$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: /FGpgBk9wCCJDtSMTiS3t/H2C6aLkl9GdHWVvMthQ/w= Subject key identifier: C9:E8:9C:01:66:09:E0:04:34:87:D7:5E:6E:06:C2:85:B8:E2:36:CA Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0761 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0739 Signing time: Sat 18 Oct 2025 23:16:16 +0000 Manifest this update: Sat 18 Oct 2025 23:16:15 +0000 Manifest next update: Sat 25 Oct 2025 23:16:15 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: rXxu0Y+sgl0N0MauqGc4J22Wfuv1X+Kom/4h00tpgO4=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Oct 18 23:16:15 2025 GMT Not After : Oct 25 23:16:15 2025 GMT Subject: CN=68f41fc0-3a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:27:7e:7d:30:b8:28:1b:3d:a3:c4:e5:87:62: 91:86:cb:e4:2d:e7:88:2c:61:51:76:99:dc:ac:40: b6:f3:ae:fe:d8:5d:6a:44:9e:38:f9:b3:73:1a:29: be:69:5a:94:1a:56:42:2a:4a:32:4e:36:fa:ac:a4: 7c:e6:7b:fa:a9:f5:f2:af:c2:0b:07:eb:18:7f:51: b1:ad:99:fc:a5:09:0d:f6:ab:35:7a:29:9b:89:4a: 40:77:3f:c0:ea:d4:e5:02:a2:95:84:6d:23:a2:2c: 00:ef:9f:99:3c:97:26:71:4c:78:1d:be:16:65:29: 4a:7b:1a:4a:c9:d4:38:a3:b8:9f:e0:60:91:fa:a1: 0b:89:a4:2e:48:6b:1b:76:af:16:90:3a:41:8e:06: 3a:9b:28:2e:12:5a:d6:2a:05:8c:ae:63:9f:b1:1d: 00:91:9a:17:7b:04:43:6a:21:6c:07:e5:9b:1b:b4: f1:89:75:fd:01:33:78:9c:75:4f:31:ea:8b:7a:8f: 93:18:f1:ae:46:c4:08:b8:fc:d8:f8:c3:cb:ea:15: e7:51:66:e6:08:0b:8b:cc:ed:50:dd:b6:e3:b6:92: c8:7f:99:d5:dd:82:03:55:c4:a1:68:9a:d0:b4:3a: 82:d1:5b:6d:ca:c6:fa:53:92:75:51:ac:cf:b4:f2: 60:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:9C:01:66:09:E0:04:34:87:D7:5E:6E:06:C2:85:B8:E2:36:CA X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:cc:f8:f6:1d:a6:40:cf:1b:8e:b8:be:86:12:32:f7:8f:a8: 52:2e:18:4f:b5:f4:9c:e5:9b:9c:cd:88:05:de:48:ff:42:27: 6b:db:0c:a2:6e:c0:a4:bb:91:42:46:77:07:43:9d:7a:d3:c4: d8:ca:01:71:92:d3:8f:16:e5:43:fb:96:de:1c:08:82:b9:e6: f5:4b:08:a2:81:aa:d1:91:7c:45:62:4c:a5:67:1d:7f:04:f3: 8e:51:e6:a4:b4:c2:72:ff:c4:34:93:38:b4:df:51:ff:3b:e9: 4f:ec:87:12:c4:91:07:c2:5f:cb:16:84:91:f1:0a:0c:e3:18: 7d:dd:cd:63:d7:1c:19:82:f2:9e:c8:1b:90:33:89:81:68:88: 1c:98:d2:6d:f3:1a:5a:f1:b1:b1:a1:ac:41:cf:b8:29:6e:71: cb:61:c9:10:21:47:d1:5d:0a:58:af:2f:13:4b:0d:4d:85:dd: 67:0f:c5:60:be:9a:63:1a:e1:3a:b5:89:6a:93:ed:fb:06:f9: 81:c2:71:8e:dc:9b:13:06:c7:64:22:82:97:0c:83:24:bf:c9: b1:79:a9:b3:fc:94:ff:e4:19:fd:79:5b:33:4e:87:84:48:bc: 22:a2:97:b3:5b:6a:82:00:e7:87:a4:71:40:cf:fe:49:41:9c: f4:54:3d:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUxMDE4MjMxNjE1WhcNMjUxMDI1MjMxNjE1WjAYMRYwFAYD VQQDEw02OGY0MWZjMC0zYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCd+fTC4KBs9o8Tlh2KRhsvkLeeILGFRdpncrEC2867+2F1qRJ44+bNzGim+ aVqUGlZCKkoyTjb6rKR85nv6qfXyr8ILB+sYf1GxrZn8pQkN9qs1eimbiUpAdz/A 6tTlAqKVhG0joiwA75+ZPJcmcUx4Hb4WZSlKexpKydQ4o7if4GCR+qELiaQuSGsb dq8WkDpBjgY6myguElrWKgWMrmOfsR0AkZoXewRDaiFsB+WbG7TxiXX9ATN4nHVP MeqLeo+TGPGuRsQIuPzY+MPL6hXnUWbmCAuLzO1Q3bbjtpLIf5nV3YIDVcShaJrQ tDqC0Vttysb6U5J1UazPtPJg+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnonAFm CeAENIfXXm4GwoW44jbKMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHzPj2HaZAzxuOuL6GEjL3j6hSLhhPtfSc5ZuczYgF3kj/Qidr2wyi bsCku5FCRncHQ51608TYygFxktOPFuVD+5beHAiCueb1SwiigarRkXxFYkylZx1/ BPOOUeaktMJy/8Q0kzi031H/O+lP7IcSxJEHwl/LFoSR8QoM4xh93c1j1xwZgvKe yBuQM4mBaIgcmNJt8xpa8bGxoaxBz7gpbnHLYckQIUfRXQpYry8TSw1Nhd1nD8Vg vppjGuE6tYlqk+37BvmBwnGO3JsTBsdkIoKXDIMkv8mxeamz/JT/5Bn9eVszToeE SLwiopezW2qCAOeHpHFAz/5JQZz0VD2N -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:05 2025 by rpki-client