$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: XX+tmFZaCBjXbNVnaQmEzvVUAMS3XU+jVmM787jPHHg= Subject key identifier: DA:17:2A:B3:0B:F5:AA:D9:82:3B:B1:31:66:01:02:4B:D9:91:BF:33 Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 0D Signing time: Fri 17 Oct 2025 11:50:46 +0000 Manifest this update: Fri 17 Oct 2025 11:50:46 +0000 Manifest next update: Fri 24 Oct 2025 11:50:46 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: HqP6iquYWAeQBgMe2LEa/EBL13Io0/4aC0Xpt+tWM+c=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lVwKB14i6OpwyRz8FsA7PbQdrXdHjD1P3S/SDqyzydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Oct 17 11:50:46 2025 GMT Not After : Oct 24 11:50:46 2025 GMT Subject: CN=68f22d96-6ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5b:d4:45:c0:07:87:26:b5:d3:2f:35:79:59: 28:6d:ba:ca:ad:1c:a2:ac:44:1f:c3:f3:33:46:16: 1e:76:5e:79:71:2a:09:6c:e1:1f:a3:a8:5f:5f:76: 95:90:f9:5c:6e:0a:0f:e0:dd:4e:68:fa:41:96:a3: 48:07:d7:df:d5:57:1e:4c:a8:85:3f:fc:d0:fb:e2: 02:25:7a:63:da:e4:fd:6f:7e:51:ed:67:46:83:50: 53:20:d0:64:5b:63:f1:29:ce:b0:f9:46:74:0f:73: 3b:32:87:64:f5:c5:b5:3a:24:3a:8b:6d:85:0b:21: 8d:98:6d:36:6c:fd:69:94:93:a8:c7:dd:30:16:1d: 6a:48:98:45:21:db:aa:bf:5c:10:a2:3b:f9:39:95: 30:5b:05:20:31:2e:14:76:af:22:c4:82:55:ec:ba: 4f:53:85:79:5e:d5:95:d6:83:fd:34:d6:cf:7e:12: 49:e0:aa:fe:17:19:b1:ae:6d:e8:49:6b:2c:4f:ee: 4b:86:7c:c7:15:57:cd:9c:33:7c:78:80:43:71:9f: 47:63:56:8b:10:c3:07:a9:a8:25:aa:13:3e:ba:98: 05:ab:24:3a:96:10:52:f0:3a:f4:4a:7a:20:85:ff: 74:3f:0a:a8:75:8f:87:22:05:e9:8e:b2:62:00:d1: 96:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:17:2A:B3:0B:F5:AA:D9:82:3B:B1:31:66:01:02:4B:D9:91:BF:33 X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:b7:bb:d7:29:f3:65:f6:c3:b6:35:0a:55:84:ea:6c:4a:d3: 4e:a1:d7:f2:85:80:63:c3:c9:07:e9:95:5f:5c:2f:7c:93:68: 84:78:a3:44:50:b2:2c:f8:81:4b:87:27:e3:18:61:3f:a9:cc: e4:ff:12:e0:2b:93:bc:33:7e:1f:64:71:af:16:0c:f9:08:68: e0:b7:4f:ea:42:18:23:ee:be:46:21:5e:9a:7b:d8:80:1f:91: a9:6c:10:b0:4e:12:02:94:fc:79:ae:08:06:99:f0:4a:cd:32: d7:20:c2:ca:cd:33:1e:6b:33:38:26:b1:d8:9a:fc:90:d8:ad: fd:8e:b2:f5:bf:bb:21:2b:3e:98:80:44:86:b4:fc:a8:85:e3: 27:55:de:68:4f:b5:e5:9b:3f:15:a0:84:c8:c5:98:fa:fb:14: 91:df:dd:42:d9:44:65:df:24:cd:7e:8d:87:2e:6b:72:4b:d8: 40:42:35:67:38:b7:80:f6:ab:19:5c:88:79:13:c1:72:63:28: 9b:7e:43:fb:6b:b6:7f:40:20:15:e2:f5:38:be:ea:cc:63:9e: 3e:27:dd:2b:99:a1:ec:5e:64:01:b7:b4:5e:42:a5:ba:2e:f2: 39:d8:09:e7:2f:ce:59:e1:f1:f7:54:21:61:79:f5:65:d0:71: 3e:11:dd:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNTEwMTcxMTUwNDZaFw0yNTEwMjQxMTUwNDZaMBgxFjAUBgNV BAMTDTY4ZjIyZDk2LTZlYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdW9RFwAeHJrXTLzV5WShtusqtHKKsRB/D8zNGFh52XnlxKgls4R+jqF9fdpWQ +VxuCg/g3U5o+kGWo0gH19/VVx5MqIU//ND74gIlemPa5P1vflHtZ0aDUFMg0GRb Y/EpzrD5RnQPczsyh2T1xbU6JDqLbYULIY2YbTZs/WmUk6jH3TAWHWpImEUh26q/ XBCiO/k5lTBbBSAxLhR2ryLEglXsuk9ThXle1ZXWg/001s9+Ekngqv4XGbGubehJ ayxP7kuGfMcVV82cM3x4gENxn0djVosQwwepqCWqEz66mAWrJDqWEFLwOvRKeiCF /3Q/Cqh1j4ciBemOsmIA0ZaRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2hcqswv1 qtmCO7ExZgECS9mRvzMwHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJi3u9cp82X2w7Y1ClWE6mxK006h1/KFgGPDyQfplV9cL3yTaIR4o0RQ siz4gUuHJ+MYYT+pzOT/EuArk7wzfh9kca8WDPkIaOC3T+pCGCPuvkYhXpp72IAf kalsELBOEgKU/HmuCAaZ8ErNMtcgwsrNMx5rMzgmsdia/JDYrf2OsvW/uyErPpiA RIa0/KiF4ydV3mhPteWbPxWghMjFmPr7FJHf3ULZRGXfJM1+jYcua3JL2EBCNWc4 t4D2qxlciHkTwXJjKJt+Q/trtn9AIBXi9Ti+6sxjnj4n3SuZoexeZAG3tF5Cpbou 8jnYCecvzlnh8fdUIWF59WXQcT4R3dw= -----END CERTIFICATE-----Generated at Sat Oct 18 17:59:26 2025 by rpki-client