$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: 9HALBI7px6eBv7vI7cbj/EDtzKSTy6mGOEsFIiwQPQk= Subject key identifier: 43:8B:82:A6:BF:06:B1:B9:3C:1F:84:44:A7:4E:1E:2E:37:29:B7:02 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0125 Signing time: Sun 19 Oct 2025 07:53:08 +0000 Manifest this update: Sun 19 Oct 2025 07:53:07 +0000 Manifest next update: Sun 26 Oct 2025 07:53:07 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: yRZayYByXJAWyweM4eqOA21/uc8hfnH3nlt/6Z/zB3c=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Oct 19 07:53:07 2025 GMT Not After : Oct 26 07:53:07 2025 GMT Subject: CN=68f498e4-e392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:52:dd:09:9a:be:5f:8d:00:c2:98:3b:19:ee: 56:67:84:ae:56:35:40:0f:c9:02:b5:b1:cf:60:b6: af:27:5a:d1:4a:e6:3f:c6:35:04:a5:cb:45:a7:bf: c4:58:5e:12:c5:dd:89:70:65:ca:99:23:da:45:17: e5:fb:86:2f:37:ca:41:d6:e3:bc:d2:e5:8b:44:63: 8e:1e:23:5c:5b:b9:1b:03:d3:4e:2f:77:c8:30:ca: 49:42:aa:b8:64:8f:cc:9d:ae:2b:35:49:c2:72:06: 56:64:c4:8f:77:0b:89:21:6b:7f:3a:bc:e9:75:6a: 70:30:ac:4f:25:6d:d4:d3:6b:de:15:82:02:af:9c: f6:51:6c:9d:b0:21:25:6d:08:f9:4a:58:32:ab:96: e9:24:17:3d:b6:57:19:4c:7e:60:9e:af:1f:b9:43: 2f:7c:c4:31:a4:62:6c:ec:cb:cb:d0:0d:9f:d6:93: 5c:e0:8f:c9:2d:15:07:85:34:0a:d2:ce:a3:0b:46: a4:59:78:f8:13:d2:de:61:71:07:76:6c:f6:e9:03: 6e:1b:22:ba:d5:6e:88:d7:57:b2:27:7f:fd:51:eb: 51:ac:52:b9:02:21:30:16:8a:fe:30:cb:a9:d7:87: 16:a5:29:80:ed:b7:56:f3:b6:3b:f2:5b:fe:57:4b: 83:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8B:82:A6:BF:06:B1:B9:3C:1F:84:44:A7:4E:1E:2E:37:29:B7:02 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:88:b8:96:97:7b:b3:5e:f8:64:73:14:c6:71:43:11:fa:01: 6f:e4:ad:8a:9a:7b:2d:74:c4:fb:bd:8f:b9:77:fe:43:5c:0b: 9c:f2:9e:6a:09:cc:09:bd:a3:b6:0a:a6:85:31:78:31:60:10: 01:f2:29:dc:28:29:88:e0:32:93:18:37:59:83:82:61:d1:7f: d7:78:7c:11:2e:10:a2:29:c2:a4:86:6b:0f:db:88:34:9a:8a: be:32:84:58:e9:12:7b:af:d0:ea:f9:73:a6:ad:38:db:6a:98: 9b:08:e4:41:f5:8f:01:df:05:1c:7e:29:ca:a1:ba:07:0a:c4: fb:23:de:5d:e1:5f:ca:55:ab:a6:48:19:13:ba:25:1e:c0:bd: b0:40:ee:f5:3f:7d:cc:13:91:d3:23:42:3a:19:96:62:60:ad: 55:28:b0:85:0a:7b:88:99:f1:d1:eb:26:c1:bd:97:30:71:bf: b3:d9:0d:4d:48:31:33:ac:64:60:87:5e:c7:41:0c:85:25:53: ca:f9:dc:ae:16:5f:4d:13:7b:c5:fa:10:6d:d3:a3:2f:7c:c0: 34:e6:f0:fa:7d:34:f1:65:fb:e3:88:f0:5c:f7:47:d6:12:cc: a6:2d:6c:b1:1b:3f:e3:d6:0d:22:7c:a4:ed:b8:98:2e:92:ce: 8e:f4:5d:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUxMDE5MDc1MzA3WhcNMjUxMDI2MDc1MzA3WjAYMRYwFAYD VQQDEw02OGY0OThlNC1lMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAllLdCZq+X40Awpg7Ge5WZ4SuVjVAD8kCtbHPYLavJ1rRSuY/xjUEpctFp7/E WF4Sxd2JcGXKmSPaRRfl+4YvN8pB1uO80uWLRGOOHiNcW7kbA9NOL3fIMMpJQqq4 ZI/Mna4rNUnCcgZWZMSPdwuJIWt/OrzpdWpwMKxPJW3U02veFYICr5z2UWydsCEl bQj5Slgyq5bpJBc9tlcZTH5gnq8fuUMvfMQxpGJs7MvL0A2f1pNc4I/JLRUHhTQK 0s6jC0akWXj4E9LeYXEHdmz26QNuGyK61W6I11eyJ3/9UetRrFK5AiEwFor+MMup 14cWpSmA7bdW87Y78lv+V0uDsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOLgqa/ BrG5PB+ERKdOHi43KbcCMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+iLiWl3uzXvhkcxTGcUMR+gFv5K2KmnstdMT7vY+5d/5DXAuc8p5q CcwJvaO2CqaFMXgxYBAB8incKCmI4DKTGDdZg4Jh0X/XeHwRLhCiKcKkhmsP24g0 moq+MoRY6RJ7r9Dq+XOmrTjbapibCORB9Y8B3wUcfinKoboHCsT7I95d4V/KVaum SBkTuiUewL2wQO71P33ME5HTI0I6GZZiYK1VKLCFCnuImfHR6ybBvZcwcb+z2Q1N SDEzrGRgh17HQQyFJVPK+dyuFl9NE3vF+hBt06MvfMA05vD6fTTxZfvjiPBc90fW EsymLWyxGz/j1g0ifKTtuJguks6O9F0T -----END CERTIFICATE-----Generated at Mon Oct 20 18:22:27 2025 by rpki-client