$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: 6SHq0vJfpjn1uCDA9/EVdpMkbaocf6nRHn9c372KrXE= Subject key identifier: 90:3A:BE:06:28:05:62:A5:0C:5C:40:06:02:E9:5C:32:7F:C4:A9:2D Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 0445 Signing time: Wed 05 Nov 2025 00:19:19 +0000 Manifest this update: Wed 05 Nov 2025 00:19:18 +0000 Manifest next update: Wed 12 Nov 2025 00:19:18 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: HBZgkWkiLzO64wzeXhmcjyCun4RNEbOnFHW1n3E6UxY=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: iYM80ZUZv11SjTkmdUWv3G7CQp9g2JbkQfuMruAgJ5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351, serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Nov 5 00:19:18 2025 GMT Not After : Nov 12 00:19:18 2025 GMT Subject: CN=690a9806-2cbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:7c:53:28:8c:a4:24:ca:d5:25:48:aa:8d: 8b:fe:e0:e3:59:6d:22:12:66:b2:4f:60:30:94:77: ca:96:f8:b1:47:19:97:38:30:06:96:27:5e:b3:b2: 8b:01:a6:e2:1b:f9:a3:e3:dd:ca:30:76:2a:f0:df: 71:2f:fc:70:db:e8:e1:40:d6:4a:24:df:36:6a:44: 9e:be:4c:99:53:24:5f:f8:6c:33:f9:d4:c1:c8:dd: 10:27:d7:42:34:13:d5:6b:57:1a:92:a5:c6:f2:43: a9:ba:f9:af:5e:37:d9:51:b4:db:c6:b4:15:6e:7c: db:71:0b:0a:15:f8:3d:fc:77:7c:fa:14:34:a7:ad: 93:7d:3c:65:61:40:a2:08:cb:d4:f5:53:af:7c:fb: 9d:2f:fa:9c:8d:85:c9:fe:24:2b:97:7c:47:e6:74: d4:79:c4:9f:f7:38:47:92:ec:f4:52:4f:dc:de:b3: 94:ab:ad:7f:e6:65:ee:57:36:6d:8a:84:9a:c8:ce: 78:a0:58:ac:e0:29:76:1a:dd:da:7c:9a:18:1f:0e: c4:03:af:be:14:36:c5:4b:59:05:53:7c:ab:7e:43: e1:63:2c:5c:25:4f:5b:77:d2:92:24:3c:8d:74:51: 77:88:2b:10:21:46:b2:7a:e8:07:d7:77:89:ee:da: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3A:BE:06:28:05:62:A5:0C:5C:40:06:02:E9:5C:32:7F:C4:A9:2D X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:f0:25:5b:a9:70:d6:ce:3b:a1:fb:98:24:cb:8d:05:0e:0a: 8a:57:b9:54:7f:fa:91:7e:83:c8:d4:42:57:f5:48:15:33:16: f8:70:6c:50:ad:bd:d5:f9:2b:6e:2b:83:3b:55:82:15:2c:b3: 43:6d:5a:fe:88:82:7a:93:5f:05:7f:64:6a:9c:81:64:80:1d: a1:cc:24:a0:5b:3f:cc:48:6f:09:de:b2:28:67:6b:0a:7f:43: e4:21:2e:89:c5:aa:e0:a9:2b:61:50:9c:9d:20:b6:4f:2a:bf: a9:a8:ac:00:1e:2e:36:9c:3c:7c:ea:7f:ce:b2:48:24:9f:ad: dc:26:2d:74:e8:40:76:02:e5:d4:bc:c9:a3:84:eb:c8:fa:af: 80:41:a9:6c:eb:db:9f:19:61:d7:9b:81:3f:9b:ac:b5:a1:ca: 8d:28:5d:a0:76:0d:eb:ae:6d:38:00:89:62:c6:a8:41:61:6e: bd:d2:dd:f5:20:8c:2c:c0:86:bf:8f:0e:df:64:1f:84:11:ae: c1:76:fa:37:8a:ff:8a:22:cb:90:0a:b1:17:47:a9:54:1f:f5: a6:80:ea:fb:93:43:a3:cd:78:47:2e:3c:de:6e:44:ed:98:c3: 2e:95:ce:be:75:b7:18:68:d2:b7:68:f5:e0:26:c7:11:20:66: 3e:ab:33:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjUxMTA1MDAxOTE4WhcNMjUxMTEyMDAxOTE4WjAYMRYwFAYD VQQDEw02OTBhOTgwNi0yY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Mp8UyiMpCTK1SVIqo2L/uDjWW0iEmayT2AwlHfKlvixRxmXODAGlides7KL AabiG/mj493KMHYq8N9xL/xw2+jhQNZKJN82akSevkyZUyRf+Gwz+dTByN0QJ9dC NBPVa1cakqXG8kOpuvmvXjfZUbTbxrQVbnzbcQsKFfg9/Hd8+hQ0p62TfTxlYUCi CMvU9VOvfPudL/qcjYXJ/iQrl3xH5nTUecSf9zhHkuz0Uk/c3rOUq61/5mXuVzZt ioSayM54oFis4Cl2Gt3afJoYHw7EA6++FDbFS1kFU3yrfkPhYyxcJU9bd9KSJDyN dFF3iCsQIUayeugH13eJ7tr4OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJA6vgYo BWKlDFxABgLpXDJ/xKktMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDT8CVbqXDWzjuh+5gky40FDgqKV7lUf/qRfoPI1EJX9UgVMxb4cGxQ rb3V+StuK4M7VYIVLLNDbVr+iIJ6k18Ff2RqnIFkgB2hzCSgWz/MSG8J3rIoZ2sK f0PkIS6JxargqSthUJydILZPKr+pqKwAHi42nDx86n/Oskgkn63cJi106EB2AuXU vMmjhOvI+q+AQals69ufGWHXm4E/m6y1ocqNKF2gdg3rrm04AIlixqhBYW690t31 IIwswIa/jw7fZB+EEa7Bdvo3iv+KIsuQCrEXR6lUH/WmgOr7k0OjzXhHLjzebkTt mMMulc6+dbcYaNK3aPXgJscRIGY+qzNn -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:38 2025 by rpki-client