$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: SA7KD10I4niAbbQuCCJl0IGCyfsDbSphapx6Zgz5IeE= Subject key identifier: 6B:E1:A4:21:84:ED:94:0C:1C:B9:15:2A:F3:D6:8E:FD:1B:1E:0B:B5 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08A6 Signing time: Sun 26 Oct 2025 21:13:45 +0000 Manifest this update: Sun 26 Oct 2025 21:13:45 +0000 Manifest next update: Sun 02 Nov 2025 21:13:45 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: s0m0di99sjHvQ9niCqEG7of2wGDsVouNjVsJwrlKBvk=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: 50ACgx85pKWBSdecvm1PzIpRWx2Le1Y9DodxHydptpU=) 5: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 21:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Oct 26 21:13:45 2025 GMT Not After : Nov 2 21:13:45 2025 GMT Subject: CN=68fe8f09-9a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:93:bb:06:93:3e:13:7f:58:c1:30:e8:a1:0b: 2d:58:bf:b5:0f:fd:ef:9b:81:83:fd:cf:0d:4d:f5: 13:95:21:ab:f3:2d:05:42:15:3d:c3:83:7b:79:2a: 5b:47:72:da:8e:39:d0:3a:03:ca:ac:53:73:ab:63: da:3a:17:aa:5c:ce:77:46:97:f8:9f:7f:e9:01:c9: 52:0e:d3:e5:81:f0:06:07:ad:23:b1:78:ad:fa:8f: 5b:27:82:cf:85:d2:cd:de:7c:03:81:39:69:c8:33: 71:87:3e:e7:74:23:9a:e7:c6:1c:69:55:ed:47:c4: 7f:b7:54:28:25:41:18:85:48:a5:a4:34:59:ac:34: 65:da:ff:2c:4d:e5:83:4f:20:24:38:96:a4:90:dc: ea:18:39:ef:f3:9d:96:e2:a1:46:6e:6d:84:a8:e5: f6:88:64:23:5d:37:1d:b6:65:de:4c:3a:37:09:23: 6b:8f:4d:f8:ef:f7:e6:fd:49:8b:d4:a4:5b:42:f3: ce:e7:40:c0:8e:0e:93:84:8d:49:b5:b5:ba:09:90: af:af:0a:5f:5c:ea:f5:fd:af:81:8f:3c:e9:91:65: b1:5e:f4:55:1d:2b:0f:f9:65:5e:d7:ee:fc:b9:40: 6e:18:8d:67:32:17:dc:21:17:83:c8:26:2c:ba:a5: 7b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E1:A4:21:84:ED:94:0C:1C:B9:15:2A:F3:D6:8E:FD:1B:1E:0B:B5 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ea:e0:4e:bd:d7:6e:fa:fb:ee:9f:9e:61:00:c5:de:4b:8e: 0c:ef:33:40:5c:d4:20:6d:e0:91:03:10:89:21:80:56:44:44: e5:3b:ea:55:98:fd:df:4b:82:da:c3:61:2d:46:f6:9e:17:41: 78:10:cd:91:ba:9d:92:1a:63:d6:ab:53:74:b2:0a:4c:da:f5: b0:c6:81:1d:54:34:cd:dc:a1:d2:87:ac:fa:e6:ff:b9:c2:0e: 07:87:ac:19:7c:a7:d5:b7:5b:f9:f9:56:37:b2:b2:45:db:a0: 61:e9:1e:77:50:7e:02:5d:ab:00:36:0e:c1:59:04:87:59:17: 24:88:78:1b:e2:bb:2c:dd:f3:c1:44:02:f5:ce:b1:30:f0:ac: 4f:8c:86:0e:ec:67:3f:83:0f:5f:35:59:bb:2a:a1:2e:90:a4: 93:f3:9b:15:a2:81:fc:7e:63:5e:fb:25:6c:98:e2:7b:4b:c9: e7:3e:1a:7f:7e:16:f8:22:01:b1:f4:68:59:fc:cc:4f:8d:68: 4a:c6:8d:10:5d:84:d1:61:8a:49:9b:f4:be:3e:20:b8:2a:c6: 67:18:22:3f:25:d9:4e:02:05:9a:06:e1:60:a6:17:05:28:bb: bf:78:dc:a6:71:4f:44:61:72:ab:e1:b7:a3:26:89:ed:e0:3c: 14:64:fd:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMDI2MjExMzQ1WhcNMjUxMTAyMjExMzQ1WjAYMRYwFAYD VQQDEw02OGZlOGYwOS05YTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pO7BpM+E39YwTDooQstWL+1D/3vm4GD/c8NTfUTlSGr8y0FQhU9w4N7eSpb R3LajjnQOgPKrFNzq2PaOheqXM53Rpf4n3/pAclSDtPlgfAGB60jsXit+o9bJ4LP hdLN3nwDgTlpyDNxhz7ndCOa58YcaVXtR8R/t1QoJUEYhUilpDRZrDRl2v8sTeWD TyAkOJakkNzqGDnv852W4qFGbm2EqOX2iGQjXTcdtmXeTDo3CSNrj0347/fm/UmL 1KRbQvPO50DAjg6ThI1JtbW6CZCvrwpfXOr1/a+BjzzpkWWxXvRVHSsP+WVe1+78 uUBuGI1nMhfcIReDyCYsuqV76wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvhpCGE 7ZQMHLkVKvPWjv0bHgu1MB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK6uBOvddu+vvun55hAMXeS44M7zNAXNQgbeCRAxCJIYBWRETlO+pV mP3fS4Law2EtRvaeF0F4EM2Rup2SGmPWq1N0sgpM2vWwxoEdVDTN3KHSh6z65v+5 wg4Hh6wZfKfVt1v5+VY3srJF26Bh6R53UH4CXasANg7BWQSHWRckiHgb4rss3fPB RAL1zrEw8KxPjIYO7Gc/gw9fNVm7KqEukKST85sVooH8fmNe+yVsmOJ7S8nnPhp/ fhb4IgGx9GhZ/MxPjWhKxo0QXYTRYYpJm/S+PiC4KsZnGCI/JdlOAgWaBuFgphcF KLu/eNymcU9EYXKr4bejJont4DwUZP20 -----END CERTIFICATE-----Generated at Tue Oct 28 11:46:02 2025 by rpki-client