$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: gEkV54BI2oFRzWgOqAG1uwWRw6Kk5togN1cTqUg+wik= Subject key identifier: 86:EF:CE:A2:FD:28:95:E2:A8:8E:C0:59:77:42:E7:01:59:2A:31:E5 Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 01FC Signing time: Mon 03 Nov 2025 02:22:56 +0000 Manifest this update: Mon 03 Nov 2025 02:22:55 +0000 Manifest next update: Mon 10 Nov 2025 02:22:55 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: HIz5W2nyAk9YbQlRGQHfwJQdHxxofsrQ9QbgyzkiFe0=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860, serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Nov 3 02:22:55 2025 GMT Not After : Nov 10 02:22:55 2025 GMT Subject: CN=69081200-3cca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5d:8c:92:fd:f6:9c:ac:11:92:90:79:6c:37: fc:d1:69:47:7c:9f:1a:55:a2:f8:d8:b5:2a:2b:fc: 85:2b:fb:24:8e:c4:93:4d:1d:e7:31:4f:9a:6f:38: 6d:e4:71:d7:1c:4b:99:f3:81:e4:77:1d:0a:4b:01: cc:b9:ba:a9:7c:0a:2e:f1:cd:74:fa:43:c1:82:d8: 74:a7:2d:86:ca:5f:c0:b6:62:71:c6:82:ea:ae:9c: 74:29:6a:08:81:eb:da:84:ec:19:ee:44:c7:94:02: 31:a2:65:af:57:5d:a8:df:5b:85:9b:a0:ba:4c:d2: 7e:c2:7a:8e:ea:0f:bd:a3:bd:96:9f:4c:2f:b3:b4: 89:84:d0:b0:22:df:e4:65:52:51:e5:69:a4:49:31: 2f:27:53:90:32:60:27:7c:5a:ba:8e:96:e0:b4:9c: 34:b2:6a:d3:b5:b5:ba:3c:da:2a:ad:b1:a3:b6:cc: 6d:db:40:d5:9e:7a:32:32:08:38:e3:ba:99:82:f7: b6:1e:e1:f5:c9:a3:af:3f:72:ee:dd:2e:f3:a1:73: af:68:f6:ae:4a:9a:c7:51:09:54:28:87:4d:29:07: 18:0e:e1:84:f3:ea:60:9a:5c:5a:f1:e9:3e:ae:9a: a5:70:15:4d:ab:65:f5:aa:89:3f:da:83:9b:3c:3d: 28:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EF:CE:A2:FD:28:95:E2:A8:8E:C0:59:77:42:E7:01:59:2A:31:E5 X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:4e:03:c7:ae:f3:f4:e1:a1:d6:61:f7:29:d8:d2:5b:75:20: cc:22:68:aa:80:1b:a3:89:0a:5d:b1:dc:db:81:24:0f:11:bc: ab:f2:6d:ca:a2:36:4d:7b:ef:da:0c:77:31:df:76:d1:aa:91: f4:70:b3:2e:27:70:52:48:a2:87:fb:b1:58:90:30:d3:e1:9e: dd:f2:eb:3c:b1:2c:97:1a:b9:32:6a:3a:18:4b:19:3d:65:09: e3:10:ed:e6:81:2f:6c:76:1c:ea:4c:f1:32:c6:af:88:47:53: 4c:21:9d:98:99:a2:30:ba:18:d4:88:ae:bb:ae:34:cc:a5:fa: e9:25:25:54:d2:79:1d:58:c8:a1:fd:59:b2:74:92:6e:71:37: 50:85:77:e4:cd:68:8b:20:4a:12:53:c5:fe:32:a3:f5:c8:6c: d6:29:e7:97:1f:56:72:f5:91:67:a5:43:8e:51:da:0e:34:a1: 06:a4:da:fb:c6:83:19:25:b4:8c:c1:de:3e:5f:80:de:3b:60: bd:66:73:bf:a7:a8:c0:b0:06:95:a7:9e:a3:de:88:93:91:4a: 94:09:08:22:20:ae:57:26:c7:10:cd:b5:ad:0a:18:22:7c:f6: ab:70:fd:a6:58:73:a4:38:7b:41:24:07:df:9c:b2:de:03:2a: 3f:47:9d:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjUxMTAzMDIyMjU1WhcNMjUxMTEwMDIyMjU1WjAYMRYwFAYD VQQDEw02OTA4MTIwMC0zY2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l2Mkv32nKwRkpB5bDf80WlHfJ8aVaL42LUqK/yFK/skjsSTTR3nMU+abzht 5HHXHEuZ84Hkdx0KSwHMubqpfAou8c10+kPBgth0py2Gyl/AtmJxxoLqrpx0KWoI gevahOwZ7kTHlAIxomWvV12o31uFm6C6TNJ+wnqO6g+9o72Wn0wvs7SJhNCwIt/k ZVJR5WmkSTEvJ1OQMmAnfFq6jpbgtJw0smrTtbW6PNoqrbGjtsxt20DVnnoyMgg4 47qZgve2HuH1yaOvP3Lu3S7zoXOvaPauSprHUQlUKIdNKQcYDuGE8+pgmlxa8ek+ rpqlcBVNq2X1qok/2oObPD0oSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbvzqL9 KJXiqI7AWXdC5wFZKjHlMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKTgPHrvP04aHWYfcp2NJbdSDMImiqgBujiQpdsdzbgSQPEbyr8m3K ojZNe+/aDHcx33bRqpH0cLMuJ3BSSKKH+7FYkDDT4Z7d8us8sSyXGrkyajoYSxk9 ZQnjEO3mgS9sdhzqTPEyxq+IR1NMIZ2YmaIwuhjUiK67rjTMpfrpJSVU0nkdWMih /VmydJJucTdQhXfkzWiLIEoSU8X+MqP1yGzWKeeXH1Zy9ZFnpUOOUdoONKEGpNr7 xoMZJbSMwd4+X4DeO2C9ZnO/p6jAsAaVp56j3oiTkUqUCQgiIK5XJscQzbWtChgi fParcP2mWHOkOHtBJAffnLLeAyo/R51c -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:40 2025 by rpki-client