$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: sX+WFbdrsu1WGkOsy7hB4tQ+KXlmssCd19jKr3O5kcU= Subject key identifier: A0:FB:7C:C4:BD:39:E5:53:95:91:83:90:91:8D:B0:E6:E1:7C:65:0D Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 0219 Signing time: Sun 19 Oct 2025 04:30:22 +0000 Manifest this update: Sun 19 Oct 2025 04:30:21 +0000 Manifest next update: Sun 26 Oct 2025 04:30:21 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: p74e7h8HVEL56n1eTNAqYJ27Pft0d1sars+UNujK7wE=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: iIeWWLVIFJDjrG1ibZP/xl+WAjIK44IJWqOkBlQGCcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Oct 19 04:30:21 2025 GMT Not After : Oct 26 04:30:21 2025 GMT Subject: CN=68f4695e-1bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:14:b4:c8:80:7c:a8:75:05:2b:e4:4a:25:8e: 9f:a5:4c:39:a8:8b:96:50:db:36:cc:43:a3:35:b3: 0c:db:f7:bf:b6:b2:2d:0a:3b:08:5e:1b:97:ad:d1: c7:b8:e9:ac:4a:38:fb:93:28:4f:aa:8a:84:43:ab: fd:f6:bd:16:28:15:45:76:5a:99:aa:cf:0d:ab:b4: 83:42:51:a0:00:48:5a:c3:bd:f5:57:6f:0d:80:44: 4b:e3:1c:b3:84:ad:1c:2f:b0:66:c8:0f:3b:07:de: e9:f6:53:1f:bd:91:7e:c4:26:e1:f3:77:d7:66:44: 3e:60:83:ed:79:0b:40:fe:a5:97:f5:bd:71:49:89: 4d:b9:63:6a:37:ad:6e:6f:17:1b:b2:31:d0:d3:d8: e7:7b:fd:70:09:74:20:01:76:8a:9f:a0:a4:a5:a7: 45:8f:fe:7a:63:cc:e2:13:7c:6b:a3:92:4a:98:38: b1:a4:39:2f:4f:04:5f:bb:2b:2a:dc:04:48:36:39: 09:94:ba:f3:f1:5f:66:ed:53:34:7c:77:0a:5f:26: e4:40:45:e2:a9:7d:53:4a:fe:7a:c1:54:b4:e2:0b: 8f:17:e8:ba:c9:14:b7:25:f6:3e:64:5b:14:d5:39: cd:75:1b:fa:9d:55:19:76:25:5d:86:68:62:e9:9c: dc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FB:7C:C4:BD:39:E5:53:95:91:83:90:91:8D:B0:E6:E1:7C:65:0D X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:bd:e1:ef:bc:17:db:06:30:0e:62:40:ad:67:ea:0e:a9:d5: eb:ee:dc:a3:ea:11:3a:c4:99:66:88:5a:16:b8:e8:7a:a6:7f: b4:95:b8:9e:69:f7:9d:c1:44:96:10:c8:30:1d:db:ae:6a:9c: 9a:d8:ec:7d:c3:67:7c:36:c7:73:34:bc:36:d0:63:0d:98:12: 02:9f:d8:e8:55:10:09:36:0d:f6:47:28:6f:0f:c1:de:54:58: 27:ca:6e:ad:20:e1:c7:e1:d2:f0:ad:c1:1b:e0:f7:d1:98:36: 7b:9e:d4:22:34:70:18:6e:c0:50:f8:fc:1c:fb:33:c6:f3:ec: 31:42:4c:eb:64:f0:ab:01:6a:4b:e5:38:7a:57:9f:06:b3:c0: 19:aa:63:19:7c:24:5e:55:e5:58:95:c1:f7:4c:e5:fa:b1:e8: 0b:3c:1f:41:29:b6:a0:3d:b1:01:d4:e4:23:80:60:aa:ae:83: ca:2b:c6:77:bc:0b:d1:83:fd:c0:61:60:9a:e9:93:fd:d4:d1: 0e:cb:37:7c:8e:2a:7a:4b:7a:b1:57:f2:a9:7c:ae:72:00:39: 1e:f0:b4:f2:6a:2c:d8:82:2f:b4:2e:8d:cc:2c:4a:06:45:8e: 28:0d:ab:8a:96:14:7e:c2:00:2f:8f:17:7c:4f:6d:39:76:0a: 07:96:06:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjUxMDE5MDQzMDIxWhcNMjUxMDI2MDQzMDIxWjAYMRYwFAYD VQQDEw02OGY0Njk1ZS0xYmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRS0yIB8qHUFK+RKJY6fpUw5qIuWUNs2zEOjNbMM2/e/trItCjsIXhuXrdHH uOmsSjj7kyhPqoqEQ6v99r0WKBVFdlqZqs8Nq7SDQlGgAEhaw731V28NgERL4xyz hK0cL7BmyA87B97p9lMfvZF+xCbh83fXZkQ+YIPteQtA/qWX9b1xSYlNuWNqN61u bxcbsjHQ09jne/1wCXQgAXaKn6CkpadFj/56Y8ziE3xro5JKmDixpDkvTwRfuysq 3ARINjkJlLrz8V9m7VM0fHcKXybkQEXiqX1TSv56wVS04guPF+i6yRS3JfY+ZFsU 1TnNdRv6nVUZdiVdhmhi6ZzcAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKD7fMS9 OeVTlZGDkJGNsObhfGUNMB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArveHvvBfbBjAOYkCtZ+oOqdXr7tyj6hE6xJlmiFoWuOh6pn+0lbie afedwUSWEMgwHduuapya2Ox9w2d8NsdzNLw20GMNmBICn9joVRAJNg32RyhvD8He VFgnym6tIOHH4dLwrcEb4PfRmDZ7ntQiNHAYbsBQ+Pwc+zPG8+wxQkzrZPCrAWpL 5Th6V58Gs8AZqmMZfCReVeVYlcH3TOX6segLPB9BKbagPbEB1OQjgGCqroPKK8Z3 vAvRg/3AYWCa6ZP91NEOyzd8jip6S3qxV/KpfK5yADke8LTyaizYgi+0Lo3MLEoG RY4oDauKlhR+wgAvjxd8T205dgoHlgaO -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:59 2025 by rpki-client