$ rpki-client -vvf rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft File: NBfrvXgtZfKcRPwL3lgaTRst66Q.mft (raw, json) Hash identifier: +mjEDpAI97x7Q1vMm/OcP2HJm3ncftW8+WcKcBNPB1k= Subject key identifier: 89:74:B6:8D:64:34:24:AD:AA:98:53:74:2D:BD:C8:E5:5F:FC:5D:7C Authority key identifier: 34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 Certificate issuer: /CN=A91836DB/serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft Manifest number: 83 Signing time: Sun 19 Oct 2025 09:55:34 +0000 Manifest this update: Sun 19 Oct 2025 09:55:34 +0000 Manifest next update: Sun 26 Oct 2025 09:55:34 +0000 Files and hashes: 1: NBfrvXgtZfKcRPwL3lgaTRst66Q.crl (hash: KWoqgr+GiMK9CRuwkn+hrnGM1+0dMVj5pGpf9jKF8mI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836DB, serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Validity Not Before: Oct 19 09:55:34 2025 GMT Not After : Oct 26 09:55:34 2025 GMT Subject: CN=68f4b596-71e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:96:dc:db:e2:6d:b2:01:63:8c:67:fa:31:a2: 79:a0:e2:17:6b:ac:78:6f:ba:f1:39:b3:79:25:8e: 50:af:e0:3b:bf:3d:ea:60:b4:ea:41:13:6f:09:f2: f5:ae:2c:a3:01:77:8a:db:68:29:e0:b4:af:03:20: 84:d7:3e:c4:61:78:3c:40:a0:aa:53:70:06:18:66: 5e:8e:e2:10:04:9c:75:33:ae:ae:3e:74:2f:ff:6d: ae:a0:81:f1:f0:c8:67:84:84:8d:88:c2:4e:da:2a: f6:58:e2:d8:1e:6d:31:ac:32:24:56:d8:e6:44:3b: b8:e2:03:f5:78:2b:1f:91:56:d6:bb:3f:43:fd:21: b2:c1:4e:7e:2e:e5:de:b7:23:82:4d:80:fa:7f:18: 23:ad:4e:7f:10:a3:19:8e:07:2d:7f:0a:be:c2:e9: 47:2b:f1:a3:30:11:e3:84:24:18:cc:ca:1c:be:b3: 76:b7:00:9e:20:af:bb:4d:78:35:06:a9:46:33:e2: 8b:f3:2f:ae:8c:ae:ea:66:66:8c:a1:6e:64:07:26: 1d:88:12:7c:7d:f8:56:3d:4c:c1:2f:37:8d:cd:a6: 79:d5:02:6b:c2:dc:8e:24:ea:b4:78:7a:b4:fb:8d: a9:54:3f:65:de:82:2d:6e:c8:45:1f:a0:16:92:4d: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:74:B6:8D:64:34:24:AD:AA:98:53:74:2D:BD:C8:E5:5F:FC:5D:7C X509v3 Authority Key Identifier: keyid:34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:8b:17:54:35:03:f6:d6:23:91:f8:a5:c4:01:22:aa:a4:cd: 31:24:bd:c0:9c:e7:17:b9:35:4f:ce:a1:ae:e7:86:63:c2:b0: 16:17:c6:53:50:a2:46:7e:e2:d2:0b:6e:83:d8:91:bb:4c:8c: 86:d2:d2:b3:41:65:21:41:14:2c:f8:5c:c2:4b:66:39:db:d7: 94:ad:8f:5b:4a:20:71:81:e1:b1:7c:ef:cd:7a:75:20:2d:1d: a5:f8:9c:22:4e:b9:10:77:9a:4c:6e:00:64:87:1c:93:a6:d6: 86:23:53:f3:82:1d:65:54:bf:59:5b:d8:20:14:e9:ca:66:51: e2:e5:76:27:f8:54:b1:30:bb:c0:e0:e6:e7:d2:86:c9:dd:3a: 9c:79:17:2d:92:e0:2c:29:65:70:84:d7:a0:24:46:50:58:ea: 44:f6:0f:05:40:dc:ce:8f:e5:33:64:7a:d3:c7:17:8e:e8:a4: f5:3f:86:27:e6:cf:de:1d:9a:50:b1:8c:63:a2:ab:bc:06:4c: 25:d8:46:55:ab:7c:b9:3b:c8:02:f5:35:c0:09:c3:7f:12:cc: 72:4e:40:02:df:e8:6c:39:be:54:6f:40:51:66:79:c4:a2:28: aa:bc:13:54:e4:13:85:b2:5a:9c:37:c9:bb:54:1a:bd:06:5b: e4:b4:1e:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2REIxMTAvBgNVBAUTKDM0MTdFQkJENzgyRDY1RjI5QzQ0RkMwQkRFNTgxQTRE MUIyREVCQTQwHhcNMjUxMDE5MDk1NTM0WhcNMjUxMDI2MDk1NTM0WjAYMRYwFAYD VQQDEw02OGY0YjU5Ni03MWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJbc2+JtsgFjjGf6MaJ5oOIXa6x4b7rxObN5JY5Qr+A7vz3qYLTqQRNvCfL1 riyjAXeK22gp4LSvAyCE1z7EYXg8QKCqU3AGGGZejuIQBJx1M66uPnQv/22uoIHx 8MhnhISNiMJO2ir2WOLYHm0xrDIkVtjmRDu44gP1eCsfkVbWuz9D/SGywU5+LuXe tyOCTYD6fxgjrU5/EKMZjgctfwq+wulHK/GjMBHjhCQYzMocvrN2twCeIK+7TXg1 BqlGM+KL8y+ujK7qZmaMoW5kByYdiBJ8ffhWPUzBLzeNzaZ51QJrwtyOJOq0eHq0 +42pVD9l3oItbshFH6AWkk11zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl0to1k NCStqphTdC29yOVf/F18MB8GA1UdIwQYMBaAFDQX6714LWXynET8C95YGk0bLeuk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZEQi81OUFGQzIwQUU0 NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpmS2NSUHdMM2xnYVRSc3Q2 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CZnJ2WGd0WmZLY1JQd0wzbGdhVFJzdDY2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEQi81OUFGQzIwQUU0NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpm S2NSUHdMM2xnYVRSc3Q2NlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPixdUNQP21iOR+KXEASKqpM0xJL3AnOcXuTVPzqGu54ZjwrAWF8ZT UKJGfuLSC26D2JG7TIyG0tKzQWUhQRQs+FzCS2Y529eUrY9bSiBxgeGxfO/NenUg LR2l+JwiTrkQd5pMbgBkhxyTptaGI1Pzgh1lVL9ZW9ggFOnKZlHi5XYn+FSxMLvA 4Obn0obJ3TqceRctkuAsKWVwhNegJEZQWOpE9g8FQNzOj+UzZHrTxxeO6KT1P4Yn 5s/eHZpQsYxjoqu8Bkwl2EZVq3y5O8gC9TXACcN/EsxyTkAC3+hsOb5Ub0BRZnnE oiiqvBNU5BOFslqcN8m7VBq9BlvktB79 -----END CERTIFICATE-----Generated at Tue Oct 21 02:37:01 2025 by rpki-client