9:11:db: 77:21:5b:55:16:18:52:f9:03:40:aa:1a:b8:a7:1a: f5:2a:25:ef:f6:40:16:22:ed:63:01:da:95:b6:c4: 2a:d9:0b:11:99:64:db:59:ed:15:b0:2a:92:33:67: 90:f3:f5:2c:59:d6:f6:82:ba:cd:7a:7f:db:f5:3f: 0a:96:f1:51:38:b0:47:89:e7:7f:fd:72:97:97:ff: c6:36:1c:e8:c9:d4:10:0b:ed:38:77:f4:60:37:7f: a5:35:1e:7f:be:d5:2c:ea:8d:7b:bd:ce:c3:7d:59: db:68:71:95:d3:c9:ff:73:c2:4a:29:6f:69:bd:1e: 8a:cd:31:f8:20:7d:cf:d7:da:d1:7d:d2:bd:f6:38: 2c:cb:37:f9:3d:97:95:96:b1:32:86:72:f6:ff:52: c8:5a:bc:1c:51:19:08:12:87:74:ff:1b:c6:cf:92: e0:8e:30:98:b9:45:bf:00:17:d6:76:6d:4c:91:f6: 9f:c2:ce:f6:19:b9:a8:36:38:24:e5:6d:f1:c9:d9: 76:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:97:E5:0D:0F:BA:40:1D:EB:23:15:C7:A0:AA:3E:4E:21:1C:42:64 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:10:a9:53:47:ad:18:0b:79:5a:f9:49:db:68:08:75:2b:e1: f2:d3:3c:dc:a3:67:67:34:3f:d0:cb:57:8b:7a:7f:1f:14:b9: 41:e1:b6:8a:90:82:c3:88:da:9a:c2:17:a7:96:67:52:c9:73: a5:64:f5:6d:3f:60:f3:39:b4:8f:b5:88:d6:9d:0c:22:c2:e8: 66:ba:0d:15:d6:ca:e7:e1:75:22:56:64:08:1d:dd:a7:1f:fa: 9f:c5:64:68:a5:72:cb:4e:6f:72:d3:86:45:ed:58:cd:03:34: 92:4e:ff:a6:84:cb:45:54:31:1d:4f:21:da:0e:cf:86:32:8b: 72:1c:1a:58:26:05:6e:ee:75:e7:b9:a9:ff:c4:02:88:ce:5b: e1:07:e5:8b:a0:fc:46:c7:b4:a2:ab:3e:fc:a9:e8:1b:bb:0d: 94:e7:42:bb:20:f3:35:92:41:3b:47:60:49:21:99:d2:af:35: 1a:e0:45:17:8a:c5:fd:51:14:70:0b:2a:81:4a:d4:b4:6b:55: 93:40:a8:56:36:2f:62:7c:b5:08:5b:fd:9a:6e:63:1a:de:47: 0d:8f:31:dd:37:a1:9a:3f:16:c4:9b:f3:6e:32:3c:b5:71:a6: fa:df:4d:4a:40:21:e6:7e:0b:4b:c0:d4:f2:7b:a2:47:7b:16: 98:c3:a2:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUxMTA0MTgwMjMwWhcNMjUxMTExMTgwMjMwWjAYMRYwFAYD VQQDEw02OTBhM2ZiNy0xZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSZfexLb73OLWEH3kizFvoIA+DHXfn5W8vsnMp4mMGhA+o7IcuqYYgkLsSZ0 HiHraB77jieLzgGpEdt3IVtVFhhS+QNAqhq4pxr1KiXv9kAWIu1jAdqVtsQq2QsR mWTbWe0VsCqSM2eQ8/UsWdb2grrNen/b9T8KlvFROLBHied//XKXl//GNhzoydQQ C+04d/RgN3+lNR5/vtUs6o17vc7DfVnbaHGV08n/c8JKKW9pvR6KzTH4IH3P19rR fdK99jgsyzf5PZeVlrEyhnL2/1LIWrwcURkIEod0/xvGz5LgjjCYuUW/ABfWdm1M kfafws72GbmoNjgk5W3xydl2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqX5Q0P ukAd6yMVx6CqPk4hHEJkMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMEKlTR60YC3la+UnbaAh1K+Hy0zzco2dnND/Qy1eLen8fFLlB4baK kILDiNqawhenlmdSyXOlZPVtP2DzObSPtYjWnQwiwuhmug0V1srn4XUiVmQIHd2n H/qfxWRopXLLTm9y04ZF7VjNAzSSTv+mhMtFVDEdTyHaDs+GMotyHBpYJgVu7nXn uan/xAKIzlvhB+WLoPxGx7Siqz78qegbuw2U50K7IPM1kkE7R2BJIZnSrzUa4EUX isX9URRwCyqBStS0a1WTQKhWNi9ifLUIW/2abmMa3kcNjzHdN6GaPxbEm/NuMjy1 cab6301KQCHmfgtLwNTye6JHexaYw6Jh -----END CERTIFICATE-----Generated at Wed Nov 5 16:36:53 2025 by rpki-client