$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft File: NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft (raw, json) Hash identifier: bLfsAAW18PSWoRWDx19EkkAtjHSwX73gOZE6E03+3wQ= Subject key identifier: 07:1C:D7:5F:B9:54:B9:D6:00:CB:78:8B:6F:2F:51:F8:23:24:AA:2B Authority key identifier: 35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 Certificate issuer: /CN=A91E2EFF/serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft Manifest number: 4A Signing time: Mon 03 Nov 2025 07:19:34 +0000 Manifest this update: Mon 03 Nov 2025 07:19:34 +0000 Manifest next update: Mon 10 Nov 2025 07:19:34 +0000 Files and hashes: 1: NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl (hash: Lb3aRxMWtT8z9TyJM8FjPod1HQ6qCZg6OBnkTjkgP4M=) 2: 370DA046484A11F0B96B9D10C4F9AE02.roa (hash: 2Lm246NHiIIsj3yU5G9cofOj46hOe93SJKM95sww3VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Validity Not Before: Nov 3 07:19:34 2025 GMT Not After : Nov 10 07:19:34 2025 GMT Subject: CN=69085786-3efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:34:58:6c:07:64:30:7e:60:31:95:f8:13:37: ce:68:79:21:cc:d6:51:87:fe:92:e1:d4:69:1e:29: 92:01:a3:2e:ff:f4:2f:d6:d1:d5:0f:9b:8b:15:56: 30:db:df:f9:8c:8b:5b:ce:4a:4b:af:b5:70:09:92: 5d:e1:c8:32:06:1e:9c:06:a3:5c:d5:b6:1f:ac:e4: a7:5c:ab:c9:7f:d2:33:ec:a4:e9:13:a5:81:11:49: e1:df:38:67:94:f1:c0:0b:7b:8f:b2:49:ef:08:7a: 85:ba:c1:3a:38:c7:49:2e:5c:db:0c:90:b4:8c:73: ff:dc:c5:b6:7e:7c:61:c4:44:a5:5e:78:fa:4f:91: 2c:94:b9:5f:90:c1:bd:54:b2:ef:2d:b9:80:6b:d9: b0:b4:d0:ca:6a:2e:bb:ba:63:1f:42:db:28:f7:f1: 75:b8:98:65:5d:e8:15:6c:5e:df:e8:10:88:16:ff: 8c:ab:c7:d9:a5:93:67:60:a4:00:7f:3e:1e:44:3c: 5b:25:a9:67:9a:a4:88:49:1d:dd:56:b8:03:af:7f: 6f:67:65:d2:40:78:3b:d5:73:5f:e3:ce:bc:59:72: 2c:50:77:81:b8:63:8c:4c:0f:4e:8c:55:5e:a9:af: e7:8a:85:29:bc:ec:56:d9:17:c6:be:78:6e:11:11: 95:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1C:D7:5F:B9:54:B9:D6:00:CB:78:8B:6F:2F:51:F8:23:24:AA:2B X509v3 Authority Key Identifier: keyid:35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:e2:e3:e9:23:d3:e4:47:34:68:05:a2:57:73:0a:81:64:e6: 08:44:7c:62:f9:5c:7b:80:e5:91:74:a4:51:29:48:f2:df:8c: 47:ce:67:52:69:92:48:27:17:7f:af:eb:43:c1:c3:f8:fc:1c: 31:f3:a4:39:27:30:cc:2c:f6:6b:62:e5:ca:3b:46:08:a3:f3: 8a:5b:90:85:49:bd:73:8c:81:d8:a5:b5:1f:6b:bb:66:58:9b: 9f:07:68:58:02:61:c6:44:5f:ec:53:37:b6:4c:85:89:d2:5f: a4:87:bd:5c:c0:aa:db:dd:1f:df:24:38:d6:b6:ad:cc:77:2d: 0f:1d:65:27:16:2c:31:25:0d:da:aa:d1:d2:1a:b8:ac:95:7c: 6b:df:6a:51:77:7c:83:8b:85:33:06:33:e4:3f:75:1c:80:a1: fe:22:eb:bb:d3:8a:b4:51:c6:71:38:50:de:1f:2a:9f:a6:36: 73:ca:49:3b:db:11:dd:40:84:89:b1:d0:ef:2b:7b:0b:24:81: 3e:ba:08:0e:62:2f:57:70:91:ef:0e:d1:97:b1:11:8d:61:80: 5b:f9:f2:49:42:90:fa:b2:72:75:9a:fb:c0:83:42:10:6a:d0: 74:6a:29:c2:02:a1:43:80:b3:3d:02:87:b1:38:75:47:68:1b: 54:04:45:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMzU0MzNDOUVDNDA4MDk5RjcwMThCQzUxNDQxRDIyQzRD MTFGQzM4NTAeFw0yNTExMDMwNzE5MzRaFw0yNTExMTAwNzE5MzRaMBgxFjAUBgNV BAMTDTY5MDg1Nzg2LTNlZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzNFhsB2QwfmAxlfgTN85oeSHM1lGH/pLh1GkeKZIBoy7/9C/W0dUPm4sVVjDb 3/mMi1vOSkuvtXAJkl3hyDIGHpwGo1zVth+s5Kdcq8l/0jPspOkTpYERSeHfOGeU 8cALe4+ySe8IeoW6wTo4x0kuXNsMkLSMc//cxbZ+fGHERKVeePpPkSyUuV+Qwb1U su8tuYBr2bC00MpqLru6Yx9C2yj38XW4mGVd6BVsXt/oEIgW/4yrx9mlk2dgpAB/ Ph5EPFslqWeapIhJHd1WuAOvf29nZdJAeDvVc1/jzrxZcixQd4G4Y4xMD06MVV6p r+eKhSm87FbZF8a+eG4REZWnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBxzXX7lU udYAy3iLby9R+CMkqiswHwYDVR0jBBgwFoAUNUM8nsQICZ9wGLxRRB0ixMEfw4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0FCOTc1QkNFNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5d0dMeFJSQjBpeE1FZnc0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlVNOG5zUUlDWjl3R0x4UlJCMGl4TUVmdzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0FCOTc1QkNFNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5 d0dMeFJSQjBpeE1FZnc0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFfi4+kj0+RHNGgFoldzCoFk5ghEfGL5XHuA5ZF0pFEpSPLfjEfOZ1Jp kkgnF3+v60PBw/j8HDHzpDknMMws9mti5co7Rgij84pbkIVJvXOMgdiltR9ru2ZY m58HaFgCYcZEX+xTN7ZMhYnSX6SHvVzAqtvdH98kONa2rcx3LQ8dZScWLDElDdqq 0dIauKyVfGvfalF3fIOLhTMGM+Q/dRyAof4i67vTirRRxnE4UN4fKp+mNnPKSTvb Ed1AhImx0O8rewskgT66CA5iL1dwke8O0ZexEY1hgFv58klCkPqycnWa+8CDQhBq 0HRqKcICoUOAsz0Ch7E4dUdoG1QERdY= -----END CERTIFICATE-----Generated at Wed Nov 5 00:06:03 2025 by rpki-client