$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: s18YeRyl1/dldB0l5mdrtJUeb7H/iG6AvMrrkMSqzqw= Subject key identifier: 6F:E9:47:6D:58:77:C0:75:CD:48:DE:36:EF:BF:1D:1F:D1:AC:30:82 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0768 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0740 Signing time: Sun 02 Nov 2025 21:48:52 +0000 Manifest this update: Sun 02 Nov 2025 21:48:52 +0000 Manifest next update: Sun 09 Nov 2025 21:48:52 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: TEMc95bPUskVyKXHbelZM9qIXf4zl/9L+Y87AuN/G+A=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1896 (0x768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Nov 2 21:48:52 2025 GMT Not After : Nov 9 21:48:52 2025 GMT Subject: CN=6907d1c4-3dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:db:76:a3:a7:3f:40:f9:95:80:7d:2a:2e: a8:cb:d5:d9:90:e5:a2:ef:fd:3d:94:b3:55:fa:e3: 41:f5:96:a2:86:0c:8f:26:8b:55:a5:5d:4b:2c:2a: ac:6e:9e:31:e6:bb:87:38:ce:b4:5a:4b:79:b7:04: ac:34:58:d7:38:a6:b6:2a:4f:3e:27:9c:90:a8:4d: 1d:8d:cb:ca:2c:64:58:73:38:e4:5d:53:11:b9:96: a9:32:18:06:c6:ad:47:95:2c:c6:4f:d2:c5:d4:82: 55:63:bf:66:11:e9:ee:cd:12:f8:12:d3:f8:a5:21: 33:8f:9e:83:35:fb:6f:2a:34:56:a7:8f:47:1a:88: 44:22:a9:db:df:a2:4e:c5:af:b4:e2:45:eb:6b:66: d6:8e:3b:6a:6f:4b:e8:36:12:07:4a:57:cf:41:5f: 67:e0:62:bf:2c:77:6b:14:17:0a:60:03:58:ac:ac: af:6e:ea:c6:68:a2:df:ed:fe:20:05:16:15:b0:b3: 11:c1:80:cd:6f:6e:e4:26:bc:04:e4:35:1c:e9:20: d3:9a:44:db:8b:86:74:e4:87:38:fe:db:f2:f8:9a: e2:19:f1:3d:b4:90:b8:08:c1:0a:8b:aa:a0:6c:b1: 49:a6:b3:dd:e1:39:cb:88:7a:2a:96:15:0a:e4:8d: a8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E9:47:6D:58:77:C0:75:CD:48:DE:36:EF:BF:1D:1F:D1:AC:30:82 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:e9:8d:99:e4:82:14:ca:16:72:9c:53:f4:0e:b7:27:85:9a: 0f:bc:41:ef:82:2e:17:8f:bd:08:70:ff:46:33:a4:97:7e:cf: 36:ee:3c:92:2c:2c:26:be:b2:b8:1f:f5:59:84:81:a1:b7:f0: 89:b7:e8:e5:7a:69:28:43:25:33:5a:54:bc:b8:ea:21:44:1c: 5f:c2:e7:f5:b7:59:9e:60:6b:a1:aa:62:06:89:24:5c:25:f1: 26:3c:d9:1d:9e:4a:a7:a0:2a:33:1c:a5:b5:9b:3a:9d:fc:d7: da:79:9a:27:c8:e9:b3:a4:ff:42:7b:d5:54:de:e9:a9:f5:20: 39:9f:8d:29:87:4a:7e:fe:40:1d:e7:43:5c:a1:2b:28:60:67: ab:bf:b8:42:3e:1b:c8:7a:cc:88:b3:56:a1:c3:34:84:a6:b3: 70:fd:4a:df:90:e2:d5:4a:3b:21:e0:37:65:73:35:bd:cc:d3: 69:4e:95:2d:f0:56:ac:b5:f2:59:69:d1:6e:50:25:12:92:f0: fc:fc:8c:f1:67:61:32:7d:dc:d5:dd:e5:0d:36:f7:00:33:d3: 30:e6:f7:65:97:65:df:4e:79:08:3f:26:6f:8f:aa:fe:1c:bc: 93:ff:4b:bd:70:0d:9b:73:d9:96:66:94:a6:54:a5:d4:4f:32: e7:9d:40:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUxMTAyMjE0ODUyWhcNMjUxMTA5MjE0ODUyWjAYMRYwFAYD VQQDEw02OTA3ZDFjNC0zZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06vbdqOnP0D5lYB9Ki6oy9XZkOWi7/09lLNV+uNB9ZaihgyPJotVpV1LLCqs bp4x5ruHOM60Wkt5twSsNFjXOKa2Kk8+J5yQqE0djcvKLGRYczjkXVMRuZapMhgG xq1HlSzGT9LF1IJVY79mEenuzRL4EtP4pSEzj56DNftvKjRWp49HGohEIqnb36JO xa+04kXra2bWjjtqb0voNhIHSlfPQV9n4GK/LHdrFBcKYANYrKyvburGaKLf7f4g BRYVsLMRwYDNb27kJrwE5DUc6SDTmkTbi4Z05Ic4/tvy+JriGfE9tJC4CMEKi6qg bLFJprPd4TnLiHoqlhUK5I2oIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/pR21Y d8B1zUjeNu+/HR/RrDCCMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD6Y2Z5IIUyhZynFP0DrcnhZoPvEHvgi4Xj70IcP9GM6SXfs827jyS LCwmvrK4H/VZhIGht/CJt+jlemkoQyUzWlS8uOohRBxfwuf1t1meYGuhqmIGiSRc JfEmPNkdnkqnoCozHKW1mzqd/NfaeZonyOmzpP9Ce9VU3ump9SA5n40ph0p+/kAd 50NcoSsoYGerv7hCPhvIesyIs1ahwzSEprNw/UrfkOLVSjsh4DdlczW9zNNpTpUt 8FastfJZadFuUCUSkvD8/IzxZ2EyfdzV3eUNNvcAM9Mw5vdll2XfTnkIPyZvj6r+ HLyT/0u9cA2bc9mWZpSmVKXUTzLnnUAF -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:05 2025 by rpki-client