$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: jPDmhAeBhuJ5geq0NCLDZsL3PJEK01nZaRUs63RNvK0= Subject key identifier: E9:60:F7:A5:4B:65:CC:D7:2B:C5:43:35:2A:02:2B:45:42:7A:EB:F5 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1E78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1E3B Signing time: Sat 18 Oct 2025 16:23:32 +0000 Manifest this update: Sat 18 Oct 2025 16:23:31 +0000 Manifest next update: Sat 25 Oct 2025 16:23:31 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: xlx/QD3af1t7GZ8Y5GbS1UKMIsrfPgQw1IzBY1OlYPY=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: zuUsKZCcjPOj5pM09o9z0mAoFhewcmu+fcIGUoGJ1jw=) 3: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: G/Ubv3z+VEdcNFiGQpNHf2mTf7Lsh6KdDEju5wCmKbw=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: lSszTQ1c+gMLFVw7Gk7VDvJy/TEZ74hKfBC2kdiByE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7800 (0x1e78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Oct 18 16:23:31 2025 GMT Not After : Oct 25 16:23:31 2025 GMT Subject: CN=68f3bf04-a199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:be:6c:84:87:40:7a:f8:43:b9:f2:9d:99:3e: 84:e9:b0:d4:e8:69:e9:c2:b3:e9:f0:a6:36:92:6e: f9:a6:ff:80:30:f1:78:c7:a1:81:ea:a5:b1:ea:97: 18:bf:7e:af:65:ea:66:35:16:36:f7:ce:a0:c8:6f: 02:12:bd:21:8f:a7:ae:5d:a6:a5:a9:e6:0f:b9:b4: 7b:77:ca:be:bd:78:cf:9d:ff:20:0a:8a:f7:d7:96: 7d:18:8a:df:f9:4d:23:ac:47:db:33:f1:86:c0:45: e3:3a:1b:cd:20:a5:64:df:2c:65:02:e0:30:93:d3: ec:24:c4:8b:94:62:88:40:63:9a:5e:65:ca:80:05: 30:9c:e3:5d:1c:27:68:f4:30:c0:f0:75:69:8a:9f: 42:55:c7:33:f8:75:20:50:a5:ea:a1:95:92:51:37: 76:ce:b9:b4:a8:21:fc:61:59:1b:3d:fa:29:eb:4c: 68:54:b2:95:77:3b:2d:7e:80:17:b7:26:4e:c3:cc: 0b:a9:a6:a3:95:28:27:b4:74:0a:1c:ff:1a:b1:fe: d1:d9:a6:e4:e8:46:b0:72:a9:66:7c:70:7d:43:c8: a4:fb:05:6b:62:cb:3e:8d:c1:46:b5:13:f6:be:59: b4:31:ef:3d:3f:43:08:d7:fb:11:e2:64:1c:9d:dc: f0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:60:F7:A5:4B:65:CC:D7:2B:C5:43:35:2A:02:2B:45:42:7A:EB:F5 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ef:0b:3e:39:6b:b1:73:4f:db:a2:4d:d9:3a:a2:f0:4c:ae: 92:95:03:66:7f:df:bc:d3:76:0b:74:5e:80:45:07:4c:e1:b1: de:24:31:88:a2:de:c5:81:e6:48:b2:60:dd:d4:ec:4c:f7:85: 01:5e:ba:00:72:59:e7:fa:61:6d:73:3a:ae:af:a9:c0:b5:7c: 4c:a3:a3:12:cd:14:c2:64:40:ff:6e:62:06:68:ed:ce:fa:69: 1a:3a:95:6b:09:5e:00:c8:23:77:0d:79:be:2c:a2:c2:35:bb: 95:b1:bd:d6:77:e3:e3:57:29:38:25:5f:15:7e:37:58:d6:47: eb:98:35:db:0c:7d:ab:69:76:aa:62:68:41:a4:45:80:3a:09: 71:80:61:59:7f:fc:9b:bd:a8:6f:05:7c:24:03:84:2c:fb:34: 1b:64:99:e7:32:92:df:74:02:db:0a:55:fc:ca:ef:e5:2c:e9: 65:43:87:aa:d2:c7:13:ed:23:15:91:49:9e:de:4d:27:23:e7: f5:da:d1:dd:4d:40:52:5f:db:6d:d8:bb:c5:65:31:35:a0:e9: b7:a4:95:b2:c9:10:29:fc:97:4c:3c:e5:3d:9a:08:da:99:1e: f4:ac:24:db:1b:78:58:16:86:62:3a:dd:fb:4b:c7:32:65:df: 5c:35:88:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjUxMDE4MTYyMzMxWhcNMjUxMDI1MTYyMzMxWjAYMRYwFAYD VQQDEw02OGYzYmYwNC1hMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6r5shIdAevhDufKdmT6E6bDU6GnpwrPp8KY2km75pv+AMPF4x6GB6qWx6pcY v36vZepmNRY2986gyG8CEr0hj6euXaalqeYPubR7d8q+vXjPnf8gCor315Z9GIrf +U0jrEfbM/GGwEXjOhvNIKVk3yxlAuAwk9PsJMSLlGKIQGOaXmXKgAUwnONdHCdo 9DDA8HVpip9CVccz+HUgUKXqoZWSUTd2zrm0qCH8YVkbPfop60xoVLKVdzstfoAX tyZOw8wLqaajlSgntHQKHP8asf7R2abk6EawcqlmfHB9Q8ik+wVrYss+jcFGtRP2 vlm0Me89P0MI1/sR4mQcndzwvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlg96VL ZczXK8VDNSoCK0VCeuv1MB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB27ws+OWuxc0/bok3ZOqLwTK6SlQNmf9+803YLdF6ARQdM4bHeJDGI ot7FgeZIsmDd1OxM94UBXroAclnn+mFtczqur6nAtXxMo6MSzRTCZED/bmIGaO3O +mkaOpVrCV4AyCN3DXm+LKLCNbuVsb3Wd+PjVyk4JV8VfjdY1kfrmDXbDH2raXaq YmhBpEWAOglxgGFZf/ybvahvBXwkA4Qs+zQbZJnnMpLfdALbClX8yu/lLOllQ4eq 0scT7SMVkUme3k0nI+f12tHdTUBSX9tt2LvFZTE1oOm3pJWyyRAp/JdMPOU9mgja mR70rCTbG3hYFoZiOt37S8cyZd9cNYii -----END CERTIFICATE-----Generated at Mon Oct 20 14:03:39 2025 by rpki-client