$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: wKuMPWR3quoCBSQ7rsd0GbV9S4+KQ3o2lXKhzlNddiw= Subject key identifier: E6:BD:5C:EA:3B:F1:EB:9A:0B:63:BA:0C:C3:CC:96:7A:59:B9:5E:4A Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 0E Signing time: Sun 19 Oct 2025 11:34:18 +0000 Manifest this update: Sun 19 Oct 2025 11:34:17 +0000 Manifest next update: Sun 26 Oct 2025 11:34:17 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: 0k3brQA8l83BTTQmYUChhNjtm9bg9WmxPhj7QVQxUhU=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lVwKB14i6OpwyRz8FsA7PbQdrXdHjD1P3S/SDqyzydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Oct 19 11:34:17 2025 GMT Not After : Oct 26 11:34:17 2025 GMT Subject: CN=68f4ccb9-2a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:48:f4:29:4c:34:61:9e:5c:89:29:57:78: b8:c2:e8:68:ca:d5:c8:5b:f3:45:ad:e3:31:e8:07: 8d:b4:f1:ac:03:b2:f1:d4:ea:92:54:26:d5:42:09: 52:3e:25:bf:63:e6:86:aa:ed:06:33:f2:93:11:2a: b1:9f:d6:dc:ec:ce:89:b0:cf:7c:5d:a5:3a:bb:7e: 8f:61:4a:35:1b:02:d1:13:5f:21:c7:f8:5e:a3:39: 55:6a:72:fc:6f:c4:31:67:b6:6d:59:60:41:ec:4c: 0b:26:07:1e:95:74:cd:71:8d:fe:c8:83:65:93:e6: 29:18:f0:37:bb:cc:e1:03:36:d1:d5:41:c1:23:56: 55:21:8e:27:4c:b4:69:01:3e:9d:49:4b:bb:6d:f7: 9c:4f:de:72:9a:0d:e1:32:96:60:57:f5:8b:e5:91: 69:53:bc:48:fc:59:2b:e7:b8:41:e9:aa:67:f4:dd: 7e:dc:cf:8a:e7:3c:d3:21:87:c5:8e:cf:67:21:02: e0:5c:29:76:63:2d:30:29:83:0a:59:e0:07:fb:1d: 71:5c:20:aa:1c:00:f9:2e:42:d2:41:0c:f4:72:aa: 88:ec:4f:e1:a4:b9:3c:73:9c:c9:fc:ff:94:96:dc: fc:ad:80:e3:b0:0a:1f:ad:c0:10:94:a7:18:e5:5f: 50:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BD:5C:EA:3B:F1:EB:9A:0B:63:BA:0C:C3:CC:96:7A:59:B9:5E:4A X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:22:a3:1b:37:af:a8:46:46:42:79:a0:7a:0b:80:96:40:7e: e8:4e:c9:c0:b6:28:9e:3d:b0:59:14:3b:29:e9:07:e5:33:58: 73:73:55:62:46:cc:20:3d:b1:b5:45:6f:92:6f:47:27:cb:9f: 2b:7d:34:18:55:bc:3a:1d:d0:4e:16:a3:2e:9a:7f:ea:7b:0a: c4:9d:b3:d1:a6:6d:fa:f5:59:83:d9:d4:41:de:7d:9c:fe:fa: 69:68:6c:18:ff:ab:93:7c:e7:f1:8f:48:33:0d:2c:d6:1b:18: d4:ea:37:1f:1c:9c:0f:d5:09:3b:9c:01:c4:e6:b0:68:fd:c2: c7:26:96:5e:06:c3:2d:66:49:66:be:c9:f9:f4:1d:2e:73:f5: ba:a6:10:77:48:73:cc:77:f1:b5:05:f6:70:72:e0:ff:d3:0c: 22:3f:ea:c9:92:bf:41:7e:2c:9e:29:d3:c6:1c:2e:89:00:37: 3e:9f:b5:79:24:cd:5d:d6:a8:c6:93:18:7d:fc:86:79:fb:45: 0c:51:f4:b3:44:55:f6:a0:ad:1a:68:4c:94:0f:cc:fd:15:fa: 96:2d:ec:ff:be:0d:5d:bf:87:f0:9a:af:9e:1b:09:13:cf:a7: 03:6d:b1:df:1b:f7:a5:cc:ac:c7:cc:9d:10:84:04:56:f0:e9: a4:7e:8f:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNTEwMTkxMTM0MTdaFw0yNTEwMjYxMTM0MTdaMBgxFjAUBgNV BAMTDTY4ZjRjY2I5LTJhNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZa0j0KUw0YZ5ciSlXeLjC6GjK1chb80Wt4zHoB4208awDsvHU6pJUJtVCCVI+ Jb9j5oaq7QYz8pMRKrGf1tzszomwz3xdpTq7fo9hSjUbAtETXyHH+F6jOVVqcvxv xDFntm1ZYEHsTAsmBx6VdM1xjf7Ig2WT5ikY8De7zOEDNtHVQcEjVlUhjidMtGkB Pp1JS7tt95xP3nKaDeEylmBX9YvlkWlTvEj8WSvnuEHpqmf03X7cz4rnPNMhh8WO z2chAuBcKXZjLTApgwpZ4Af7HXFcIKocAPkuQtJBDPRyqojsT+GkuTxznMn8/5SW 3PytgOOwCh+twBCUpxjlX1AvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5r1c6jvx 65oLY7oMw8yWelm5XkowHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALMioxs3r6hGRkJ5oHoLgJZAfuhOycC2KJ49sFkUOynpB+UzWHNzVWJG zCA9sbVFb5JvRyfLnyt9NBhVvDod0E4Woy6af+p7CsSds9Gmbfr1WYPZ1EHefZz+ +mlobBj/q5N85/GPSDMNLNYbGNTqNx8cnA/VCTucAcTmsGj9wscmll4Gwy1mSWa+ yfn0HS5z9bqmEHdIc8x38bUF9nBy4P/TDCI/6smSv0F+LJ4p08YcLokANz6ftXkk zV3WqMaTGH38hnn7RQxR9LNEVfagrRpoTJQPzP0V+pYt7P++DV2/h/Car54bCRPP pwNtsd8b96XMrMfMnRCEBFbw6aR+j1o= -----END CERTIFICATE-----Generated at Tue Oct 21 02:18:00 2025 by rpki-client