$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: KfkOjJEy6o/AnlHocBL9fLUxN7xTeGrRLuc485Z3EAQ= Subject key identifier: B7:FD:9F:AD:64:82:20:54:1D:A8:F6:96:5A:AD:93:59:B5:8A:74:80 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 08FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 08DD Signing time: Tue 04 Nov 2025 20:30:30 +0000 Manifest this update: Tue 04 Nov 2025 20:30:29 +0000 Manifest next update: Tue 11 Nov 2025 20:30:29 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: iJAxtibLWD1uxK+gzJwUnCp26JtRk/zT1cj6WFq/Q4k=) 2: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: 437Z5enRuaQO92H2FAcbSA65gK3IxD6GTsjTk9iVKzU=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: aSllRpcvN844MQkKpYVYqAr8n2r/52Cfde6x8KbnmRk=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: K91u4jcxoGdVwNsfyPrjf+VTjR+CX+rH0W4KKBUnjNU=) 5: F814A546C01411EA912AC365C4F9AE02.roa (hash: /CldUEY4cGDwhLiLYXGQ01djQa6ApY49jgcW3InFkyE=) 6: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: XAx1J/DLce82S0DJ6QETMIUPs/8svCL35NE1zYijtJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Nov 4 20:30:29 2025 GMT Not After : Nov 11 20:30:29 2025 GMT Subject: CN=690a6265-02cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d5:ab:35:1a:4c:68:55:81:5a:29:f3:61:84: 0d:17:ee:c5:8f:9d:08:b9:a6:df:74:a7:65:85:12: 50:a6:da:eb:27:1d:10:f8:c7:de:9b:f8:6c:a3:ed: 11:73:e4:3f:8c:f6:1d:f0:d0:45:5c:71:8d:0c:42: 0b:b6:c3:6c:97:48:99:a1:19:7c:69:c3:6d:34:cb: 56:53:87:82:28:64:0b:84:2e:d6:36:ae:58:bc:d5: 32:b5:b4:47:a7:8d:7e:10:91:e1:f5:3c:b6:ed:c1: 63:e5:93:3c:a8:5a:3c:48:d5:79:e8:0c:b7:a1:40: fd:04:17:5d:db:a1:23:65:54:fd:60:32:7b:5e:70: fa:6a:1c:4b:41:2f:17:4e:64:9d:83:93:be:5d:75: 48:6d:18:eb:75:2a:c5:73:2d:9e:18:d3:67:7b:2e: da:4d:8b:12:a2:48:b7:11:7f:14:69:2f:57:b6:c4: 7a:67:6b:41:33:4a:5c:e3:50:49:43:a3:f0:16:ef: d3:bb:ef:e0:86:43:8e:6f:66:bd:4c:57:00:26:15: 9a:9d:15:e3:9c:06:9d:b6:42:96:ea:8d:cd:50:45: a3:9a:04:9a:14:f7:9d:e2:c7:43:57:fc:53:84:cd: 24:fd:31:53:54:6c:b9:02:55:86:f3:f7:0a:68:51: 8f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:FD:9F:AD:64:82:20:54:1D:A8:F6:96:5A:AD:93:59:B5:8A:74:80 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:dd:9b:d5:77:e1:e8:d6:ea:96:03:0b:71:48:cb:2d:d7:88: 77:e0:bf:a1:19:94:1a:69:4c:d7:05:c5:8c:71:f6:b7:42:9a: ca:eb:ef:db:27:96:a1:37:43:a3:81:7b:a4:1b:64:73:fb:48: 87:ab:c8:3a:58:70:3a:cb:b1:7a:b9:c2:9b:1c:8f:cb:c3:92: 9a:e1:71:73:78:15:ac:cb:d2:fd:d1:e5:29:ba:91:47:95:9d: e2:ec:31:65:41:83:a5:33:6f:09:01:24:1f:ef:8d:81:44:94: 0e:1b:72:03:bd:4b:29:18:90:ec:5e:a0:69:26:cd:d7:1c:2a: 5c:ea:4b:00:9f:9c:9f:2e:90:60:a0:ca:9a:a1:21:bd:65:3b: 1d:f8:bd:24:35:7f:dd:61:ea:92:ac:bc:70:c3:92:96:69:78: 86:7e:c2:5e:99:6d:d3:8a:a1:37:1b:6c:3b:99:7f:82:d6:48: dd:c1:73:57:ab:24:fa:e7:e1:8a:a8:dc:90:66:df:3c:ce:74: 7b:9e:0d:e4:0b:7f:5f:29:b6:d1:42:d5:75:41:e2:01:e9:87: 92:d4:a6:c6:6e:5f:34:10:16:b2:26:0e:39:2b:a6:c2:1a:44: 25:d0:70:c9:a5:f6:a1:0e:e5:18:f9:02:dc:e9:a8:a7:02:f8: 79:f8:00:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUxMTA0MjAzMDI5WhcNMjUxMTExMjAzMDI5WjAYMRYwFAYD VQQDEw02OTBhNjI2NS0wMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NWrNRpMaFWBWinzYYQNF+7Fj50IuabfdKdlhRJQptrrJx0Q+Mfem/hso+0R c+Q/jPYd8NBFXHGNDEILtsNsl0iZoRl8acNtNMtWU4eCKGQLhC7WNq5YvNUytbRH p41+EJHh9Ty27cFj5ZM8qFo8SNV56Ay3oUD9BBdd26EjZVT9YDJ7XnD6ahxLQS8X TmSdg5O+XXVIbRjrdSrFcy2eGNNney7aTYsSoki3EX8UaS9XtsR6Z2tBM0pc41BJ Q6PwFu/Tu+/ghkOOb2a9TFcAJhWanRXjnAadtkKW6o3NUEWjmgSaFPed4sdDV/xT hM0k/TFTVGy5AlWG8/cKaFGPPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf9n61k giBUHaj2llqtk1m1inSAMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd3ZvVd+Ho1uqWAwtxSMst14h34L+hGZQaaUzXBcWMcfa3QprK6+/b J5ahN0OjgXukG2Rz+0iHq8g6WHA6y7F6ucKbHI/Lw5Ka4XFzeBWsy9L90eUpupFH lZ3i7DFlQYOlM28JASQf742BRJQOG3IDvUspGJDsXqBpJs3XHCpc6ksAn5yfLpBg oMqaoSG9ZTsd+L0kNX/dYeqSrLxww5KWaXiGfsJemW3TiqE3G2w7mX+C1kjdwXNX qyT65+GKqNyQZt88znR7ng3kC39fKbbRQtV1QeIB6YeS1KbGbl80EBayJg45K6bC GkQl0HDJpfahDuUY+QLc6ainAvh5+ABO -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:20 2025 by rpki-client