$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: CAsj/KqMpHUdjcK4Vd3ybRIiK+rXe+//NYNNexa4kWA= Subject key identifier: B3:8B:AC:58:18:0B:AE:C1:9F:61:C6:F0:1A:FA:CA:FE:D3:1D:D4:12 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 01C2 Signing time: Wed 05 Nov 2025 03:07:38 +0000 Manifest this update: Wed 05 Nov 2025 03:07:38 +0000 Manifest next update: Wed 12 Nov 2025 03:07:38 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: pEiClRnPGV/5pR2yOwrrDhqpiUthEA85JD+3NRS9WRY=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Nov 5 03:07:38 2025 GMT Not After : Nov 12 03:07:38 2025 GMT Subject: CN=690abf7a-1fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:51:03:39:0a:53:b3:0d:35:9d:0c:92:f5:b2: de:c1:f3:68:5f:60:4b:dc:50:19:94:95:8b:71:52: ef:93:ab:54:e6:be:e4:7f:63:50:9f:a6:4b:ae:93: 9b:02:a0:13:04:51:e9:c5:52:71:c9:23:c0:8c:34: a3:2b:ae:b1:11:8e:48:49:19:d1:a9:58:9a:f9:b0: 43:39:71:f2:c4:bb:09:f6:19:64:30:95:eb:c5:c6: 3d:a4:43:db:a7:c1:f4:ab:34:7f:1c:88:cd:04:f1: e1:be:e3:54:91:fd:3b:d6:f6:13:2b:e7:09:1b:58: 90:6b:3e:a8:09:de:74:b5:cb:af:6b:73:47:1c:63: 8a:0f:01:cb:b4:28:f1:dd:62:3a:87:bf:4c:ef:7e: 07:b1:18:c0:4b:67:e7:a5:3a:03:cc:4b:67:f8:00: d5:e1:e9:d5:e8:92:a9:8f:73:cf:a3:96:47:15:fe: 26:0c:05:dc:51:71:d5:30:23:26:e1:b5:20:92:3e: 37:73:60:7b:6b:c1:95:64:09:a4:f2:b2:cc:86:b0: bf:f6:5a:7a:e8:8d:7e:8f:87:c6:0f:8b:b5:7a:69: 23:48:9e:1e:01:bc:c6:c7:5b:7d:4a:36:b7:69:c8: f0:cd:e0:ee:ba:49:68:48:1f:6e:39:16:c1:8b:67: 75:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8B:AC:58:18:0B:AE:C1:9F:61:C6:F0:1A:FA:CA:FE:D3:1D:D4:12 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:70:22:13:21:ed:56:50:97:7f:e8:f0:51:83:63:3f:ae:c2: c3:a4:7e:c5:40:e8:31:07:9b:65:bb:1e:34:4c:86:6f:37:f9: f6:ee:ac:ba:8a:24:fb:46:39:62:0d:13:34:ea:f4:52:1a:52: da:80:89:e5:55:46:5b:b8:58:c2:9c:00:f0:6e:c7:11:7a:d0: 4b:88:20:49:7b:9f:65:59:8d:b4:06:74:50:21:aa:4a:e5:4b: ad:fe:97:33:a6:40:7b:50:26:69:0e:aa:19:e9:99:2a:36:f0: 2e:54:9d:95:3f:5b:56:5c:f8:83:07:d0:c8:48:c6:2c:86:51: a4:44:ed:db:ac:d1:89:d8:5d:4c:bf:0e:46:cd:35:ea:20:77: d8:2a:82:4b:ef:cc:00:88:10:57:62:d0:71:86:25:8d:96:ed: c3:1e:56:0c:86:ce:d6:9f:02:6b:ed:1f:0d:a4:57:bc:a9:78: 92:d7:96:75:8c:84:16:6b:f0:c6:b2:a7:7c:14:24:a8:24:ff: 93:45:58:8f:77:90:fd:53:63:55:8e:c5:93:88:bf:05:41:b9: 5c:0f:18:7c:33:26:58:eb:47:78:36:32:fe:3a:cd:8d:e4:9a: 62:fe:67:f7:ae:6f:bf:be:98:3e:c5:36:80:c8:57:a3:43:9a: e4:c4:a7:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUxMTA1MDMwNzM4WhcNMjUxMTEyMDMwNzM4WjAYMRYwFAYD VQQDEw02OTBhYmY3YS0xZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lEDOQpTsw01nQyS9bLewfNoX2BL3FAZlJWLcVLvk6tU5r7kf2NQn6ZLrpOb AqATBFHpxVJxySPAjDSjK66xEY5ISRnRqVia+bBDOXHyxLsJ9hlkMJXrxcY9pEPb p8H0qzR/HIjNBPHhvuNUkf071vYTK+cJG1iQaz6oCd50tcuva3NHHGOKDwHLtCjx 3WI6h79M734HsRjAS2fnpToDzEtn+ADV4enV6JKpj3PPo5ZHFf4mDAXcUXHVMCMm 4bUgkj43c2B7a8GVZAmk8rLMhrC/9lp66I1+j4fGD4u1emkjSJ4eAbzGx1t9Sja3 acjwzeDuukloSB9uORbBi2d1yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOLrFgY C67Bn2HG8Br6yv7THdQSMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCacCITIe1WUJd/6PBRg2M/rsLDpH7FQOgxB5tlux40TIZvN/n27qy6 iiT7RjliDRM06vRSGlLagInlVUZbuFjCnADwbscRetBLiCBJe59lWY20BnRQIapK 5Uut/pczpkB7UCZpDqoZ6ZkqNvAuVJ2VP1tWXPiDB9DISMYshlGkRO3brNGJ2F1M vw5GzTXqIHfYKoJL78wAiBBXYtBxhiWNlu3DHlYMhs7WnwJr7R8NpFe8qXiS15Z1 jIQWa/DGsqd8FCSoJP+TRViPd5D9U2NVjsWTiL8FQblcDxh8MyZY60d4NjL+Os2N 5Jpi/mf3rm+/vpg+xTaAyFejQ5rkxKcj -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:30 2025 by rpki-client