$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft File: NebIf2uhtlE6EnD23BNt23ETZFc.mft (raw, json) Hash identifier: I332yYBtC0T84KPXTBLeD8+IJLl/3L6gYVmKoxA8F2U= Subject key identifier: 50:3C:B1:94:B0:E9:15:37:E0:EE:C0:40:3A:3F:77:31:73:52:41:18 Authority key identifier: 35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 Certificate issuer: /CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Certificate serial: 038B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft Manifest number: 0386 Signing time: Sun 19 Oct 2025 02:48:55 +0000 Manifest this update: Sun 19 Oct 2025 02:48:54 +0000 Manifest next update: Sun 26 Oct 2025 02:48:54 +0000 Files and hashes: 1: NebIf2uhtlE6EnD23BNt23ETZFc.crl (hash: 8GQF5D3IaQQVwsl583wABR1/EORB8iLsMI+NrW7kvvg=) 2: 97B81DD6BF9F11ECAB5B1239C4F9AE02.roa (hash: qjteS7+PGeJuHJ05/h7zgt/nxMTWY1LEwcp5FeqZxrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 907 (0x38b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9749, serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Validity Not Before: Oct 19 02:48:54 2025 GMT Not After : Oct 26 02:48:54 2025 GMT Subject: CN=68f45196-02fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:c7:87:bc:8b:f5:f3:f5:7c:b1:6f:d3:2b: e5:d6:dd:00:9b:1b:07:3b:e7:fd:74:db:67:4c:70: 7b:96:2d:5d:13:37:63:57:f1:4e:14:a7:ed:b3:2a: a5:a4:49:f4:e2:6e:08:29:a3:6c:e1:51:33:e2:91: 3c:82:b9:1d:d4:7b:91:0c:d7:66:7c:68:36:da:bf: fc:b0:89:7f:aa:1c:8e:bd:fd:7f:ac:55:3c:0e:10: ae:6d:a1:28:eb:9c:05:d5:74:2e:87:12:66:96:f4: 33:cd:c8:83:85:ef:c0:72:fa:f1:cf:96:f3:42:c0: af:b3:8d:92:85:5b:00:fb:36:09:bb:02:4a:35:0c: 0e:71:d5:c4:55:b2:3c:b5:37:ae:3a:a5:2d:94:05: 06:2b:70:74:87:af:e6:d0:2c:9c:9c:1c:ca:8f:60: 7f:4d:d3:1e:3c:41:10:84:81:7c:ac:e9:48:df:ed: 16:70:21:90:80:89:ec:47:1f:d9:2e:bc:0d:6f:ef: 86:8f:3d:bf:58:4c:f1:df:bf:73:c2:a1:25:65:73: 44:12:9e:41:bb:74:45:43:9e:2a:7c:66:02:db:07: 80:c9:ef:eb:22:92:00:38:c4:8f:63:3b:2a:db:00: 00:d4:43:e0:60:31:fb:d6:10:6f:51:dc:3c:c2:57: 8d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3C:B1:94:B0:E9:15:37:E0:EE:C0:40:3A:3F:77:31:73:52:41:18 X509v3 Authority Key Identifier: keyid:35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:fc:e6:27:9e:ae:1c:3d:4b:94:0e:68:5b:2a:ed:78:e8:8f: 85:e6:55:87:04:7e:8c:ba:c3:a5:63:8e:59:15:49:4d:bb:cc: c3:41:be:6f:b2:f3:7e:4b:3a:15:5f:8b:48:f2:df:b5:52:fa: 08:0b:57:fb:26:1c:cb:c4:eb:7a:4b:f2:f0:0a:f7:ce:1e:86: 30:da:79:d2:df:c6:d4:c6:05:7c:8a:1c:84:e5:e2:ba:57:05: c3:89:88:a8:e3:1e:90:f8:90:00:d5:f9:8f:de:d4:7d:db:df: c2:36:d9:ec:ef:67:7a:86:e2:9b:1b:0e:7d:33:11:06:6b:80: 4b:86:1c:c2:1f:f4:4f:6f:31:a8:d9:0b:cb:d0:cb:a9:b1:86: 4a:8c:bb:c5:e7:9c:f2:f4:f0:f7:7c:e8:32:ec:f4:05:84:d6: b8:6e:98:c1:bd:43:e6:c5:66:77:ba:73:09:ce:42:d4:3f:ff: 12:ba:9d:03:1b:b9:e6:d5:1a:55:5b:52:4c:bc:f8:f0:5f:fd: 4f:85:7e:45:bd:4d:fb:ea:70:72:ad:4c:1d:65:8e:fd:3e:b2: 5f:09:45:0d:db:b9:df:5a:ea:13:ab:b9:8f:1d:a0:3e:73:0c: 19:b5:36:41:e1:5f:07:10:26:f3:86:00:cc:74:32:52:c3:a1: 67:87:eb:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk3NDkxMTAvBgNVBAUTKDM1RTZDODdGNkJBMUI2NTEzQTEyNzBGNkRDMTM2RERC NzExMzY0NTcwHhcNMjUxMDE5MDI0ODU0WhcNMjUxMDI2MDI0ODU0WjAYMRYwFAYD VQQDEw02OGY0NTE5Ni0wMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRTHh7yL9fP1fLFv0yvl1t0AmxsHO+f9dNtnTHB7li1dEzdjV/FOFKftsyql pEn04m4IKaNs4VEz4pE8grkd1HuRDNdmfGg22r/8sIl/qhyOvf1/rFU8DhCubaEo 65wF1XQuhxJmlvQzzciDhe/Acvrxz5bzQsCvs42ShVsA+zYJuwJKNQwOcdXEVbI8 tTeuOqUtlAUGK3B0h6/m0CycnBzKj2B/TdMePEEQhIF8rOlI3+0WcCGQgInsRx/Z LrwNb++Gjz2/WEzx379zwqElZXNEEp5Bu3RFQ54qfGYC2weAye/rIpIAOMSPYzsq 2wAA1EPgYDH71hBvUdw8wleN/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFA8sZSw 6RU34O7AQDo/dzFzUkEYMB8GA1UdIwQYMBaAFDXmyH9robZROhJw9twTbdtxE2RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTc0OS85OUQxN0Q5NkJG OUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRsRTZFbkQyM0JOdDIzRVRa RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05lYklmMnVodGxFNkVuRDIzQk50MjNFVFpGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTc0OS85OUQxN0Q5NkJGOUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRs RTZFbkQyM0JOdDIzRVRaRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC/OYnnq4cPUuUDmhbKu146I+F5lWHBH6MusOlY45ZFUlNu8zDQb5v svN+SzoVX4tI8t+1UvoIC1f7JhzLxOt6S/LwCvfOHoYw2nnS38bUxgV8ihyE5eK6 VwXDiYio4x6Q+JAA1fmP3tR929/CNtns72d6huKbGw59MxEGa4BLhhzCH/RPbzGo 2QvL0MupsYZKjLvF55zy9PD3fOgy7PQFhNa4bpjBvUPmxWZ3unMJzkLUP/8Sup0D G7nm1RpVW1JMvPjwX/1PhX5FvU376nByrUwdZY79PrJfCUUN27nfWuoTq7mPHaA+ cwwZtTZB4V8HECbzhgDMdDJSw6Fnh+un -----END CERTIFICATE-----Generated at Mon Oct 20 01:50:00 2025 by rpki-client