$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: a2J3FHPsYs1TPEUt2ywHJoxPWRKZbS9M+KGE1vnYJgc= Subject key identifier: 38:7F:92:E5:19:7C:F8:D9:D9:E3:AE:0F:83:A6:A8:C0:5F:D1:81:01 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 0131 Signing time: Wed 05 Nov 2025 04:41:00 +0000 Manifest this update: Wed 05 Nov 2025 04:41:00 +0000 Manifest next update: Wed 12 Nov 2025 04:41:00 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: VwSbq3HfwaU/alosKot98uJGNEp8AuLknGuAvpL2YmM=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Nov 5 04:41:00 2025 GMT Not After : Nov 12 04:41:00 2025 GMT Subject: CN=690ad55c-e2c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:04:c1:9d:98:7e:b4:45:b2:fe:3a:66:fa:8b: 06:17:56:17:37:2a:b3:34:01:96:7c:e4:02:4e:d6: 0d:62:8b:55:17:5e:bb:40:a4:1e:91:07:e7:ea:eb: 0f:44:1f:4f:b5:3a:a2:3c:51:f6:ed:54:c5:be:75: 1e:5b:13:73:24:a9:13:f0:28:79:83:ad:ff:b9:8e: 9d:10:d8:82:51:b2:9e:e2:84:76:f9:44:eb:81:45: ed:f8:53:e1:29:2a:68:68:2a:61:f7:1b:69:0a:a4: e3:ff:b6:96:42:cb:8b:e8:98:73:d9:1b:6b:e7:94: 2d:44:48:a2:7d:ea:39:0c:b9:8f:9d:99:a7:30:e3: 0d:1e:3c:70:d1:a8:97:f8:c5:ff:ac:d1:b2:0d:ee: 07:12:e5:67:2a:ed:d5:7e:d6:18:d4:e3:45:d8:69: b6:da:72:fd:30:29:14:f8:f2:47:47:07:86:1c:22: fd:ee:7e:ab:01:d9:3c:c2:da:b0:23:26:85:22:93: d5:08:f4:97:90:cc:7a:97:b6:0d:91:21:dd:5c:ad: a5:15:94:35:15:31:ca:08:88:0d:2d:09:6d:cb:75: 70:15:7d:13:eb:6a:84:26:4d:a7:52:b7:26:f5:ce: b7:43:bf:87:8e:15:61:a3:77:52:b7:5c:50:c2:3a: 3b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7F:92:E5:19:7C:F8:D9:D9:E3:AE:0F:83:A6:A8:C0:5F:D1:81:01 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b5:eb:2a:9a:3a:d2:6d:60:7c:e4:a8:b0:17:49:f7:72:97: 57:2d:8d:e3:fd:0b:87:1c:8f:1d:5e:da:1a:69:36:1e:db:34: b0:ce:73:bb:74:55:1d:a0:75:90:99:5e:f5:c3:ec:37:10:63: 1e:8e:4d:bd:81:0a:09:5d:a2:66:fc:20:ce:19:f9:4c:08:e3: 2f:40:66:be:42:5d:9f:40:c2:ca:e9:cd:40:c2:7f:26:09:f7: 60:2a:76:b0:d4:34:04:93:a8:79:39:dd:71:42:24:f7:6a:63: 7d:1c:2c:32:52:ed:ec:b2:18:1d:b5:ef:f8:87:3a:4e:7b:2d: a0:2c:36:e4:63:c5:e5:6c:ec:d3:07:11:f5:0d:4f:1f:f9:84: 76:cf:e9:a1:c0:9b:be:8d:56:65:d0:9b:a7:9c:ec:80:88:6e: ba:e7:54:66:b9:a2:7f:40:a4:55:43:56:da:0e:04:4c:40:ad: c6:1e:e3:cd:db:a9:62:e1:b0:cf:9c:bf:47:1a:26:c7:6e:5f: cd:c2:dd:d5:0c:81:a0:91:27:8a:66:82:d6:36:59:a4:5d:f7: 29:ff:4d:c1:c7:63:91:e5:a5:27:7e:94:55:3a:e8:0d:70:3d: 56:ab:f8:c6:4d:18:90:6e:55:60:94:be:1d:9f:8e:1e:88:d4: 48:a1:18:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUxMTA1MDQ0MTAwWhcNMjUxMTEyMDQ0MTAwWjAYMRYwFAYD VQQDEw02OTBhZDU1Yy1lMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQTBnZh+tEWy/jpm+osGF1YXNyqzNAGWfOQCTtYNYotVF167QKQekQfn6usP RB9PtTqiPFH27VTFvnUeWxNzJKkT8Ch5g63/uY6dENiCUbKe4oR2+UTrgUXt+FPh KSpoaCph9xtpCqTj/7aWQsuL6Jhz2Rtr55QtREiifeo5DLmPnZmnMOMNHjxw0aiX +MX/rNGyDe4HEuVnKu3VftYY1ONF2Gm22nL9MCkU+PJHRweGHCL97n6rAdk8wtqw IyaFIpPVCPSXkMx6l7YNkSHdXK2lFZQ1FTHKCIgNLQlty3VwFX0T62qEJk2nUrcm 9c63Q7+HjhVho3dSt1xQwjo7eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh/kuUZ fPjZ2eOuD4OmqMBf0YEBMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBytesqmjrSbWB85KiwF0n3cpdXLY3j/QuHHI8dXtoaaTYe2zSwznO7 dFUdoHWQmV71w+w3EGMejk29gQoJXaJm/CDOGflMCOMvQGa+Ql2fQMLK6c1Awn8m CfdgKnaw1DQEk6h5Od1xQiT3amN9HCwyUu3sshgdte/4hzpOey2gLDbkY8XlbOzT BxH1DU8f+YR2z+mhwJu+jVZl0JunnOyAiG6651RmuaJ/QKRVQ1baDgRMQK3GHuPN 26li4bDPnL9HGibHbl/Nwt3VDIGgkSeKZoLWNlmkXfcp/03Bx2OR5aUnfpRVOugN cD1Wq/jGTRiQblVglL4dn44eiNRIoRgd -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:56 2025 by rpki-client