$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: ceTwou0UzdmQQFcGlubHqRhGF+AcGY7VMrsoFN5Hnag= Subject key identifier: D5:7C:A1:8F:57:A6:9E:E3:E1:91:29:B6:8E:9A:E8:5F:76:E7:89:0A Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 101F Signing time: Mon 20 Oct 2025 18:07:21 +0000 Manifest this update: Mon 20 Oct 2025 18:07:21 +0000 Manifest next update: Mon 27 Oct 2025 18:07:21 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: I359YoHxIYWhIK7vnJX8bMAuN/3Lw3lJ+jeU6z0Rb1c=) 2: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 3: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 4: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 5: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 6: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) 7: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 8: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 9: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 10: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 11: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 12: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 13: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4498 (0x1192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Oct 20 18:07:21 2025 GMT Not After : Oct 27 18:07:21 2025 GMT Subject: CN=68f67a59-ab71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ae:e1:d4:ca:7b:9f:b5:4f:79:af:b9:f2:ed: cc:6d:0f:5f:dc:37:6f:01:1c:ba:63:23:b7:c2:d8: f3:11:14:8e:4d:bb:dc:68:b5:61:06:18:f6:fa:65: 16:ee:e9:df:ce:5b:4b:d4:19:4a:4c:c6:3f:9c:28: ef:4f:1f:59:f4:5f:25:9e:a3:34:0c:10:27:0d:39: f2:a1:54:62:91:25:f5:df:09:3f:16:20:de:55:5e: db:75:aa:e0:3c:01:4f:3f:12:cc:7e:9f:6e:2a:af: 25:28:b3:15:66:7d:b7:58:77:12:f9:1f:34:e7:4e: 38:47:4e:bb:cb:dd:56:d6:d2:70:e3:a2:94:0f:92: 0e:94:6e:73:9a:f8:2c:3c:5b:2f:17:c3:15:4c:58: 1e:5d:11:62:cf:e8:cc:08:21:11:3d:36:82:1b:0e: ce:f9:35:69:44:18:f1:3b:bc:ff:2e:4d:94:7c:a2: 53:5a:d8:a3:30:06:e8:9b:e5:6a:69:29:6f:82:f7: d3:ab:1d:d5:71:35:14:96:59:92:ba:59:77:dc:d7: 22:e5:90:78:d7:2b:24:51:ae:4a:b1:02:d4:07:d7: 56:1f:4f:51:11:16:7e:27:f9:0c:20:cc:00:54:00: f6:49:47:dd:5f:fb:12:ba:da:c2:1d:5b:84:ca:77: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7C:A1:8F:57:A6:9E:E3:E1:91:29:B6:8E:9A:E8:5F:76:E7:89:0A X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4e:cc:76:bc:01:52:be:f4:e8:83:f0:af:c8:ac:22:66:3f: c7:96:ba:50:e8:a3:dd:b2:a9:49:c5:a6:93:e8:d2:46:55:79: a4:6e:e2:31:bd:6e:24:92:7e:96:c1:75:e8:e0:cb:e6:28:7f: 81:87:44:9c:2a:63:1d:e8:c4:01:a0:ab:ea:25:cf:ca:a7:16: f2:c1:38:b8:ed:01:89:4c:f6:81:d3:4d:e1:e4:58:ba:81:29: 5a:d7:56:99:a7:f0:df:49:fa:6d:0c:af:1d:f3:84:89:3f:ed: d7:f7:b6:ee:75:6c:e4:a6:df:57:9c:22:72:72:ee:88:7d:fb: 17:8d:34:78:bb:6b:c2:3f:61:c2:94:e2:19:89:5c:ea:b9:38: b2:93:9c:9f:ea:a4:34:0f:64:48:60:76:fb:ac:f2:ea:d8:c2: 97:ff:61:e7:e9:88:b3:a4:c3:4c:36:86:1b:6f:e1:ec:1f:8d: a4:81:51:9f:c7:83:4a:9b:e4:c0:93:29:b6:bf:b3:93:fc:ca: de:e1:89:a9:1c:ca:b8:e6:83:d3:94:eb:c8:3d:62:11:60:fc: 48:89:39:b3:df:00:c8:0b:c6:86:0d:4d:20:4a:d5:33:c7:16: 7b:96:67:94:0d:56:45:97:4b:b6:26:b5:3f:df:e1:6c:b6:24: e2:03:5e:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUxMDIwMTgwNzIxWhcNMjUxMDI3MTgwNzIxWjAYMRYwFAYD VQQDEw02OGY2N2E1OS1hYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3q7h1Mp7n7VPea+58u3MbQ9f3DdvARy6YyO3wtjzERSOTbvcaLVhBhj2+mUW 7unfzltL1BlKTMY/nCjvTx9Z9F8lnqM0DBAnDTnyoVRikSX13wk/FiDeVV7bdarg PAFPPxLMfp9uKq8lKLMVZn23WHcS+R805044R067y91W1tJw46KUD5IOlG5zmvgs PFsvF8MVTFgeXRFiz+jMCCERPTaCGw7O+TVpRBjxO7z/Lk2UfKJTWtijMAbom+Vq aSlvgvfTqx3VcTUUllmSull33Nci5ZB41yskUa5KsQLUB9dWH09RERZ+J/kMIMwA VAD2SUfdX/sSutrCHVuEynejywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNV8oY9X pp7j4ZEpto6a6F9254kKMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbTsx2vAFSvvTog/CvyKwiZj/HlrpQ6KPdsqlJxaaT6NJGVXmkbuIx vW4kkn6WwXXo4MvmKH+Bh0ScKmMd6MQBoKvqJc/KpxbywTi47QGJTPaB003h5Fi6 gSla11aZp/DfSfptDK8d84SJP+3X97budWzkpt9XnCJycu6IffsXjTR4u2vCP2HC lOIZiVzquTiyk5yf6qQ0D2RIYHb7rPLq2MKX/2Hn6YizpMNMNoYbb+HsH42kgVGf x4NKm+TAkym2v7OT/Mre4YmpHMq45oPTlOvIPWIRYPxIiTmz3wDIC8aGDU0gStUz xxZ7lmeUDVZFl0u2JrU/3+FstiTiA15f -----END CERTIFICATE-----Generated at Mon Oct 20 21:45:23 2025 by rpki-client