$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft File: NZYOHhaeA_Rvr5H04_8TUUamMTo.mft (raw, json) Hash identifier: /xdwKmBR7XgxcLcSb4P8AsBLjf0NUicxc99rmNSStGQ= Subject key identifier: 5B:00:E8:C3:20:F0:A7:E1:D8:46:52:7F:03:F9:4E:D7:7F:E2:70:15 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 13CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft Manifest number: 13C2 Signing time: Sun 02 Nov 2025 16:56:36 +0000 Manifest this update: Sun 02 Nov 2025 16:56:36 +0000 Manifest next update: Sun 09 Nov 2025 16:56:36 +0000 Files and hashes: 1: NZYOHhaeA_Rvr5H04_8TUUamMTo.crl (hash: 3DQp6Dfzulf+NQqrafYxgwX7Y8yaj3CSt/jto9VwL1M=) 2: 21333DA69B2E11E8908CC50FC4F9AE02.roa (hash: WNdbUIrq72HztcMiWEgIIxA2+CqivH5XP6V6egY23qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5066 (0x13ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Nov 2 16:56:36 2025 GMT Not After : Nov 9 16:56:36 2025 GMT Subject: CN=69078d44-a7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:21:37:e3:e7:9f:9c:5e:56:82:02:ba:8b:2e: fd:5d:c0:11:bd:86:90:19:48:d0:3e:e7:1c:75:b5: 18:f4:31:e3:84:1e:ce:8e:a0:c4:8f:19:3c:1e:bd: c1:32:ec:9b:da:89:36:af:db:38:95:df:ba:eb:d5: ea:06:d2:5f:86:2f:72:61:43:4c:0c:7b:e1:57:fd: e2:64:fa:a2:d8:8f:0a:38:f8:bf:14:52:76:e7:1c: 03:b2:42:96:c3:8d:08:1d:10:a0:9d:56:68:d8:5a: 8e:5b:42:67:64:fe:0a:3b:f7:fc:6e:4d:24:24:9e: be:7f:9e:dd:f4:1d:39:62:29:b6:0c:e5:be:77:4b: 22:52:33:64:f5:30:9c:b4:23:0b:df:1c:36:96:44: 98:8b:86:e7:7c:c6:a2:e8:d5:b4:40:e1:c8:2f:1e: d4:fe:67:23:48:99:2a:9c:f1:4f:5c:ba:08:39:6d: 86:e6:17:92:56:2a:0d:04:f8:46:fc:56:0c:a9:ac: 1b:d1:21:1e:25:76:3a:9d:e1:40:05:30:9e:7a:e6: 4c:55:80:31:d5:a8:f7:46:6f:82:c6:80:09:e5:5a: e1:eb:dd:36:09:4a:5a:d8:fa:68:ce:d7:36:67:96: 29:dd:f4:4f:bb:25:ee:e2:1e:f1:79:6f:59:db:01: 8b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:E8:C3:20:F0:A7:E1:D8:46:52:7F:03:F9:4E:D7:7F:E2:70:15 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:05:da:26:76:62:4e:92:2b:cc:2a:da:a4:4d:dd:4d:a1:b1: 98:3e:c0:07:43:c6:09:32:66:67:02:f4:44:da:2c:ee:92:5f: fc:06:18:63:f5:2a:2e:d4:84:69:88:aa:94:fa:0a:81:10:6b: b5:ab:ec:4b:7a:10:39:dd:c4:10:4c:4d:b3:a9:f1:cf:2b:ff: e9:5d:a2:37:58:5e:ad:11:e7:7c:82:8b:2e:85:2a:ae:1a:12: fa:2b:12:bd:df:b2:cd:86:9e:25:41:c2:17:ff:40:19:71:6d: 4a:88:44:2f:b6:22:b4:a4:0b:eb:21:a9:da:45:36:45:65:32: fe:e0:dc:12:b0:ce:53:c9:ff:02:36:14:cc:99:0a:77:9b:13: b1:49:45:ae:4c:ad:e3:b8:31:7f:ab:e3:e3:15:20:23:bc:96: e5:78:5d:2f:fd:94:d4:ea:46:d1:68:32:e8:fb:2c:db:56:c0: a0:d7:47:b3:58:7a:c0:bd:a7:6e:4f:48:97:7d:7e:ce:0b:45: 98:98:7b:7b:ba:72:d5:aa:ef:0c:08:b0:71:20:90:4d:fe:a0: 11:42:00:44:a1:f1:df:6d:87:b4:bf:c5:69:79:46:54:61:b1: ee:1b:a2:79:d1:a7:7e:3b:37:82:9e:a8:e8:fd:62:d0:78:6f: 7c:68:a8:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjUxMTAyMTY1NjM2WhcNMjUxMTA5MTY1NjM2WjAYMRYwFAYD VQQDEw02OTA3OGQ0NC1hN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCE34+efnF5WggK6iy79XcARvYaQGUjQPuccdbUY9DHjhB7OjqDEjxk8Hr3B Muyb2ok2r9s4ld+669XqBtJfhi9yYUNMDHvhV/3iZPqi2I8KOPi/FFJ25xwDskKW w40IHRCgnVZo2FqOW0JnZP4KO/f8bk0kJJ6+f57d9B05Yim2DOW+d0siUjNk9TCc tCML3xw2lkSYi4bnfMai6NW0QOHILx7U/mcjSJkqnPFPXLoIOW2G5heSVioNBPhG /FYMqawb0SEeJXY6neFABTCeeuZMVYAx1aj3Rm+CxoAJ5Vrh6902CUpa2Ppoztc2 Z5Yp3fRPuyXu4h7xeW9Z2wGLvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsA6MMg 8Kfh2EZSfwP5Ttd/4nAVMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkJBNS9FNjQ4NEFDRTlCMkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFf UnZyNUgwNF84VFVVYW1NVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrBdomdmJOkivMKtqkTd1NobGYPsAHQ8YJMmZnAvRE2izukl/8Bhhj 9Sou1IRpiKqU+gqBEGu1q+xLehA53cQQTE2zqfHPK//pXaI3WF6tEed8gosuhSqu GhL6KxK937LNhp4lQcIX/0AZcW1KiEQvtiK0pAvrIanaRTZFZTL+4NwSsM5Tyf8C NhTMmQp3mxOxSUWuTK3juDF/q+PjFSAjvJbleF0v/ZTU6kbRaDLo+yzbVsCg10ez WHrAvaduT0iXfX7OC0WYmHt7unLVqu8MCLBxIJBN/qARQgBEofHfbYe0v8VpeUZU YbHuG6J50ad+OzeCnqjo/WLQeG98aKjD -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:16 2025 by rpki-client