$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft File: nflMM9P2R649kTYeHxcsIGhvWYk.mft (raw, json) Hash identifier: Pim4mL0o5dvvI0jRkhYdyOy+ILQn8L8cbzi8XuBpwbA= Subject key identifier: 66:4C:E3:49:2F:87:BB:19:28:9D:30:07:99:38:73:B5:0A:46:CF:90 Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0E4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft Manifest number: 0E23 Signing time: Tue 04 Nov 2025 17:54:44 +0000 Manifest this update: Tue 04 Nov 2025 17:54:44 +0000 Manifest next update: Tue 11 Nov 2025 17:54:44 +0000 Files and hashes: 1: nflMM9P2R649kTYeHxcsIGhvWYk.crl (hash: vs3LMC7ASG/vIy0GNcTzMWjUzcqw4qFrHIcZkbLiXzU=) 2: 46B27CC6B82A11E9843DEE0AC4F9AE02.roa (hash: wn9BYbDEeMgzZ+nvIIVHE03FH3j72pfXBWyBUiQ/bUc=) 3: 9E78AEC4C78E11EBB4983F5BC4F9AE02.roa (hash: fVV5tH5xnHJ5RPLy9jThqMkcctu4xGaw9Zeg+LUw1yQ=) 4: 47E67066B82A11E9843DEE0AC4F9AE02.roa (hash: xh37AiJohCRfHSRUDjcvxE7B1+32xaC/K8WdUvsEnhs=) 5: 9F8B79C2C78E11EBB4983F5BC4F9AE02.roa (hash: 3DrTSsxaKfHNG5QI6Tt7BoAnrvxk6SFVvs/husXrnBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3658 (0xe4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4, serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: Nov 4 17:54:44 2025 GMT Not After : Nov 11 17:54:44 2025 GMT Subject: CN=690a3de4-5b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d1:5c:fb:9b:30:76:b3:e5:ae:d8:72:22:bd: 88:86:92:e6:b9:64:90:6e:d2:84:5c:7c:ba:46:87: 7d:f7:fc:2d:e5:84:30:41:51:44:16:fc:30:31:28: 8c:ad:76:3b:93:6b:d8:32:29:74:1f:68:c0:02:78: 01:ac:8c:58:91:22:ef:5c:d6:bb:55:8a:94:09:3f: ad:c9:ef:c5:a0:60:ca:72:5e:8e:92:b2:7f:b2:a4: 17:85:83:fc:38:b8:e6:74:35:15:4a:63:59:53:58: 4d:67:05:e6:fa:cd:5e:bb:c0:eb:39:3d:9b:5d:38: 4a:c8:2f:72:62:06:7f:3c:6c:a5:f5:d2:b5:6d:dd: b4:13:6d:9c:ee:f7:9f:f6:b4:c3:70:a3:96:3e:1a: 6e:b2:dd:45:4d:6d:fd:c8:d2:39:1f:6c:9c:ca:63: 7d:8d:51:c8:19:1f:8f:f1:fc:62:45:d5:c0:26:2c: 18:5e:4e:92:b9:dc:72:d4:0c:c5:06:7d:31:d8:be: 10:f5:1d:95:10:00:ff:36:98:e1:5c:90:d9:75:68: d1:d9:d3:4f:e2:99:32:98:3a:6a:59:ed:0e:f2:cd: 0b:f3:9e:07:90:5d:51:56:13:89:6c:f2:0c:5e:40: ad:a3:55:3f:f4:80:e1:38:74:fc:68:1c:4f:8e:58: 52:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4C:E3:49:2F:87:BB:19:28:9D:30:07:99:38:73:B5:0A:46:CF:90 X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b3:17:1f:d0:61:df:05:e2:05:50:e9:12:13:4d:b4:a6:a3: 3b:6c:77:3c:54:df:74:83:ba:b4:d2:71:18:ab:e8:dc:f6:7b: e4:8f:fb:37:38:3d:17:83:9c:d6:50:9b:7b:ed:70:e8:0d:ee: de:65:c0:5b:d1:41:0c:7c:b8:f3:4a:61:46:a8:f2:03:dd:c6: f1:16:58:d0:9a:f4:14:7c:1d:1e:93:7c:52:2d:74:49:07:b9: 8b:14:e7:1c:64:82:2c:d7:5e:3d:e8:3b:4f:02:68:70:b7:7e: 7d:67:7b:93:09:b3:ef:da:9a:6c:d1:18:a4:a5:a2:2c:71:22: ed:78:fe:f0:f7:2b:54:59:ba:78:af:d5:1f:4d:cc:32:2c:72: de:10:5f:0e:e0:20:4b:5b:fb:b4:87:b3:50:08:ac:e8:c0:f2: c2:4c:a4:6a:d9:dd:3c:cd:e8:1b:70:d4:c6:c8:54:56:70:de: 25:ca:91:f5:55:29:fa:d3:75:21:fc:f4:bb:b4:1e:c0:8b:8b: 43:47:24:08:51:97:ff:ae:9e:2c:92:e3:e4:56:03:31:cf:96: 0d:23:20:03:25:6d:18:9e:6e:23:fe:a8:ca:6c:bc:23:f5:8f: 4f:14:f7:ff:53:7d:c7:be:6e:4e:74:91:69:7c:f6:0d:16:fa: 2a:bf:35:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjUxMTA0MTc1NDQ0WhcNMjUxMTExMTc1NDQ0WjAYMRYwFAYD VQQDEw02OTBhM2RlNC01YjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNFc+5swdrPlrthyIr2IhpLmuWSQbtKEXHy6Rod99/wt5YQwQVFEFvwwMSiM rXY7k2vYMil0H2jAAngBrIxYkSLvXNa7VYqUCT+tye/FoGDKcl6OkrJ/sqQXhYP8 OLjmdDUVSmNZU1hNZwXm+s1eu8DrOT2bXThKyC9yYgZ/PGyl9dK1bd20E22c7vef 9rTDcKOWPhpust1FTW39yNI5H2ycymN9jVHIGR+P8fxiRdXAJiwYXk6Sudxy1AzF Bn0x2L4Q9R2VEAD/NpjhXJDZdWjR2dNP4pkymDpqWe0O8s0L854HkF1RVhOJbPIM XkCto1U/9IDhOHT8aBxPjlhSgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZM40kv h7sZKJ0wB5k4c7UKRs+QMB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCNC83MDlGN0EyNkI4MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2 NDlrVFllSHhjc0lHaHZXWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUsxcf0GHfBeIFUOkSE020pqM7bHc8VN90g7q00nEYq+jc9nvkj/s3 OD0Xg5zWUJt77XDoDe7eZcBb0UEMfLjzSmFGqPID3cbxFljQmvQUfB0ek3xSLXRJ B7mLFOccZIIs11496DtPAmhwt359Z3uTCbPv2pps0RikpaIscSLteP7w9ytUWbp4 r9UfTcwyLHLeEF8O4CBLW/u0h7NQCKzowPLCTKRq2d08zegbcNTGyFRWcN4lypH1 VSn603Uh/PS7tB7Ai4tDRyQIUZf/rp4skuPkVgMxz5YNIyADJW0Ynm4j/qjKbLwj 9Y9PFPf/U33Hvm5OdJFpfPYNFvoqvzU0 -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:49 2025 by rpki-client