$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: Be1ZTwkkkf47CZh06SidAh/a5zzOV8xeNcU010Zjogc= Subject key identifier: 54:B7:C9:0F:81:21:5C:39:0B:86:F1:03:4C:F8:3B:39:56:B1:44:71 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CBA Signing time: Sat 18 Oct 2025 18:56:24 +0000 Manifest this update: Sat 18 Oct 2025 18:56:23 +0000 Manifest next update: Sat 25 Oct 2025 18:56:23 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: o5zSuOth5zPJhpX97RBE1OVVIabkMh6Qx8RBwDYdjh4=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Oct 18 18:56:23 2025 GMT Not After : Oct 25 18:56:23 2025 GMT Subject: CN=68f3e2d8-9ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:42:c1:ff:44:48:d4:a9:4f:31:b9:fd:a4: 70:1d:35:fc:da:f4:84:6f:d5:aa:9a:9b:f5:23:a1: a2:67:ad:77:a8:12:60:57:a2:67:2d:1b:04:76:d7: 10:ef:28:1e:3b:fa:c4:c8:d1:a9:5a:82:ac:6f:15: 81:97:64:62:96:51:fd:b3:e4:e0:e4:6c:4b:25:e5: c9:bb:b7:ab:10:e2:41:2c:e9:b8:a5:f7:44:88:53: cf:fb:16:fe:89:e1:d4:87:a8:8e:79:4a:43:d7:5d: 82:7f:67:b0:f7:ea:c0:4d:69:c2:ee:e6:ba:3a:44: 01:50:5c:a9:98:7c:aa:8b:8a:c2:da:4e:fa:90:58: e7:7e:e2:c7:35:b3:55:35:6f:b1:30:3e:4b:57:4a: 11:8b:03:ca:10:b7:a9:81:91:6d:1b:1e:64:26:b5: 05:1f:3b:03:5b:c6:10:58:ed:f5:c1:ae:a5:73:71: 0a:ce:c2:c7:c4:ae:0f:ac:da:56:df:d5:b6:07:98: e0:a1:04:7e:f5:55:6b:29:8c:77:b0:91:43:4b:a5: 6e:69:e8:ba:bf:ed:58:96:eb:41:39:22:93:99:79: 66:38:86:76:cc:8a:1e:ec:c3:e8:1c:ef:2c:e5:2a: bd:20:86:ca:19:bf:ad:dc:7d:fa:15:31:25:51:cc: 8e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B7:C9:0F:81:21:5C:39:0B:86:F1:03:4C:F8:3B:39:56:B1:44:71 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:aa:8a:47:f4:3e:be:c2:3c:01:c0:00:74:64:07:1b:f7:2c: 60:d8:7c:ce:f2:75:95:51:bc:a0:0a:b5:10:69:bb:4a:a5:c3: 06:6b:b7:b4:d3:26:3d:b7:99:f8:42:64:5d:ef:af:24:e5:a5: a3:59:cb:40:8d:55:d3:f0:af:69:02:d5:6b:4d:e6:49:28:7b: 13:5c:e6:1c:a4:d0:fa:e1:54:6a:e4:20:fe:16:df:1e:9e:6e: d9:da:76:88:eb:f0:c6:a8:60:fa:d6:4c:db:0f:86:11:75:fb: 3e:33:65:5f:40:82:7d:4e:8c:58:a1:94:1c:21:2d:56:35:31: 0d:ce:ad:9c:25:55:cf:71:04:af:a9:d8:29:2e:98:a0:af:bd: b5:47:bc:c3:e7:60:a8:23:a6:92:21:1c:fb:bd:76:b4:e5:c8: d1:a8:1f:6a:e4:04:39:83:ea:b7:24:34:bf:fe:51:a3:f5:20: e3:2c:95:1c:79:c6:23:17:d4:5f:d0:e7:a5:3f:9e:54:5a:48: ad:65:0f:d9:72:a7:29:ad:97:26:b6:c1:be:d7:7e:e1:a9:77: 19:7f:b2:87:9c:b2:7e:74:e5:62:19:b1:09:a2:2c:66:99:a9: 30:eb:e4:37:49:4f:59:d3:19:ea:04:f3:62:e5:18:5f:f0:90: db:99:38:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUxMDE4MTg1NjIzWhcNMjUxMDI1MTg1NjIzWjAYMRYwFAYD VQQDEw02OGYzZTJkOC05ZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmZCwf9ESNSpTzG5/aRwHTX82vSEb9Wqmpv1I6GiZ613qBJgV6JnLRsEdtcQ 7ygeO/rEyNGpWoKsbxWBl2RillH9s+Tg5GxLJeXJu7erEOJBLOm4pfdEiFPP+xb+ ieHUh6iOeUpD112Cf2ew9+rATWnC7ua6OkQBUFypmHyqi4rC2k76kFjnfuLHNbNV NW+xMD5LV0oRiwPKELepgZFtGx5kJrUFHzsDW8YQWO31wa6lc3EKzsLHxK4PrNpW 39W2B5jgoQR+9VVrKYx3sJFDS6Vuaei6v+1YlutBOSKTmXlmOIZ2zIoe7MPoHO8s 5Sq9IIbKGb+t3H36FTElUcyOcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFS3yQ+B IVw5C4bxA0z4OzlWsURxMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkqopH9D6+wjwBwAB0ZAcb9yxg2HzO8nWVUbygCrUQabtKpcMGa7e0 0yY9t5n4QmRd768k5aWjWctAjVXT8K9pAtVrTeZJKHsTXOYcpND64VRq5CD+Ft8e nm7Z2naI6/DGqGD61kzbD4YRdfs+M2VfQIJ9ToxYoZQcIS1WNTENzq2cJVXPcQSv qdgpLpigr721R7zD52CoI6aSIRz7vXa05cjRqB9q5AQ5g+q3JDS//lGj9SDjLJUc ecYjF9Rf0OelP55UWkitZQ/ZcqcprZcmtsG+137hqXcZf7KHnLJ+dOViGbEJoixm makw6+Q3SU9Z0xnqBPNi5Rhf8JDbmThc -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:53 2025 by rpki-client