$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft File: Nu6KQBMF6zjijYal2392KKq34k8.mft (raw, json) Hash identifier: luEGWSdMMfBBXRei0An3+tkadOvnmLBRiVSBL3pks1E= Subject key identifier: 0B:50:02:08:16:69:3A:63:22:99:E1:65:8D:1A:AA:24:61:3F:29:E1 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft Manifest number: 10E5 Signing time: Sat 18 Oct 2025 17:51:09 +0000 Manifest this update: Sat 18 Oct 2025 17:51:09 +0000 Manifest next update: Sat 25 Oct 2025 17:51:09 +0000 Files and hashes: 1: Nu6KQBMF6zjijYal2392KKq34k8.crl (hash: nSlL8RiGW4WS5lsKM8WmV2nM2QShQUcvPB7Z8A7vLS8=) 2: 264DBA882E9411E9A7232A19C4F9AE02.roa (hash: R1CUbIu0V+HE4f06nI4AoF8weg5+WJaRb7OLoB74u3o=) 3: 8F5856362E9511E9896EFA1DC4F9AE02.roa (hash: JSG6xv2uqNAgwOpDXcHQxv8WbhIpG22unWVbGkO466o=) 4: 53DFF8EC2E9111E999636910C4F9AE02.roa (hash: 6mj2ePigEKlPzc3f7+eTQsUuSCZHP+3UsHzZtRH/e3g=) 5: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (hash: AQJjv8c1H+P8QI0s3FB/4mPX+TV6GerHGXja71yYLBo=) 6: 52685F222E9111E999636910C4F9AE02.roa (hash: tnJuonmKS/V0uoywfbn8ky35GlWjycjl3empqFomJY8=) 7: 8DFDF8AE2E9511E9896EFA1DC4F9AE02.roa (hash: fajAFqylWikP3Jikl5nRrG0DTxFJf4fODLkvijKh8uw=) 8: 81CBCECA0BFF11EE9AE0F676C4F9AE02.roa (hash: /vrezSo6RJ5dq1cFDK2anelkL8dBqwcaNrTPSxP8eN8=) 9: 5870952EC53011EA98D1D651C4F9AE02.roa (hash: aDxTmBiu7r/Tn9jcjNLK8UcWaXq5NN3ow+MDjn+I+ck=) 10: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (hash: MmpvHOBJX6/TYN9r3lrc9Z7dr+vQVfQyHD+RNXiHs1I=) 11: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (hash: S5sgxNBi0p+O5VGwcCA6mYFpVmBWw6J0mLdcaJC7l/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4433 (0x1151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Oct 18 17:51:09 2025 GMT Not After : Oct 25 17:51:09 2025 GMT Subject: CN=68f3d38d-d2e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:a9:20:a5:27:a7:ad:d8:4f:e5:4c:4e:27: ec:a5:6d:f3:b3:98:85:b0:99:b3:f8:42:c2:dd:01: 94:1a:36:42:3f:e2:e1:fb:ca:d1:99:76:c7:ca:03: 7f:bd:9f:8f:fe:9d:45:c4:b1:ef:8d:52:c7:5b:e5: c2:d0:9d:27:b7:f8:09:60:60:e2:97:7e:1f:90:ed: 2c:45:6c:a7:af:cc:ae:da:ce:d1:79:07:03:e1:fb: 80:48:3e:c4:fa:45:2a:ef:c8:a7:4b:b2:7f:e4:d2: 9b:c5:90:95:4c:48:ba:a4:7c:a1:74:22:29:aa:46: d9:ec:23:8a:98:19:2e:fb:7f:7f:c3:31:cb:ad:5a: ef:86:59:47:51:28:c1:46:08:20:d2:57:25:97:96: 14:f2:ed:21:99:ba:a0:70:70:6b:f8:bb:c2:46:58: 73:b3:c1:b8:cb:bb:15:8b:39:8e:95:68:c6:95:16: 62:ca:ef:39:df:4d:07:cb:36:d6:32:ab:e8:bb:61: 09:38:b5:e6:f5:9d:cb:f5:0e:5e:04:a6:b3:26:88: 8e:a5:8e:2a:10:8f:26:48:45:73:f8:3f:3d:82:7c: 38:80:43:fb:a1:d6:7f:1c:a1:02:50:68:5f:31:68: 7f:ba:05:9d:c6:8f:d6:43:e9:db:28:f4:1c:9b:48: 14:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:50:02:08:16:69:3A:63:22:99:E1:65:8D:1A:AA:24:61:3F:29:E1 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:59:a2:7b:bf:a1:16:ca:cd:25:dd:48:83:51:2b:d4:dd:53: 9d:f1:25:96:fd:ec:75:5c:b6:85:7f:38:f9:2d:e6:37:3b:5e: b2:3e:a4:e0:7c:88:0b:5c:33:29:a4:57:de:6a:be:6f:22:2b: 1e:8b:1a:dc:1b:61:f7:a5:48:e8:0a:d7:8d:06:bd:34:a9:ae: 54:a5:75:22:8b:ba:0d:fe:6c:60:b0:8a:6a:68:8b:05:2c:bf: c9:eb:71:01:11:00:5f:08:fc:35:e2:72:0c:e4:8b:2e:fb:b9: 9f:df:ba:a1:f7:e7:f6:71:90:50:8c:fb:a6:02:c9:6e:d6:cb: 9e:d3:fc:ee:11:e3:46:5a:12:c0:9a:02:5e:7c:69:f2:ef:93: 0f:0f:24:80:91:5e:84:3e:2b:dd:56:62:db:f0:52:41:87:ac: 4a:69:6b:0f:ed:9a:b8:b8:b5:78:57:66:c1:39:39:63:7f:a2: 89:92:7a:fd:7d:9b:5d:bd:d7:8b:74:a2:4b:96:e3:ef:91:d3: 3c:db:74:8c:01:cb:c8:cd:49:2c:f9:11:e2:6f:76:1b:ef:6a: d6:2f:49:9a:fd:6e:56:1c:ed:0e:72:bc:ce:a4:f3:55:b5:21: 55:fd:99:ad:ef:6a:f6:0a:53:8e:fd:76:fd:d0:c1:bf:e9:8a: 6f:2d:8d:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUxMDE4MTc1MTA5WhcNMjUxMDI1MTc1MTA5WjAYMRYwFAYD VQQDEw02OGYzZDM4ZC1kMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC2pIKUnp63YT+VMTifspW3zs5iFsJmz+ELC3QGUGjZCP+Lh+8rRmXbHygN/ vZ+P/p1FxLHvjVLHW+XC0J0nt/gJYGDil34fkO0sRWynr8yu2s7ReQcD4fuASD7E +kUq78inS7J/5NKbxZCVTEi6pHyhdCIpqkbZ7COKmBku+39/wzHLrVrvhllHUSjB Rggg0lcll5YU8u0hmbqgcHBr+LvCRlhzs8G4y7sVizmOlWjGlRZiyu85300HyzbW Mqvou2EJOLXm9Z3L9Q5eBKazJoiOpY4qEI8mSEVz+D89gnw4gEP7odZ/HKECUGhf MWh/ugWdxo/WQ+nbKPQcm0gUiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtQAggW aTpjIpnhZY0aqiRhPynhMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlCQy84OTI4OTczMDJFOTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6 amlqWWFsMjM5MktLcTM0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhWaJ7v6EWys0l3UiDUSvU3VOd8SWW/ex1XLaFfzj5LeY3O16yPqTg fIgLXDMppFfear5vIiseixrcG2H3pUjoCteNBr00qa5UpXUii7oN/mxgsIpqaIsF LL/J63EBEQBfCPw14nIM5Isu+7mf37qh9+f2cZBQjPumAslu1sue0/zuEeNGWhLA mgJefGny75MPDySAkV6EPivdVmLb8FJBh6xKaWsP7Zq4uLV4V2bBOTljf6KJknr9 fZtdvdeLdKJLluPvkdM823SMAcvIzUks+RHib3Yb72rWL0ma/W5WHO0OcrzOpPNV tSFV/Zmt72r2ClOO/Xb90MG/6YpvLY3e -----END CERTIFICATE-----Generated at Mon Oct 20 00:34:33 2025 by rpki-client