$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: pOEOOPGywpZHEP50m5CBcPWihSfXwKoci+JwpZz+PN4= Subject key identifier: B1:9E:46:59:63:24:3F:01:D0:05:34:1B:F1:F5:D0:E5:2B:54:FB:27 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08BA Signing time: Tue 04 Nov 2025 20:33:13 +0000 Manifest this update: Tue 04 Nov 2025 20:33:12 +0000 Manifest next update: Tue 11 Nov 2025 20:33:12 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: WNkJZgAEUAUZeRtJKXOkWR1qBh8fA9KmdS8uvnbtz/A=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Nov 4 20:33:12 2025 GMT Not After : Nov 11 20:33:12 2025 GMT Subject: CN=690a6308-f7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:59:f9:1c:2f:37:6e:88:68:2f:c5:b0:8f: 58:30:ad:29:22:98:d6:3e:49:58:b4:6b:f3:c0:d0: 8d:82:8b:ef:cc:28:07:99:2d:6f:66:ca:c2:77:df: 87:1e:7d:e1:82:75:b5:d2:6b:2d:96:62:93:a7:00: a3:98:f6:f6:57:f3:b1:e3:48:e7:19:5e:6e:fd:00: b8:92:77:e0:ef:8d:0f:3f:0a:64:45:39:02:bd:4b: 0a:00:a5:a7:80:9c:e0:32:9a:83:8f:9a:5a:48:a8: 39:01:4b:e3:8c:73:ee:47:b2:8b:0e:43:6c:d1:28: 74:8f:40:b1:18:d6:86:a1:88:e6:95:4c:e4:9d:d4: c1:a2:fe:1d:51:96:55:75:62:7b:af:dd:f6:0e:1d: 03:97:a6:91:6a:86:f0:e7:0e:38:12:d2:5c:77:2d: f6:b8:38:b0:18:c0:ad:87:b2:3f:2b:b1:a1:b8:1d: bb:43:31:9e:48:d9:2d:06:47:aa:b8:93:f4:3b:8c: 03:5e:55:e6:7e:1b:c9:d2:1a:c6:75:fc:f2:63:f0: 76:2c:67:be:b3:ee:45:c5:f2:20:99:79:08:01:f4: 80:ae:fa:86:66:4e:19:1e:fc:b0:9a:99:d5:55:f8: 11:a6:2a:33:12:0f:07:15:63:c6:57:12:0f:2d:45: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9E:46:59:63:24:3F:01:D0:05:34:1B:F1:F5:D0:E5:2B:54:FB:27 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:0f:b9:81:61:b6:6f:1d:e7:56:d1:1e:92:dc:05:c5:ee:76: 95:7f:db:93:94:24:95:f7:86:69:90:66:f7:d4:bf:f4:da:d4: e1:2c:93:00:43:5a:b6:88:63:7b:fe:dd:dc:5a:3a:2d:e2:b0: 48:b6:92:3a:07:90:ff:ec:f8:45:db:ee:66:d7:c5:64:e8:d5: 82:cf:6f:d2:88:d0:bb:34:2a:25:a8:a7:3d:69:03:a1:db:da: a3:6e:f0:f2:38:c8:24:7e:bd:7e:dc:74:90:a1:4d:26:4e:6d: 08:d6:ce:d0:60:e4:83:a1:c4:80:a0:c8:71:92:c8:a3:fb:65: 35:62:c2:02:4d:9b:c8:18:ce:98:13:59:07:95:49:a3:91:9e: ae:af:cd:f8:ca:ec:c9:25:e9:8a:49:fa:ec:c6:ef:49:2c:f0: d9:6c:6e:ae:af:ad:ef:0f:04:c6:9a:2b:38:8d:3e:3b:55:53: 2c:17:ad:bd:ac:d8:43:0c:c7:75:64:5d:8c:89:13:83:4a:4f: 0d:4c:ef:c7:c4:a2:5b:7a:05:d9:08:83:d1:9f:df:01:07:53: 89:32:28:fd:1b:e8:16:1a:e3:78:3f:83:43:17:65:e6:71:a1: 7d:5a:81:13:ae:71:f7:2e:d9:a7:9f:49:76:c3:52:dd:61:8a: 1e:bf:c9:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUxMTA0MjAzMzEyWhcNMjUxMTExMjAzMzEyWjAYMRYwFAYD VQQDEw02OTBhNjMwOC1mN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N5Z+RwvN26IaC/FsI9YMK0pIpjWPklYtGvzwNCNgovvzCgHmS1vZsrCd9+H Hn3hgnW10mstlmKTpwCjmPb2V/Ox40jnGV5u/QC4knfg740PPwpkRTkCvUsKAKWn gJzgMpqDj5paSKg5AUvjjHPuR7KLDkNs0Sh0j0CxGNaGoYjmlUzkndTBov4dUZZV dWJ7r932Dh0Dl6aRaobw5w44EtJcdy32uDiwGMCth7I/K7GhuB27QzGeSNktBkeq uJP0O4wDXlXmfhvJ0hrGdfzyY/B2LGe+s+5FxfIgmXkIAfSArvqGZk4ZHvywmpnV VfgRpiozEg8HFWPGVxIPLUXMCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGeRllj JD8B0AU0G/H10OUrVPsnMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPD7mBYbZvHedW0R6S3AXF7naVf9uTlCSV94ZpkGb31L/02tThLJMA Q1q2iGN7/t3cWjot4rBItpI6B5D/7PhF2+5m18Vk6NWCz2/SiNC7NColqKc9aQOh 29qjbvDyOMgkfr1+3HSQoU0mTm0I1s7QYOSDocSAoMhxksij+2U1YsICTZvIGM6Y E1kHlUmjkZ6ur834yuzJJemKSfrsxu9JLPDZbG6ur63vDwTGmis4jT47VVMsF629 rNhDDMd1ZF2MiRODSk8NTO/HxKJbegXZCIPRn98BB1OJMij9G+gWGuN4P4NDF2Xm caF9WoETrnH3Ltmnn0l2w1LdYYoev8mt -----END CERTIFICATE-----Generated at Wed Nov 5 04:28:50 2025 by rpki-client