$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: Vpcvnf/fG3Kg2wTJE6hNDpUnmxBj2rBq7b47qeXmsmE= Subject key identifier: C2:6D:0A:F9:59:57:C7:F5:CF:6F:24:DE:AB:8C:36:EB:17:A6:E6:45 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 01BA Signing time: Sun 19 Oct 2025 05:35:15 +0000 Manifest this update: Sun 19 Oct 2025 05:35:15 +0000 Manifest next update: Sun 26 Oct 2025 05:35:15 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: yRnXRwyJt09GneFd/1FyHksILj+kkpHooGzLc1zEbSc=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Oct 19 05:35:15 2025 GMT Not After : Oct 26 05:35:15 2025 GMT Subject: CN=68f47893-21ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c2:0c:e2:a6:62:36:ef:5f:51:ed:00:1d:a0: 68:22:ec:34:7a:ae:6e:c4:5f:d0:6e:54:a3:5a:09: 23:f1:d9:06:d4:8a:6b:46:9b:d4:a4:4c:94:0b:7c: 79:cc:b3:ce:8d:f7:7b:ce:a0:23:78:24:0f:0e:23: fe:8a:59:32:63:ca:9c:5e:35:f8:87:05:5d:c6:fc: 16:dd:04:8a:5a:3e:ab:0b:f0:11:0a:e1:aa:d2:49: c5:91:80:41:76:9f:70:d9:56:3a:51:76:d4:b0:01: 43:ba:26:b1:ac:21:0e:bf:72:f7:ab:b1:4b:c9:ee: c3:d7:d3:96:f1:9f:3b:1b:46:9c:93:80:1a:1f:2d: 70:37:32:39:f9:f0:84:a0:cf:4c:2d:04:29:30:62: f8:d7:0e:30:5c:ed:1d:67:0b:78:f8:bb:7d:ee:d1: 47:39:e6:99:e6:da:ee:43:9e:ef:da:13:3a:60:89: 98:b4:41:cb:77:d1:11:ad:84:17:09:f5:c2:c4:69: a5:3e:32:87:a8:17:ff:7c:db:eb:a3:f3:2f:a3:11: cd:26:50:78:95:29:7f:42:a4:3a:ba:97:72:3c:e6: 4c:b5:53:62:73:2d:7d:59:d7:ea:6a:08:1e:dd:59: f1:f0:78:9a:a9:60:7a:0d:08:34:06:fb:29:2b:4c: 67:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6D:0A:F9:59:57:C7:F5:CF:6F:24:DE:AB:8C:36:EB:17:A6:E6:45 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:dc:db:76:fe:14:bd:60:66:16:99:3f:66:74:40:c9:94:ad: f9:95:69:20:a2:82:a5:77:93:39:13:b6:2a:4f:e4:4b:27:2e: 1c:8d:ed:fb:9f:9a:db:b7:3d:50:bb:2c:d4:40:d2:0f:5e:4d: 83:21:55:91:17:f8:a1:78:a0:2c:7f:0d:fa:c2:1c:4b:ae:1b: 70:7c:a7:6a:49:f0:d3:36:73:1a:d8:b5:4a:83:f2:3f:d8:91: e8:d0:83:35:37:ed:76:b0:ca:da:a8:36:e5:68:52:0d:3a:d6: 92:9a:86:74:6d:5c:3e:90:8e:3e:3d:3c:3f:b2:7c:2f:a9:2f: 7a:da:ec:cb:68:17:3c:1d:44:1e:e4:bc:c5:d5:aa:f1:a7:2c: 2e:bf:5d:e6:1a:73:6e:2c:17:94:34:ed:de:b9:17:71:d0:ad: 34:83:58:7b:60:17:99:8e:44:a6:c1:24:48:c3:74:6f:cb:79: 42:e3:11:23:13:54:e8:75:7d:5b:0f:14:eb:33:8c:db:d2:55: 28:d7:0b:bd:98:66:3f:b4:c4:d9:a6:2f:22:f1:a9:a3:59:df: 10:9b:b3:45:b2:d0:02:7f:d2:86:f3:88:a4:4c:90:81:da:29: 2a:1a:a6:b7:24:4a:2e:2d:c4:f9:45:0e:0f:48:07:37:6a:b2: 73:98:46:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUxMDE5MDUzNTE1WhcNMjUxMDI2MDUzNTE1WjAYMRYwFAYD VQQDEw02OGY0Nzg5My0yMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MIM4qZiNu9fUe0AHaBoIuw0eq5uxF/QblSjWgkj8dkG1IprRpvUpEyUC3x5 zLPOjfd7zqAjeCQPDiP+ilkyY8qcXjX4hwVdxvwW3QSKWj6rC/ARCuGq0knFkYBB dp9w2VY6UXbUsAFDuiaxrCEOv3L3q7FLye7D19OW8Z87G0ack4AaHy1wNzI5+fCE oM9MLQQpMGL41w4wXO0dZwt4+Lt97tFHOeaZ5truQ57v2hM6YImYtEHLd9ERrYQX CfXCxGmlPjKHqBf/fNvro/MvoxHNJlB4lSl/QqQ6updyPOZMtVNicy19Wdfqagge 3Vnx8HiaqWB6DQg0BvspK0xnIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJtCvlZ V8f1z28k3quMNusXpuZFMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk3Nt2/hS9YGYWmT9mdEDJlK35lWkgooKld5M5E7YqT+RLJy4cje37 n5rbtz1QuyzUQNIPXk2DIVWRF/iheKAsfw36whxLrhtwfKdqSfDTNnMa2LVKg/I/ 2JHo0IM1N+12sMraqDblaFINOtaSmoZ0bVw+kI4+PTw/snwvqS962uzLaBc8HUQe 5LzF1arxpywuv13mGnNuLBeUNO3euRdx0K00g1h7YBeZjkSmwSRIw3Rvy3lC4xEj E1TodX1bDxTrM4zb0lUo1wu9mGY/tMTZpi8i8amjWd8Qm7NFstACf9KG84ikTJCB 2ikqGqa3JEouLcT5RQ4PSAc3arJzmEao -----END CERTIFICATE-----Generated at Tue Oct 21 02:37:38 2025 by rpki-client