$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: uw+5wTrvKQ5GKTiPFYqBCvHWH6MqsN/fRwfKT+q6KaE= Subject key identifier: D5:CB:9A:CD:4F:EF:37:3C:56:82:E0:C2:75:67:5E:9C:10:7F:67:4A Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 61 Signing time: Sun 19 Oct 2025 10:27:39 +0000 Manifest this update: Sun 19 Oct 2025 10:27:38 +0000 Manifest next update: Sun 26 Oct 2025 10:27:38 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: ltpYhLdhNbM81v9NAaeIUUAzgigJG5JccCUFmg5oCtI=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Oct 19 10:27:38 2025 GMT Not After : Oct 26 10:27:38 2025 GMT Subject: CN=68f4bd1b-c365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:40:ab:4d:ed:a4:32:4a:34:4e:e8:c5:47: a5:d8:2c:e9:b1:61:4e:6b:14:17:e5:5a:eb:c9:78: 55:93:7a:7a:d8:d6:40:3d:97:bf:d8:97:76:e8:37: 47:64:ec:fa:7c:26:e6:c4:d8:37:af:c9:f8:6f:64: ff:e6:68:ee:64:d6:99:4d:2e:98:26:30:32:f5:75: bf:4a:2a:7f:f4:72:0a:02:62:d3:7b:8d:03:7b:37: d0:af:40:c9:00:f4:51:33:f8:81:88:dd:5c:18:a4: 5e:1c:9e:e6:33:24:e1:ac:55:33:61:c8:cc:f6:59: b8:44:f2:c8:5a:a4:1e:32:d5:95:e7:12:e9:7f:71: 42:76:8a:55:97:d7:65:31:d8:e3:de:51:95:94:8b: f2:67:62:83:c1:b7:16:78:15:32:34:83:8a:e0:ad: 07:5d:57:fd:21:0b:01:40:27:b9:16:6d:30:66:7d: 76:af:8f:de:77:20:93:bc:2e:2a:55:a4:c5:a8:ba: 8a:12:56:c9:09:1b:c7:1f:81:e7:82:58:a2:98:e0: 94:24:a2:30:05:a6:f7:c4:3f:8a:24:77:e1:ce:54: 58:35:55:ff:69:37:c0:b7:de:4d:e2:f8:64:e8:7a: 18:19:78:66:a1:17:04:aa:85:ec:d8:ec:2e:20:25: 31:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CB:9A:CD:4F:EF:37:3C:56:82:E0:C2:75:67:5E:9C:10:7F:67:4A X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:70:76:9d:52:89:20:4d:4a:ce:f1:a2:53:4a:eb:ab:55:b5: 39:43:3e:7c:23:f7:29:ed:7c:2a:91:19:2a:16:93:97:47:2e: e8:b0:b8:b8:66:14:05:95:88:b2:5a:3d:02:e9:02:bd:bb:cc: ff:99:fb:bb:aa:4d:dc:83:d4:22:d8:1d:20:a4:35:8b:86:27: e6:96:f1:8d:3f:29:1b:1f:bc:96:3d:10:16:5b:02:e9:e2:a3: 9e:54:67:57:4b:63:55:be:b2:9d:ce:54:2e:50:8c:2e:89:9f: 67:c7:b3:7d:d5:66:4b:b8:9d:6b:bf:19:02:21:88:3f:ad:7d: e6:9b:38:6e:ee:ff:b3:70:1e:86:4f:e4:1e:e5:84:db:41:b9: d3:75:84:21:59:c1:5a:51:82:b5:95:75:da:c0:66:25:1b:d6: 46:9e:15:28:b8:a8:50:cc:79:2a:f4:3c:86:3b:6d:4a:5c:7e: f1:dd:77:93:0c:27:4b:93:fd:5e:a0:43:76:70:92:42:f4:cd: d4:51:30:9a:9d:da:8a:3f:47:f0:7d:e8:78:98:b6:22:04:a4: d2:6f:a8:4e:ff:77:2b:09:55:ee:fb:73:f0:b3:1c:fb:6d:43: a0:61:6f:39:97:59:5d:b9:66:bb:23:58:43:5e:a8:2e:0f:35: 88:35:98:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTEwMTkxMDI3MzhaFw0yNTEwMjYxMDI3MzhaMBgxFjAUBgNV BAMTDTY4ZjRiZDFiLWMzNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8p0CrTe2kMko0TujFR6XYLOmxYU5rFBflWuvJeFWTenrY1kA9l7/Yl3boN0dk 7Pp8JubE2DevyfhvZP/maO5k1plNLpgmMDL1db9KKn/0cgoCYtN7jQN7N9CvQMkA 9FEz+IGI3VwYpF4cnuYzJOGsVTNhyMz2WbhE8shapB4y1ZXnEul/cUJ2ilWX12Ux 2OPeUZWUi/JnYoPBtxZ4FTI0g4rgrQddV/0hCwFAJ7kWbTBmfXavj953IJO8LipV pMWouooSVskJG8cfgeeCWKKY4JQkojAFpvfEP4okd+HOVFg1Vf9pN8C33k3i+GTo ehgZeGahFwSqhezY7C4gJTGVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1cuazU/v NzxWguDCdWdenBB/Z0owHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK5wdp1SiSBNSs7xolNK66tVtTlDPnwj9yntfCqRGSoWk5dHLuiwuLhm FAWViLJaPQLpAr27zP+Z+7uqTdyD1CLYHSCkNYuGJ+aW8Y0/KRsfvJY9EBZbAuni o55UZ1dLY1W+sp3OVC5QjC6Jn2fHs33VZku4nWu/GQIhiD+tfeabOG7u/7NwHoZP 5B7lhNtBudN1hCFZwVpRgrWVddrAZiUb1kaeFSi4qFDMeSr0PIY7bUpcfvHdd5MM J0uT/V6gQ3ZwkkL0zdRRMJqd2oo/R/B96HiYtiIEpNJvqE7/dysJVe77c/CzHPtt Q6BhbzmXWV25ZrsjWENeqC4PNYg1mAo= -----END CERTIFICATE-----Generated at Mon Oct 20 08:22:11 2025 by rpki-client