$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: 6xIwYiGQlNNj1Ya6zoy9L9/37NXdyyGF4rggyJLJLnc= Subject key identifier: 74:13:16:C8:B1:9F:F5:3C:F0:0E:61:8C:3B:6B:11:73:4C:6D:E6:5C Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 02F9 Signing time: Mon 03 Nov 2025 01:09:59 +0000 Manifest this update: Mon 03 Nov 2025 01:09:58 +0000 Manifest next update: Mon 10 Nov 2025 01:09:58 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: yD9Us4RpuX22a7XkgJGbFaKZY/cfht+nCM0TzMFWF9c=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Nov 3 01:09:58 2025 GMT Not After : Nov 10 01:09:58 2025 GMT Subject: CN=690800e6-bf80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b6:56:3b:5c:77:c5:20:13:91:4e:37:f7:5c: 6b:5a:3c:f6:46:11:c1:54:40:0d:76:74:53:f3:bf: 58:0c:50:cc:7f:71:4f:6b:49:8f:95:89:d5:53:65: 74:0e:99:03:c1:04:f9:5d:eb:e1:5a:2a:bd:96:e2: 12:d9:53:2a:9e:6a:23:1a:64:ef:cb:0e:82:70:37: 2f:8e:07:e7:df:6d:c5:27:1c:70:24:b3:f1:36:b7: 6b:64:57:b6:fe:1c:50:fb:d2:d9:7e:5e:a3:c9:27: 24:50:38:ef:a8:11:cc:d5:03:54:9f:6c:d2:23:b0: ed:23:ad:86:de:87:6c:1a:fc:75:b0:61:d1:13:8e: 70:f6:53:59:d5:c4:c6:67:9e:31:0e:e6:dc:8e:62: 17:f6:7e:4f:7d:94:c9:d0:8c:7a:fb:69:78:fc:25: c2:04:11:58:f1:6e:0c:0a:ab:b3:8a:bb:0f:4b:c7: 99:2a:cd:ee:13:94:19:b2:99:eb:c7:77:5c:ee:a5: 62:83:c5:63:0b:9d:19:39:22:8a:2d:3e:db:5c:df: 28:ca:c2:5d:d5:10:67:b3:c0:ac:d1:37:88:c6:ed: e3:49:77:46:01:38:f0:84:68:11:7d:f0:8d:c5:7f: 26:3d:65:00:55:ed:4b:88:65:da:69:66:85:11:fa: 6e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:13:16:C8:B1:9F:F5:3C:F0:0E:61:8C:3B:6B:11:73:4C:6D:E6:5C X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:90:68:ef:0d:56:66:67:11:b8:e3:f8:1d:df:42:24:05:de: e1:5a:55:2f:6f:34:51:ed:87:b6:71:59:09:55:88:ed:fc:50: a7:7d:20:1a:96:09:93:d2:64:48:3e:fe:8d:3b:12:8e:57:25: 56:63:66:e4:7e:5d:76:a7:e5:19:ce:85:c3:d5:cf:13:30:94: 40:1c:db:fe:fa:89:38:ef:23:bb:9a:8c:0d:95:ef:9a:6f:14: a9:d2:05:80:df:6a:2b:06:b9:c2:7b:30:2f:29:c7:eb:a9:b0: c1:ca:79:0e:14:e7:5c:22:2d:54:39:d2:85:f3:50:80:4b:0a: aa:17:a9:74:1d:84:63:7d:e7:d9:d8:d6:ee:bd:ee:ad:e9:21: 64:d1:81:ed:34:85:aa:6e:ca:0e:9d:ea:62:2c:6d:07:79:a7: 66:ca:e1:28:4e:a8:6b:47:bf:42:29:a7:e6:e2:69:26:46:b4: 81:ec:80:ae:47:9b:7a:23:c8:c9:03:a7:18:28:5b:9e:a2:f5: 2b:4e:e3:a3:07:2a:f7:89:3e:c1:10:6d:1e:3d:50:07:a0:32: 47:06:0e:69:41:33:9e:b5:c1:44:64:81:b5:c5:ff:f4:0d:6f: 38:f4:9b:74:9b:d1:04:72:65:76:7b:bb:d7:0f:a3:5c:f1:27: 5a:05:70:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUxMTAzMDEwOTU4WhcNMjUxMTEwMDEwOTU4WjAYMRYwFAYD VQQDEw02OTA4MDBlNi1iZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybZWO1x3xSATkU4391xrWjz2RhHBVEANdnRT879YDFDMf3FPa0mPlYnVU2V0 DpkDwQT5XevhWiq9luIS2VMqnmojGmTvyw6CcDcvjgfn323FJxxwJLPxNrdrZFe2 /hxQ+9LZfl6jySckUDjvqBHM1QNUn2zSI7DtI62G3odsGvx1sGHRE45w9lNZ1cTG Z54xDubcjmIX9n5PfZTJ0Ix6+2l4/CXCBBFY8W4MCquzirsPS8eZKs3uE5QZspnr x3dc7qVig8VjC50ZOSKKLT7bXN8oysJd1RBns8Cs0TeIxu3jSXdGATjwhGgRffCN xX8mPWUAVe1LiGXaaWaFEfpueQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQTFsix n/U88A5hjDtrEXNMbeZcMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSkGjvDVZmZxG44/gd30IkBd7hWlUvbzRR7Ye2cVkJVYjt/FCnfSAa lgmT0mRIPv6NOxKOVyVWY2bkfl12p+UZzoXD1c8TMJRAHNv++ok47yO7mowNle+a bxSp0gWA32orBrnCezAvKcfrqbDBynkOFOdcIi1UOdKF81CASwqqF6l0HYRjfefZ 2Nbuve6t6SFk0YHtNIWqbsoOnepiLG0HeadmyuEoTqhrR79CKafm4mkmRrSB7ICu R5t6I8jJA6cYKFueovUrTuOjByr3iT7BEG0ePVAHoDJHBg5pQTOetcFEZIG1xf/0 DW849Jt0m9EEcmV2e7vXD6Nc8SdaBXD/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:03 2025 by rpki-client