$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: J4XfNe4cgmu737yuoMxW6P+tA+nUwkjftFrxdPNMGOM= Subject key identifier: 47:53:F0:6F:28:1F:CA:58:5F:46:E9:95:15:DF:DE:49:64:7D:F2:15 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 0129 Signing time: Sun 19 Oct 2025 07:26:38 +0000 Manifest this update: Sun 19 Oct 2025 07:26:37 +0000 Manifest next update: Sun 26 Oct 2025 07:26:37 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: ub0wrVJYUeRu2cbaiXGpUHKrYUgMzbN1QjNnuSifTvA=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Oct 19 07:26:37 2025 GMT Not After : Oct 26 07:26:37 2025 GMT Subject: CN=68f492ad-2c51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:35:54:f9:8f:5d:07:96:e7:07:ef:49:b1:0f: 63:d2:56:c9:9e:f0:a1:f4:3d:0d:aa:bc:ad:05:f9: 45:49:83:ac:df:76:5a:5b:5b:2f:64:0a:dd:38:4a: 56:db:88:03:30:64:4a:31:40:53:a8:cf:81:80:f8: 8c:f1:eb:9e:32:af:d1:d0:f5:96:ef:33:19:29:db: 20:38:6f:1d:c1:6d:6c:ce:4e:99:69:88:1c:c0:45: 68:71:84:bd:3d:cd:5a:cd:e6:54:8c:86:98:35:65: 5b:b2:96:5e:a4:19:91:8a:1a:0f:af:bf:d7:18:da: 5b:2d:ad:57:0a:62:ba:b4:33:6c:91:1f:33:e7:bb: 3d:90:0b:dd:37:c8:0b:8b:52:d3:2f:dd:11:fb:6d: f8:5e:fb:ab:fe:eb:27:c9:04:e6:19:49:ee:4f:f8: 4f:b4:99:5b:e5:a3:9b:94:51:85:22:a8:26:61:0a: d1:f7:cc:9a:e8:bc:08:cb:97:93:9a:37:7f:93:5a: 2e:8e:89:ef:29:cc:60:af:4b:12:86:6d:c7:1f:df: 06:f1:4a:4c:b9:66:03:c1:54:c4:f9:e1:da:a5:a8: a4:f1:61:2c:e0:67:b0:eb:5f:cd:ff:a8:e3:b4:aa: eb:fc:e4:c1:77:90:2c:81:5c:b5:4e:35:b6:3b:b0: 4c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:53:F0:6F:28:1F:CA:58:5F:46:E9:95:15:DF:DE:49:64:7D:F2:15 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:37:aa:82:69:9c:a3:78:7b:ed:eb:1c:35:1a:39:07:f2:5f: ab:90:24:33:92:b8:ec:3c:ca:4c:07:a7:34:17:53:a0:56:df: 6f:1c:b9:59:6a:e7:6d:88:ed:4e:5c:b3:67:cc:fd:76:aa:0b: ac:0b:2e:fc:6c:71:c1:21:73:d7:ce:0f:60:2b:bf:38:a4:67: 8a:eb:b7:f9:9f:fc:af:40:57:08:a1:01:df:c0:c3:ed:79:5d: 9f:a9:2b:54:62:14:3c:05:39:f9:1c:f6:b8:d0:c3:6e:94:da: ec:a0:46:9a:70:84:1e:c4:a2:1e:9d:5f:51:4e:80:08:6f:5e: fa:00:5b:6c:37:fb:42:0c:d5:c3:02:c1:1f:1a:39:16:86:80: 0d:5e:31:4d:01:13:df:32:80:ec:90:58:c1:c9:d6:2e:cc:2b: be:4d:e1:21:ef:53:2b:85:aa:e6:2c:6f:f8:b4:1e:93:99:60: 84:78:cc:0f:5a:a2:4c:ca:83:88:b1:e4:d5:22:d6:9e:4d:95: 89:e3:54:16:3f:80:e3:1b:4c:65:dd:24:66:3e:0d:53:b1:5d: 6b:c7:ae:af:64:e3:51:2d:14:e6:5d:8f:bb:c5:a8:d0:57:6d: 78:2a:46:5f:f6:2e:46:3c:f3:f4:40:c5:fa:eb:a4:96:ae:d5: c0:d2:ab:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUxMDE5MDcyNjM3WhcNMjUxMDI2MDcyNjM3WjAYMRYwFAYD VQQDEw02OGY0OTJhZC0yYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jVU+Y9dB5bnB+9JsQ9j0lbJnvCh9D0NqrytBflFSYOs33ZaW1svZArdOEpW 24gDMGRKMUBTqM+BgPiM8eueMq/R0PWW7zMZKdsgOG8dwW1szk6ZaYgcwEVocYS9 Pc1azeZUjIaYNWVbspZepBmRihoPr7/XGNpbLa1XCmK6tDNskR8z57s9kAvdN8gL i1LTL90R+234Xvur/usnyQTmGUnuT/hPtJlb5aOblFGFIqgmYQrR98ya6LwIy5eT mjd/k1oujonvKcxgr0sShm3HH98G8UpMuWYDwVTE+eHapaik8WEs4Gew61/N/6jj tKrr/OTBd5AsgVy1TjW2O7BM2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdT8G8o H8pYX0bplRXf3klkffIVMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABN6qCaZyjeHvt6xw1GjkH8l+rkCQzkrjsPMpMB6c0F1OgVt9vHLlZ audtiO1OXLNnzP12qgusCy78bHHBIXPXzg9gK784pGeK67f5n/yvQFcIoQHfwMPt eV2fqStUYhQ8BTn5HPa40MNulNrsoEaacIQexKIenV9RToAIb176AFtsN/tCDNXD AsEfGjkWhoANXjFNARPfMoDskFjBydYuzCu+TeEh71MrharmLG/4tB6TmWCEeMwP WqJMyoOIseTVItaeTZWJ41QWP4DjG0xl3SRmPg1TsV1rx66vZONRLRTmXY+7xajQ V214KkZf9i5GPPP0QMX666SWrtXA0qsm -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:38 2025 by rpki-client