$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: mbmhtpZbci3Ro8bNXDgUrQXp0gCrTgAQ4QahNIWPNrI= Subject key identifier: 80:F1:BC:74:FE:BC:06:18:98:FA:A9:45:EC:1C:F1:F0:3C:15:C2:00 Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 49 Signing time: Sun 19 Oct 2025 10:51:39 +0000 Manifest this update: Sun 19 Oct 2025 10:51:38 +0000 Manifest next update: Sun 26 Oct 2025 10:51:38 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: 3QXfZ63RP51LSHUCVa8CpW3EiTbkLwC8lDbUTDUYhz0=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: iZRDXQppbsQwPvsyTvXzZpqvjaraKsPpnctxXUoNoxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Oct 19 10:51:38 2025 GMT Not After : Oct 26 10:51:38 2025 GMT Subject: CN=68f4c2bb-a7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c2:e0:86:67:8c:c1:62:34:92:6c:81:59:b9: 5f:e9:d3:f3:42:bb:33:05:75:ef:23:79:74:00:1f: ec:e9:61:ff:95:79:b1:1d:27:c7:fd:5e:51:51:38: 03:02:af:d7:7d:90:57:db:ba:c2:dc:ce:b6:ff:55: b6:fb:db:a6:ff:ba:ea:95:06:0c:16:74:e8:be:4d: 42:ab:50:1f:81:86:21:05:20:6c:a4:b9:39:e1:f4: d6:12:b9:76:b1:22:1b:bc:92:a9:ce:53:f8:76:a9: 2e:86:20:4d:d6:17:19:76:8a:09:62:3b:de:75:25: d0:fd:17:61:82:19:4b:ab:51:e7:06:e2:17:92:ff: 5f:b1:8e:ef:13:a3:a1:86:c1:6a:e7:37:3f:bb:aa: db:b9:fb:14:15:a6:64:d5:8d:93:f6:d6:67:fa:1d: 77:e7:99:a6:36:9e:fb:58:b4:f6:5e:90:a8:e5:7c: ee:ec:f3:70:27:42:1c:92:47:5a:a1:7f:fa:2c:a4: ac:c4:2b:cd:60:f2:f5:49:69:4c:1d:28:dd:05:b4: b1:be:8b:2d:43:15:42:94:73:60:6d:7d:e2:68:7c: 27:e0:32:fd:25:93:8c:7d:d3:af:e5:46:64:d5:21: f9:43:77:03:8b:92:d4:10:46:be:c8:fe:6d:20:81: 01:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F1:BC:74:FE:BC:06:18:98:FA:A9:45:EC:1C:F1:F0:3C:15:C2:00 X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:7a:7b:53:b0:a3:66:ee:41:c9:f6:c5:ca:ae:70:96:3f:bb: b3:cf:38:1a:e8:79:01:d4:80:a4:63:cc:d0:60:f0:73:90:47: 6c:89:4c:2f:80:3b:ec:2b:fe:9e:75:0d:12:7a:a7:34:19:dd: 3a:cd:94:74:4a:cb:fd:62:b6:b1:5a:00:9f:4c:ea:a1:f8:9d: 51:c6:ac:28:49:b2:d6:d3:29:17:35:84:e3:ec:27:5f:fc:5b: 04:81:69:58:ef:a5:c9:cd:d5:38:5b:d1:cf:14:53:05:70:c6: 52:19:c0:0a:10:08:36:24:aa:ac:24:9f:83:35:9c:c0:51:06: c3:34:08:38:e1:7c:54:2a:42:2d:1e:66:ac:0a:b3:55:66:03: ac:fc:46:29:0d:c5:06:8a:ee:f3:b6:25:c3:ef:69:30:8b:97: 09:41:28:03:9f:9c:8f:0c:7a:2a:4c:89:3e:55:c1:55:7d:be: b0:67:3c:cf:74:5e:7a:ec:07:71:4f:21:f6:6e:83:8d:c7:40: 52:84:8a:f3:dd:11:5c:a4:f2:eb:35:3d:4f:02:97:05:eb:dc: da:90:6d:72:b8:2e:b9:06:10:ab:92:52:e2:22:0a:18:c1:57: 78:62:ca:3e:68:f3:5c:24:46:43:23:16:73:08:1b:00:10:1c: 31:e7:2d:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0REQjExMC8GA1UEBRMoMzRDREE2NUIwMkYxNzZCRkMyNDg3ODREQUE5QUM4QTdC RTE2NTNEQjAeFw0yNTEwMTkxMDUxMzhaFw0yNTEwMjYxMDUxMzhaMBgxFjAUBgNV BAMTDTY4ZjRjMmJiLWE3YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfwuCGZ4zBYjSSbIFZuV/p0/NCuzMFde8jeXQAH+zpYf+VebEdJ8f9XlFROAMC r9d9kFfbusLczrb/Vbb726b/uuqVBgwWdOi+TUKrUB+BhiEFIGykuTnh9NYSuXax Ihu8kqnOU/h2qS6GIE3WFxl2igliO951JdD9F2GCGUurUecG4heS/1+xju8To6GG wWrnNz+7qtu5+xQVpmTVjZP21mf6HXfnmaY2nvtYtPZekKjlfO7s83AnQhySR1qh f/ospKzEK81g8vVJaUwdKN0FtLG+iy1DFUKUc2BtfeJofCfgMv0lk4x906/lRmTV IflDdwOLktQQRr7I/m0ggQEzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgPG8dP68 BhiY+qlF7Bzx8DwVwgAwHwYDVR0jBBgwFoAUNM2mWwLxdr/CSHhNqprIp74WU9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRERCLzBFM0JEQUVDNDcy NDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk0ybVd3THhkcl9DU0hoTnFwcklwNzRXVTlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJf Q1NIaE5xcHJJcDc0V1U5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKB6e1Owo2buQcn2xcqucJY/u7PPOBroeQHUgKRjzNBg8HOQR2yJTC+A O+wr/p51DRJ6pzQZ3TrNlHRKy/1itrFaAJ9M6qH4nVHGrChJstbTKRc1hOPsJ1/8 WwSBaVjvpcnN1Thb0c8UUwVwxlIZwAoQCDYkqqwkn4M1nMBRBsM0CDjhfFQqQi0e ZqwKs1VmA6z8RikNxQaK7vO2JcPvaTCLlwlBKAOfnI8MeipMiT5VwVV9vrBnPM90 XnrsB3FPIfZug43HQFKEivPdEVyk8us1PU8ClwXr3NqQbXK4LrkGEKuSUuIiChjB V3hiyj5o81wkRkMjFnMIGwAQHDHnLSQ= -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:27 2025 by rpki-client