$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft File: NDyCcTdhxY6CRQ2UqleWffm0bxU.mft (raw, json) Hash identifier: kSX5ANppSA5QIKhDhFBpwEfUjlHqzbbBk+4GZY2TW74= Subject key identifier: D6:AB:82:FD:BF:21:1C:8B:C7:12:35:B6:BE:DE:9F:8B:EA:08:42:21 Authority key identifier: 34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 Certificate issuer: /CN=A91DE10F/serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Certificate serial: 1860 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft Manifest number: 1856 Signing time: Sun 02 Nov 2025 16:30:40 +0000 Manifest this update: Sun 02 Nov 2025 16:30:40 +0000 Manifest next update: Sun 09 Nov 2025 16:30:40 +0000 Files and hashes: 1: NDyCcTdhxY6CRQ2UqleWffm0bxU.crl (hash: WlvxmEGuNY4AtVv0D9N5mTMXcL5PAfGAfanIC3DXXBI=) 2: 31AA8496B62811E7882B893BC4F9AE02.roa (hash: 0Z6kDXRBMxwvIo1Q10HNFq5Rb/AOMQ+sUO12LNkbJR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6240 (0x1860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE10F, serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Validity Not Before: Nov 2 16:30:40 2025 GMT Not After : Nov 9 16:30:40 2025 GMT Subject: CN=69078730-13c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:37:ef:0d:0b:43:74:c4:fc:17:20:43:a5:97: 71:4e:36:b4:f6:7a:fe:6c:16:5c:4d:c7:58:5d:c0: c3:7e:97:c6:d8:dc:c3:ab:fe:95:11:d9:06:bc:0b: a4:d2:0a:af:71:9c:95:2c:e9:81:45:bb:a7:ba:c1: aa:ff:8c:68:79:55:09:9c:c8:3d:05:ba:d6:c0:bc: 65:34:c5:13:74:dc:b7:d5:37:b3:35:73:04:1e:f8: 49:62:06:1e:63:a9:c8:a7:99:f2:0b:51:40:e4:1a: e4:fb:c0:00:a6:22:38:f8:11:02:e5:58:56:d1:55: 69:5e:f8:12:0c:2c:5a:a5:39:ee:c3:31:c7:e4:b3: 68:74:10:3e:4f:90:d9:11:9d:0e:a9:59:f8:ec:ed: cf:53:0d:27:fb:10:97:f1:16:73:b4:05:42:eb:e7: b0:51:e2:cf:80:fc:1d:e5:4a:ec:30:e5:b0:c2:0d: 6d:9e:39:d5:63:26:d9:d8:13:be:4c:51:48:03:c9: 8c:7b:76:fc:2d:db:56:31:19:02:2d:2f:17:62:64: 96:1b:80:23:7e:64:84:ce:c8:a1:ff:63:51:4d:90: ec:f5:ae:84:f8:51:58:42:c0:3e:91:3e:2b:f1:f3: c6:1d:96:5c:7d:db:90:ff:49:63:34:cd:2b:7c:6d: 05:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AB:82:FD:BF:21:1C:8B:C7:12:35:B6:BE:DE:9F:8B:EA:08:42:21 X509v3 Authority Key Identifier: keyid:34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7a:ef:55:bc:d7:2c:b0:6e:19:f4:d1:32:3a:a7:57:64:f3: 42:24:a5:08:a1:3d:f6:5a:14:d3:e2:58:29:23:3b:4b:ac:7d: 62:7c:2f:ea:77:cd:5a:f4:d7:21:99:44:39:ad:a0:6b:49:1c: 37:43:e6:38:9d:d7:2f:c0:8e:d8:78:aa:74:17:31:22:3b:ff: 7f:c8:bc:7e:8d:df:b0:72:57:10:96:94:5c:bf:07:02:f9:b5: ed:d3:59:90:fd:57:01:60:57:80:24:0e:da:0e:23:2d:e2:ef: 91:e7:eb:1c:ba:a0:2b:4d:69:31:98:b7:25:9e:58:f0:31:36: b2:a2:cf:36:49:7d:ea:24:d5:61:f5:32:92:1a:bb:3f:e3:5e: 07:24:7e:ec:d5:30:f5:96:a6:30:55:20:55:8f:27:06:c0:1e: 8c:d0:b7:27:5b:61:86:1b:e2:88:3f:3b:e5:5e:c5:cd:60:6c: 22:88:3e:25:ec:d8:d7:eb:de:30:ef:5b:8e:76:cc:c1:46:54: 3b:f8:f5:62:e1:4a:94:66:a7:4c:e4:5d:59:c0:e6:b6:85:00: fe:62:13:ec:03:2a:e7:17:5d:1d:13:85:8f:7d:12:0c:84:47: c6:77:4a:00:ab:cf:dc:87:cc:f5:ee:f0:59:dc:d3:4c:82:bd: f1:2a:10:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUxMEYxMTAvBgNVBAUTKDM0M0M4MjcxMzc2MUM1OEU4MjQ1MEQ5NEFBNTc5NjdE RjlCNDZGMTUwHhcNMjUxMTAyMTYzMDQwWhcNMjUxMTA5MTYzMDQwWjAYMRYwFAYD VQQDEw02OTA3ODczMC0xM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDfvDQtDdMT8FyBDpZdxTja09nr+bBZcTcdYXcDDfpfG2NzDq/6VEdkGvAuk 0gqvcZyVLOmBRbunusGq/4xoeVUJnMg9BbrWwLxlNMUTdNy31TezNXMEHvhJYgYe Y6nIp5nyC1FA5Brk+8AApiI4+BEC5VhW0VVpXvgSDCxapTnuwzHH5LNodBA+T5DZ EZ0OqVn47O3PUw0n+xCX8RZztAVC6+ewUeLPgPwd5UrsMOWwwg1tnjnVYybZ2BO+ TFFIA8mMe3b8LdtWMRkCLS8XYmSWG4AjfmSEzsih/2NRTZDs9a6E+FFYQsA+kT4r 8fPGHZZcfduQ/0ljNM0rfG0FVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNargv2/ IRyLxxI1tr7en4vqCEIhMB8GA1UdIwQYMBaAFDQ8gnE3YcWOgkUNlKpXln35tG8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTEwRi82MEVBNUMyQ0I1 RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZNkNSUTJVcWxlV2ZmbTBi eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05EeUNjVGRoeFk2Q1JRMlVxbGVXZmZtMGJ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTEwRi82MEVBNUMyQ0I1RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZ NkNSUTJVcWxlV2ZmbTBieFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAseu9VvNcssG4Z9NEyOqdXZPNCJKUIoT32WhTT4lgpIztLrH1ifC/q d81a9NchmUQ5raBrSRw3Q+Y4ndcvwI7YeKp0FzEiO/9/yLx+jd+wclcQlpRcvwcC +bXt01mQ/VcBYFeAJA7aDiMt4u+R5+scuqArTWkxmLclnljwMTayos82SX3qJNVh 9TKSGrs/414HJH7s1TD1lqYwVSBVjycGwB6M0LcnW2GGG+KIPzvlXsXNYGwiiD4l 7NjX694w71uOdszBRlQ7+PVi4UqUZqdM5F1ZwOa2hQD+YhPsAyrnF10dE4WPfRIM hEfGd0oAq8/ch8z17vBZ3NNMgr3xKhD6 -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:26 2025 by rpki-client