$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: FyJDD/Kte7+yoEoVekDW8zu6R0pco4VqyhDA8aFbsZs= Subject key identifier: 21:45:63:49:0F:32:EE:FC:64:CA:26:D4:94:53:20:14:85:3A:49:68 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: F4 Signing time: Wed 05 Nov 2025 05:26:01 +0000 Manifest this update: Wed 05 Nov 2025 05:26:01 +0000 Manifest next update: Wed 12 Nov 2025 05:26:01 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: B190ZtsH/4e7gDK6W8Yxrr27bHbpnnai7+mox0MtioI=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Nov 5 05:26:01 2025 GMT Not After : Nov 12 05:26:01 2025 GMT Subject: CN=690adfe9-c432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:55:73:4d:35:96:e7:eb:a8:0c:b7:9d:96:87: 6b:cb:d4:5c:02:fd:93:f9:eb:17:46:06:42:af:dc: fc:98:c5:27:f4:f0:2b:fa:e4:5d:a9:f6:0f:41:f4: c2:4f:c9:d8:7a:66:21:ec:fc:37:4a:44:9d:7a:37: 9c:bd:cd:6e:5b:c1:6c:fa:0d:d9:3b:b6:2b:f7:57: 7a:9e:ba:8b:a1:9c:4f:0f:eb:c4:07:75:80:27:fd: 48:c3:54:3f:1d:ab:39:95:35:69:eb:c0:ba:40:03: 85:9e:10:ea:b9:93:b0:06:64:04:a3:7c:ca:0a:ff: 99:fd:9f:bf:0d:7c:b8:1c:19:95:70:24:47:1c:56: a3:17:5e:bc:c1:96:d0:4f:58:46:15:66:47:03:50: 43:da:aa:5c:a2:ca:c3:c4:77:23:d0:2d:f9:86:85: 26:9f:24:ba:82:69:ab:8b:67:26:6b:4a:8f:cc:4b: 81:69:80:4c:03:d8:52:77:5a:aa:cd:8f:6f:da:81: 79:87:c5:0f:31:7e:09:0b:5c:3b:6b:b2:ee:df:d2: c2:ac:9b:8b:03:90:6d:a7:d1:17:10:1c:c5:44:e4: cf:b6:e8:7d:7c:11:62:80:03:11:fc:5b:4d:e1:17: 84:55:94:db:89:9c:4c:38:86:60:35:a9:a1:4c:6c: 44:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:45:63:49:0F:32:EE:FC:64:CA:26:D4:94:53:20:14:85:3A:49:68 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:48:34:d1:0e:db:7d:5a:45:10:17:ab:6b:2f:ab:8b:9b:92: 76:44:9a:3f:df:5e:86:80:ca:3f:57:b3:f7:af:70:75:12:7e: 20:83:a5:a3:61:99:fd:21:24:44:47:05:54:27:cf:c8:1e:e7: 79:c6:fe:c0:fd:c7:70:36:e0:e5:74:f1:07:36:b8:2a:ed:c9: ad:57:9b:66:c2:9b:da:74:68:90:bb:e0:2f:1a:f6:45:a5:82: 74:44:54:16:1c:a8:8e:cb:93:5c:23:8a:a6:a1:ab:b0:d3:1b: 1d:dd:0f:17:ef:c9:52:77:19:80:cf:6b:c7:84:b8:2c:39:91: b7:dc:f1:e2:d0:02:71:69:48:ee:78:da:7b:39:0d:c5:04:9b: 2b:7d:9d:c7:ef:8f:b1:89:22:d7:c8:16:78:be:59:3c:db:b8: 29:79:26:35:49:b1:da:4f:9a:d2:89:64:cd:00:82:71:59:af: 9d:b1:d3:4f:45:42:f9:c4:b8:12:96:83:93:8b:90:c9:73:95: ce:76:17:18:43:c9:16:9e:b8:e0:22:18:12:d5:91:a9:ac:5f: ab:04:00:3e:84:c1:3b:52:22:3e:7f:24:37:a2:60:16:76:a7: 5e:14:2f:80:83:49:99:6e:9d:fd:56:0e:54:2c:d8:aa:c1:89: 1a:d0:71:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUxMTA1MDUyNjAxWhcNMjUxMTEyMDUyNjAxWjAYMRYwFAYD VQQDEw02OTBhZGZlOS1jNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVVzTTWW5+uoDLedlodry9RcAv2T+esXRgZCr9z8mMUn9PAr+uRdqfYPQfTC T8nYemYh7Pw3SkSdejecvc1uW8Fs+g3ZO7Yr91d6nrqLoZxPD+vEB3WAJ/1Iw1Q/ Has5lTVp68C6QAOFnhDquZOwBmQEo3zKCv+Z/Z+/DXy4HBmVcCRHHFajF168wZbQ T1hGFWZHA1BD2qpcosrDxHcj0C35hoUmnyS6gmmri2cma0qPzEuBaYBMA9hSd1qq zY9v2oF5h8UPMX4JC1w7a7Lu39LCrJuLA5Btp9EXEBzFROTPtuh9fBFigAMR/FtN 4ReEVZTbiZxMOIZgNamhTGxEAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFFY0kP Mu78ZMom1JRTIBSFOkloMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCSDTRDtt9WkUQF6trL6uLm5J2RJo/316GgMo/V7P3r3B1En4gg6Wj YZn9ISRERwVUJ8/IHud5xv7A/cdwNuDldPEHNrgq7cmtV5tmwpvadGiQu+AvGvZF pYJ0RFQWHKiOy5NcI4qmoauw0xsd3Q8X78lSdxmAz2vHhLgsOZG33PHi0AJxaUju eNp7OQ3FBJsrfZ3H74+xiSLXyBZ4vlk827gpeSY1SbHaT5rSiWTNAIJxWa+dsdNP RUL5xLgSloOTi5DJc5XOdhcYQ8kWnrjgIhgS1ZGprF+rBAA+hME7UiI+fyQ3omAW dqdeFC+Ag0mZbp39Vg5ULNiqwYka0HES -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:27 2025 by rpki-client