$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: ckEHulco44JiYOtu/GYxvbiTh1b78XDTlI7OGVLsVco= Subject key identifier: 25:B2:B5:5A:57:FE:EE:FE:72:BB:E0:19:1F:A1:8B:A1:38:09:92:73 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0B82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0B73 Signing time: Mon 20 Oct 2025 19:45:00 +0000 Manifest this update: Mon 20 Oct 2025 19:45:00 +0000 Manifest next update: Mon 27 Oct 2025 19:45:00 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: g7A6uW4KT701/N0MaF8qtbbZuikQHOX1uV9ETWFpeZc=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: W5+kOWbZGS14ELyZcRgsnHDoDEprTMY6BAsrjTgD1lM=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: IHsFYOv59LECoaCivBqfgQOGspVwczVXXfHkd/E13QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2946 (0xb82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: Oct 20 19:45:00 2025 GMT Not After : Oct 27 19:45:00 2025 GMT Subject: CN=68f6913c-d6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:4b:8b:35:b8:bc:81:67:ee:29:4f:08:f4: 79:28:53:aa:12:0c:67:3a:49:d0:6d:c0:80:94:ac: d7:ba:df:11:d4:3c:98:ea:cc:aa:64:6f:b1:8c:fb: 53:d6:03:60:26:72:f5:16:9d:f5:38:47:b5:92:37: 10:f6:5b:44:e2:b4:f1:0c:73:bc:a8:c4:54:28:a6: 7c:ee:98:a4:5b:d1:71:b3:2a:f2:cf:5e:d5:72:e5: 06:d5:ee:2b:ef:ff:0d:64:d7:63:01:6c:64:ef:2d: 8e:66:a1:9d:2d:9f:6f:6c:f7:34:80:fa:75:d2:4a: fc:48:64:56:d0:3e:c1:a5:e5:66:8e:a5:91:10:f5: 62:f2:90:a9:15:41:e9:fe:a8:fb:94:37:e9:4c:a3: ce:f9:e6:5d:ae:23:0a:37:f3:10:c2:56:78:9f:f6: 9f:81:2c:8c:dc:39:dc:e0:ae:d1:3c:86:c6:d7:d8: 70:55:85:40:8e:50:a1:81:0f:c5:2d:96:77:8b:f2: a7:d0:b0:cb:48:3f:67:bc:67:e8:2c:aa:af:6d:e9: e6:02:d9:a4:a3:a2:d8:1f:87:a5:a4:56:70:00:ac: aa:d7:b9:60:24:07:48:95:ac:96:68:2a:71:dd:03: d4:eb:77:8e:85:8f:74:30:cf:36:3a:f2:b5:25:4b: 01:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B2:B5:5A:57:FE:EE:FE:72:BB:E0:19:1F:A1:8B:A1:38:09:92:73 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:6c:46:f0:64:19:56:ed:62:f9:b5:44:d9:12:c6:0e:be:92: 4e:09:69:5a:81:7d:84:7f:4c:06:fb:3b:5d:26:9e:f1:c8:7e: 2b:fa:f3:a6:1b:df:dd:1f:4b:fe:d7:04:4b:d8:f2:db:a4:22: d8:82:50:bc:f7:cc:26:4a:a9:fb:28:04:9e:f1:89:e3:a3:61: 4f:0a:46:68:a9:fb:23:d2:2f:4b:70:87:9d:7c:cd:af:67:42: c1:59:7b:56:c4:24:98:0b:60:c8:45:9a:8a:c6:b3:11:f3:4d: b3:f3:aa:1b:42:f4:87:a5:ae:f3:8f:c7:e7:bf:06:9d:d6:e5: 1a:8f:e7:e2:71:97:3e:ed:d8:c6:7f:f6:67:05:52:11:77:1a: 02:c4:65:f1:81:b4:54:0a:20:2e:da:3c:f6:61:7d:42:ae:02: 4f:53:3c:c2:05:cd:e8:02:c6:07:21:f7:bf:46:da:1b:5b:80: 24:c0:6d:f3:a0:8a:7c:27:42:9d:a4:d5:fc:17:e2:eb:d8:32: 3a:06:04:cb:53:4f:a2:0a:5b:84:56:9b:4b:a0:47:29:d7:d4: bd:62:ab:30:8f:0d:b3:39:26:27:e0:58:f6:80:24:49:87:9a: 50:6f:71:c2:b3:f1:e8:70:a6:ab:a5:fb:00:28:d0:ca:99:e2: 8c:ad:09:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjUxMDIwMTk0NTAwWhcNMjUxMDI3MTk0NTAwWjAYMRYwFAYD VQQDEw02OGY2OTEzYy1kNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7FLizW4vIFn7ilPCPR5KFOqEgxnOknQbcCAlKzXut8R1DyY6syqZG+xjPtT 1gNgJnL1Fp31OEe1kjcQ9ltE4rTxDHO8qMRUKKZ87pikW9Fxsyryz17VcuUG1e4r 7/8NZNdjAWxk7y2OZqGdLZ9vbPc0gPp10kr8SGRW0D7BpeVmjqWREPVi8pCpFUHp /qj7lDfpTKPO+eZdriMKN/MQwlZ4n/afgSyM3Dnc4K7RPIbG19hwVYVAjlChgQ/F LZZ3i/Kn0LDLSD9nvGfoLKqvbenmAtmko6LYH4elpFZwAKyq17lgJAdIlayWaCpx 3QPU63eOhY90MM82OvK1JUsB4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWytVpX /u7+crvgGR+hi6E4CZJzMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSbEbwZBlW7WL5tUTZEsYOvpJOCWlagX2Ef0wG+ztdJp7xyH4r+vOm G9/dH0v+1wRL2PLbpCLYglC898wmSqn7KASe8Ynjo2FPCkZoqfsj0i9LcIedfM2v Z0LBWXtWxCSYC2DIRZqKxrMR802z86obQvSHpa7zj8fnvwad1uUaj+ficZc+7djG f/ZnBVIRdxoCxGXxgbRUCiAu2jz2YX1CrgJPUzzCBc3oAsYHIfe/RtobW4AkwG3z oIp8J0KdpNX8F+Lr2DI6BgTLU0+iCluEVptLoEcp19S9Yqswjw2zOSYn4Fj2gCRJ h5pQb3HCs/HocKarpfsAKNDKmeKMrQn0 -----END CERTIFICATE-----Generated at Tue Oct 21 06:31:05 2025 by rpki-client