$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: 9rI9KgZy2ofxCqb6T/d8eBhks7Gj2vDfbTnyYfL81NQ= Subject key identifier: 5A:3B:D4:49:59:FC:80:7C:A2:8F:03:CE:B1:6C:6E:BA:EF:8F:EE:44 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2BC3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2BAD Signing time: Tue 04 Nov 2025 14:27:19 +0000 Manifest this update: Tue 04 Nov 2025 14:27:18 +0000 Manifest next update: Tue 11 Nov 2025 14:27:18 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: ofu1SN7R0R+BVT2lTeRo/ISLQtW1nWjct2tCGNjWdOk=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: NK9ND6m4XQQdYJfdTkVni6Vzs2GTwmWQ7OeeG3lJVUs=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: Dh1mpv4UoWbEEeCnj4hWDVua0Kb3Ya4BmP9+TVk00i8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11203 (0x2bc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Nov 4 14:27:18 2025 GMT Not After : Nov 11 14:27:18 2025 GMT Subject: CN=690a0d47-12b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:97:9b:9c:a6:5e:84:53:40:45:01:1e:d0: b8:95:44:ff:82:95:b4:fc:75:fc:ff:92:a9:4b:2a: 24:10:08:37:7e:6d:3c:ce:65:76:e9:f9:f6:79:88: eb:e7:5b:93:62:3d:79:cc:9c:1a:69:d6:b9:38:c9: 74:d0:21:29:01:df:c3:88:fb:74:2d:ad:4a:68:a9: a7:94:3b:0c:68:d2:48:76:a2:b0:2a:92:04:10:d6: 70:ca:aa:bb:78:98:b5:5f:74:b0:2c:4a:92:2a:e8: a1:e1:d3:b2:5a:ac:e1:77:17:59:cf:e5:d7:46:9f: c0:63:38:a6:e7:f8:d3:2e:f0:7a:71:97:a5:6d:e8: a6:59:8f:3b:e5:37:7e:9b:33:c4:b6:a9:af:b6:6c: 7d:92:27:de:ae:ba:65:e0:9e:a2:e6:a4:c4:ed:a7: a9:23:fe:83:fe:b0:ba:6d:37:72:8e:be:af:b3:03: d8:ad:8f:1a:95:ed:5e:b6:3b:f0:81:27:23:fa:40: 0c:6c:64:b5:81:2e:1c:fe:a8:ff:3f:5e:dc:93:b0: 58:ef:c7:fc:04:b1:85:6c:f8:50:01:53:a3:9d:04: 8c:a3:b3:9d:c4:92:c9:6a:f8:0f:0f:8d:d3:0b:76: 9b:4e:8d:b0:29:20:db:f9:4a:7e:9f:0c:51:c5:88: 4e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3B:D4:49:59:FC:80:7C:A2:8F:03:CE:B1:6C:6E:BA:EF:8F:EE:44 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:cd:4e:6d:e6:1b:10:e2:b3:a0:cc:ce:3e:d0:e8:ca:d5:66: 6f:6a:bd:a5:ca:b6:80:54:3f:5a:6b:63:73:0f:ed:bd:5c:50: 6d:5d:a4:1c:af:ad:7a:c9:0e:35:e4:0b:76:b6:c6:b4:b4:f1: 49:c4:9c:4f:a5:26:0b:84:e2:d1:ca:54:27:4c:98:5f:63:ad: a3:e5:98:d6:73:85:40:d2:c7:be:75:f4:43:d2:3b:a7:55:61: 85:50:a2:a5:7c:04:f7:30:6a:af:bf:ec:ba:95:69:fc:2c:5d: fb:2a:0e:b5:7e:ec:ff:c3:0c:44:72:3f:2e:a3:74:7c:99:21: 47:df:d4:04:d1:84:d4:13:03:0f:18:73:7c:08:74:85:7d:1e: 3d:0c:a8:30:ba:a1:d3:95:e9:81:29:71:3f:f3:52:47:c3:9e: 64:76:78:f1:82:5a:00:75:d2:37:53:b1:70:07:6e:86:b9:24: cb:ef:6a:b3:28:91:da:5a:ba:fd:1e:b9:87:83:dd:f3:a9:06: d8:75:86:76:3d:9b:68:4d:24:3e:7c:c9:99:6a:cf:b0:15:72: 40:7d:36:ae:91:ee:0e:a5:98:13:a3:1b:ec:a7:bb:c9:80:6a: 77:c9:3d:30:57:d9:b6:79:56:87:01:3b:ff:db:5d:fc:2c:4b: 5c:58:ce:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUxMTA0MTQyNzE4WhcNMjUxMTExMTQyNzE4WjAYMRYwFAYD VQQDEw02OTBhMGQ0Ny0xMmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusGXm5ymXoRTQEUBHtC4lUT/gpW0/HX8/5KpSyokEAg3fm08zmV26fn2eYjr 51uTYj15zJwaada5OMl00CEpAd/DiPt0La1KaKmnlDsMaNJIdqKwKpIEENZwyqq7 eJi1X3SwLEqSKuih4dOyWqzhdxdZz+XXRp/AYzim5/jTLvB6cZelbeimWY875Td+ mzPEtqmvtmx9kiferrpl4J6i5qTE7aepI/6D/rC6bTdyjr6vswPYrY8ale1etjvw gScj+kAMbGS1gS4c/qj/P17ck7BY78f8BLGFbPhQAVOjnQSMo7OdxJLJavgPD43T C3abTo2wKSDb+Up+nwxRxYhOlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFo71ElZ /IB8oo8DzrFsbrrvj+5EMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqzU5t5hsQ4rOgzM4+0OjK1WZvar2lyraAVD9aa2NzD+29XFBtXaQc r616yQ415At2tsa0tPFJxJxPpSYLhOLRylQnTJhfY62j5ZjWc4VA0se+dfRD0jun VWGFUKKlfAT3MGqvv+y6lWn8LF37Kg61fuz/wwxEcj8uo3R8mSFH39QE0YTUEwMP GHN8CHSFfR49DKgwuqHTlemBKXE/81JHw55kdnjxgloAddI3U7FwB26GuSTL72qz KJHaWrr9HrmHg93zqQbYdYZ2PZtoTSQ+fMmZas+wFXJAfTauke4OpZgToxvsp7vJ gGp3yT0wV9m2eVaHATv/2138LEtcWM7C -----END CERTIFICATE-----Generated at Wed Nov 5 15:25:52 2025 by rpki-client