$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft File: nMiKhtCzfs7o1XZX75l4lTJoDN8.mft (raw, json) Hash identifier: pTbnc6sQ9Zy1e8DW+75TFzBh6hvgcjB70UYL3B6vzVQ= Subject key identifier: 9A:1D:B6:DA:E3:9A:4D:B4:BB:BD:09:5C:9C:B9:1C:EA:9E:EC:E5:A2 Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft Manifest number: 015D Signing time: Wed 05 Nov 2025 04:17:16 +0000 Manifest this update: Wed 05 Nov 2025 04:17:15 +0000 Manifest next update: Wed 12 Nov 2025 04:17:15 +0000 Files and hashes: 1: nMiKhtCzfs7o1XZX75l4lTJoDN8.crl (hash: DQx3Pm/ki5laRvW7bR9vcYJshQPeO+vpRwIDaPaQrPc=) 2: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (hash: da2ZawdG5alxBTyeAyi7NwDwyDeUsxgI6h/wI95o9Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: Nov 5 04:17:15 2025 GMT Not After : Nov 12 04:17:15 2025 GMT Subject: CN=690acfcb-fcf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:30:e8:2d:93:a9:0f:6f:f5:f9:d9:89:7b: 5b:24:c3:c8:86:c5:bc:49:40:88:42:e4:ee:7a:88: 9e:51:07:e9:3a:50:e7:48:c9:b7:45:2e:34:96:80: 2c:80:30:c5:e2:09:ed:55:39:da:d2:72:b4:39:75: bf:dc:c3:60:3e:db:ce:83:20:3e:06:53:d2:01:46: d0:16:b1:28:48:11:3e:7a:53:e1:7d:8b:aa:38:8d: 1b:a9:e0:7f:16:af:be:80:6f:c0:92:9c:61:db:af: ae:5b:1d:5f:32:e2:a9:35:83:1f:11:56:b5:cc:31: 3a:04:e9:cf:a0:86:29:d0:6c:f7:11:48:3c:da:31: e6:a3:9d:ea:95:56:28:45:08:c8:02:7f:83:9e:e0: 3c:ea:09:e9:28:04:be:0c:3e:42:7d:d8:c8:ca:2e: 1a:36:9b:1d:ee:8e:3b:1d:22:c8:33:ca:65:c8:6d: 3a:92:ec:75:06:b6:7e:2f:f7:29:6e:8d:79:15:e8: 68:39:05:ef:33:ff:f0:66:05:5a:4f:be:e0:05:d0: c8:b1:71:d6:fa:17:d7:6c:51:22:a8:87:3a:96:d0: da:fb:5b:31:5b:de:63:dd:ce:a0:15:02:57:97:0b: d4:d7:27:67:35:02:9b:a7:0b:6a:43:8a:da:c7:44: 09:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1D:B6:DA:E3:9A:4D:B4:BB:BD:09:5C:9C:B9:1C:EA:9E:EC:E5:A2 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:c2:3b:38:25:54:66:e0:81:6d:4a:89:cd:3e:ad:16:0b:2d: a6:5e:cb:19:51:be:d6:97:93:a5:55:aa:42:ac:bf:98:31:69: f1:e5:2e:32:34:4a:e5:32:17:16:4c:79:b4:3b:c4:25:2c:d0: 48:4a:1c:56:ab:0f:d9:16:50:98:ea:58:3c:67:7a:80:df:9a: 04:96:c3:2a:99:35:76:9f:60:35:1f:e7:0a:65:8c:f1:8b:76: d0:26:1e:f1:f0:1d:2d:23:b7:78:1f:fd:38:5f:7e:8e:69:0c: 1a:9a:5a:cf:20:3f:98:e7:7b:a0:8b:c1:fc:2e:c9:5e:67:80: 2a:60:91:9c:db:2b:49:6b:80:02:7d:c7:b9:1e:72:5e:ea:39: b8:10:4f:70:42:61:e9:d3:c8:d7:81:c1:e8:f3:40:44:21:9b: 53:5a:79:cf:12:4c:7d:62:38:98:67:b4:12:d0:00:e4:04:9f: d0:cd:1f:22:e3:a1:a5:0b:d5:87:81:60:f5:c9:3a:97:2d:67: 4b:8e:b5:d2:99:63:33:b9:8f:be:0d:6d:ce:0f:15:30:4e:ae: 18:a2:2c:fe:93:cd:fb:3a:6f:be:88:2b:46:cf:9a:b0:17:82: 0b:d8:d9:ec:22:ca:05:48:78:06:d7:8a:2d:cd:50:9c:0f:be: 54:59:15:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjUxMTA1MDQxNzE1WhcNMjUxMTEyMDQxNzE1WjAYMRYwFAYD VQQDEw02OTBhY2ZjYi1mY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Uw6C2TqQ9v9fnZiXtbJMPIhsW8SUCIQuTueoieUQfpOlDnSMm3RS40loAs gDDF4gntVTna0nK0OXW/3MNgPtvOgyA+BlPSAUbQFrEoSBE+elPhfYuqOI0bqeB/ Fq++gG/Akpxh26+uWx1fMuKpNYMfEVa1zDE6BOnPoIYp0Gz3EUg82jHmo53qlVYo RQjIAn+DnuA86gnpKAS+DD5CfdjIyi4aNpsd7o47HSLIM8plyG06kux1BrZ+L/cp bo15FehoOQXvM//wZgVaT77gBdDIsXHW+hfXbFEiqIc6ltDa+1sxW95j3c6gFQJX lwvU1ydnNQKbpwtqQ4rax0QJIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJodttrj mk20u70JXJy5HOqe7OWiMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIzOS9GRUY1NDlFOEFGMTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZz N28xWFpYNzVsNGxUSm9ETjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNwjs4JVRm4IFtSonNPq0WCy2mXssZUb7Wl5OlVapCrL+YMWnx5S4y NErlMhcWTHm0O8QlLNBIShxWqw/ZFlCY6lg8Z3qA35oElsMqmTV2n2A1H+cKZYzx i3bQJh7x8B0tI7d4H/04X36OaQwamlrPID+Y53ugi8H8LsleZ4AqYJGc2ytJa4AC fce5HnJe6jm4EE9wQmHp08jXgcHo80BEIZtTWnnPEkx9YjiYZ7QS0ADkBJ/QzR8i 46GlC9WHgWD1yTqXLWdLjrXSmWMzuY++DW3ODxUwTq4Yoiz+k837Om++iCtGz5qw F4IL2NnsIsoFSHgG14otzVCcD75UWRVd -----END CERTIFICATE-----Generated at Wed Nov 5 17:52:32 2025 by rpki-client