$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: prZtTQ3DC7je6lhw8HF7yRXe3t0uTM7MraTABG+VZtQ= Subject key identifier: 30:55:27:A2:1F:47:4E:7D:24:9B:40:E2:D2:14:0A:1B:F9:5B:A7:EB Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: E2 Signing time: Mon 03 Nov 2025 05:40:29 +0000 Manifest this update: Mon 03 Nov 2025 05:40:29 +0000 Manifest next update: Mon 10 Nov 2025 05:40:29 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: jN3ArfNBl+LfqTogyROq9OjmJEEC1amIqTOESoPtIV4=) 2: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) 3: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: Nov 3 05:40:29 2025 GMT Not After : Nov 10 05:40:29 2025 GMT Subject: CN=6908404d-50b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3d:e5:e8:ac:73:75:a6:67:9f:e0:68:01:3f: da:d0:bf:67:8a:9c:cf:6f:f7:cc:08:86:c3:53:56: 32:9e:82:11:c6:a0:5d:21:40:c8:0c:80:56:e2:2a: 6a:6d:d6:e3:42:40:a2:46:a6:81:5f:4a:a0:f7:c0: 92:57:34:f7:55:e5:bc:fd:50:50:4e:e9:d7:bd:92: 6c:4b:78:bf:4c:95:16:ef:fd:74:73:e3:68:fe:73: 69:43:19:cf:19:d3:a5:ba:bd:7c:99:bd:e7:26:1e: de:ed:9d:9f:a8:bb:df:2e:d3:c4:c6:ff:6e:6d:04: 5d:7a:5f:38:11:04:0c:67:f3:f2:dc:17:f1:12:13: 2f:f2:89:09:81:37:6a:d5:07:65:63:b7:0c:b6:54: 6b:e9:fa:4c:6e:ba:64:8c:e9:83:64:46:37:1a:e7: c0:fd:ce:31:ac:55:03:e9:dc:15:69:c0:72:a9:2c: fb:30:3d:4b:d4:c6:85:fd:93:34:11:98:36:07:e2: 93:d8:fc:83:d2:16:01:82:4e:82:5d:6c:29:4e:39: b1:d7:a6:c0:91:88:c9:00:80:18:52:d7:1e:3b:18: c3:ce:8c:e8:1b:d8:69:20:b7:bf:8c:38:9a:5e:89: b6:a5:be:70:bf:51:5f:62:98:33:3f:e4:50:37:46: 75:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:55:27:A2:1F:47:4E:7D:24:9B:40:E2:D2:14:0A:1B:F9:5B:A7:EB X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:39:c5:3d:d9:c6:80:65:3b:ba:fb:2c:18:5e:50:8f:4f:38: cb:a6:37:cf:20:cf:05:e8:b0:e8:3c:0f:1b:01:45:1e:e7:74: 5d:eb:ea:94:1c:45:f6:b7:4c:54:51:5a:d2:2c:98:ab:74:7f: 1f:32:e8:3c:6b:99:7b:f0:79:ca:35:df:2c:d8:8e:73:25:49: a9:97:23:2e:63:fe:f2:98:28:0b:07:88:0e:04:f7:c1:93:35: 9f:b5:5b:77:69:ec:c3:77:ba:37:b8:72:1d:00:81:18:ec:4e: fc:3f:30:48:49:8d:db:6f:6f:1b:5a:f1:4a:a8:20:a4:88:46: 0b:26:a3:a2:0e:a7:26:30:94:42:8e:1d:64:9b:85:0d:ec:92: 48:0f:f5:13:d5:29:0d:1b:a3:7c:44:10:56:f0:3a:9f:19:e9: 29:01:c2:14:a8:22:df:36:d9:11:d8:83:79:0a:dc:73:2f:0f: 7e:c9:ac:fe:95:22:88:68:ff:e1:b8:3d:a7:e1:9f:e1:96:5e: 69:c4:ae:d9:55:2b:b7:94:fa:25:75:5f:89:76:40:68:80:49: 99:9f:27:a6:1a:a0:6e:fa:5e:20:a6:30:39:bf:95:64:92:c3: c4:d5:55:05:e6:ce:fe:3f:ad:bf:f0:dc:1b:fe:ce:27:f6:c0: e5:d0:78:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUxMTAzMDU0MDI5WhcNMjUxMTEwMDU0MDI5WjAYMRYwFAYD VQQDEw02OTA4NDA0ZC01MGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3z3l6KxzdaZnn+BoAT/a0L9nipzPb/fMCIbDU1YynoIRxqBdIUDIDIBW4ipq bdbjQkCiRqaBX0qg98CSVzT3VeW8/VBQTunXvZJsS3i/TJUW7/10c+No/nNpQxnP GdOlur18mb3nJh7e7Z2fqLvfLtPExv9ubQRdel84EQQMZ/Py3BfxEhMv8okJgTdq 1QdlY7cMtlRr6fpMbrpkjOmDZEY3GufA/c4xrFUD6dwVacByqSz7MD1L1MaF/ZM0 EZg2B+KT2PyD0hYBgk6CXWwpTjmx16bAkYjJAIAYUtceOxjDzozoG9hpILe/jDia Xom2pb5wv1FfYpgzP+RQN0Z1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBVJ6If R059JJtA4tIUChv5W6frMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLOcU92caAZTu6+ywYXlCPTzjLpjfPIM8F6LDoPA8bAUUe53Rd6+qU HEX2t0xUUVrSLJirdH8fMug8a5l78HnKNd8s2I5zJUmplyMuY/7ymCgLB4gOBPfB kzWftVt3aezDd7o3uHIdAIEY7E78PzBISY3bb28bWvFKqCCkiEYLJqOiDqcmMJRC jh1km4UN7JJID/UT1SkNG6N8RBBW8DqfGekpAcIUqCLfNtkR2IN5CtxzLw9+yaz+ lSKIaP/huD2n4Z/hll5pxK7ZVSu3lPoldV+JdkBogEmZnyemGqBu+l4gpjA5v5Vk ksPE1VUF5s7+P62/8Nwb/s4n9sDl0HiU -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:00 2025 by rpki-client