$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft File: _nzI0SyMuUDQbq7bWwrUPQUDYvE.mft (raw, json) Hash identifier: 9m2IuYpP2SB+8CzpMB3V0vbUc0AwKCkVu8X1eZHs7F0= Subject key identifier: DC:73:A3:79:34:73:0A:39:06:BF:F8:A0:83:B9:19:BF:8F:89:6E:EB Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft Manifest number: 95 Signing time: Sat 25 Oct 2025 10:15:30 +0000 Manifest this update: Sat 25 Oct 2025 10:15:29 +0000 Manifest next update: Sat 01 Nov 2025 10:15:29 +0000 Files and hashes: 1: _nzI0SyMuUDQbq7bWwrUPQUDYvE.crl (hash: f/r4o7FJuvrzYbuhycXFL9ZV+5NsS4xY9AfTvo2iHa8=) 2: F943DF74CBF711EFB86EC74FC4F9AE02.roa (hash: OQsiNqk/6UEhG+WoM7b9x1Qk45e1mg8EolKiz0N5DwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 10:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F, serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Validity Not Before: Oct 25 10:15:29 2025 GMT Not After : Nov 1 10:15:29 2025 GMT Subject: CN=68fca342-1097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:b6:60:7c:11:ca:81:42:23:ea:5f:7a:73: bb:d6:05:fa:8b:5f:b5:c6:6e:50:b0:80:85:aa:3e: 25:70:30:ad:99:6f:c0:d1:1d:08:fe:37:92:81:eb: 43:38:f7:c7:79:26:a5:74:67:e0:f0:cd:75:c9:62: 7d:dd:67:ec:57:dd:22:8b:fd:01:a6:6d:55:5f:24: 9f:cb:e7:5a:68:58:77:86:9a:4a:25:26:e0:9c:54: b2:c4:f9:9f:4f:b7:cd:54:4e:57:5a:1a:32:47:35: 29:a0:a7:20:e4:1b:d6:2b:29:c0:8e:77:d7:7f:7c: 1f:19:16:2a:3a:dd:4b:e9:00:5c:ec:db:39:1d:7a: 1d:e3:64:ad:85:1e:70:be:27:fa:9a:cc:43:b2:75: f1:b7:d9:d7:be:88:ab:62:ac:06:09:75:9c:7f:55: d4:4d:ba:34:a2:ab:90:e5:c1:0a:33:fa:1a:44:28: cd:16:32:4a:9c:41:5c:a6:13:23:ce:9e:0d:2f:03: dd:34:4e:14:0f:59:85:40:ac:e2:46:9f:84:09:c3: e2:7c:b4:1d:3c:cd:80:56:d2:d4:b1:5b:38:6c:de: 75:03:b8:b2:62:9b:3a:1f:49:1b:ed:65:98:59:6e: fb:68:1d:bb:c9:8e:93:c3:a1:9e:88:90:b3:a1:a1: c8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:73:A3:79:34:73:0A:39:06:BF:F8:A0:83:B9:19:BF:8F:89:6E:EB X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:9e:aa:80:4e:ae:2b:72:2a:89:5d:2e:be:8f:d4:6f:98:e4: 79:ba:6c:43:1d:87:92:8d:1f:f7:08:7b:83:29:5b:06:8f:84: aa:dd:3f:5c:25:d7:fa:a0:49:99:6d:b0:47:f5:f4:46:49:6a: 84:a6:43:08:6a:14:c5:45:53:5c:02:cc:c7:af:a9:16:ae:af: 37:53:2e:0f:c0:ff:f8:90:a7:8f:2b:e3:5f:77:2c:9d:c0:e5: 10:18:69:fb:18:ea:54:66:b5:35:c0:23:fb:b0:3e:64:40:b2: fa:1a:08:a0:73:de:a6:f3:1b:5d:85:be:c6:ec:a6:cc:44:b1: 5f:ef:cd:06:c2:30:4e:72:84:8c:ce:93:b6:02:dc:cf:ed:41: 33:3f:4b:16:7a:c2:08:79:39:fa:c1:82:14:d0:8c:0b:99:eb: df:62:8b:7f:10:dd:e9:2c:bf:dd:62:7a:e1:0b:e1:14:91:8a: 2f:b3:21:63:55:0a:61:72:0a:44:2c:00:7d:b4:07:f1:9b:09: 18:eb:ea:f2:33:60:76:ab:97:94:30:5d:fc:12:be:a6:ef:d4: a5:8c:d2:02:f3:70:e0:c2:06:c1:f6:c4:00:a1:38:f2:65:9f: b7:2f:c8:b4:6d:6a:53:61:c5:68:59:45:77:2e:3b:84:04:98: 8d:6f:72:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwNEYxMTAvBgNVBAUTKEZFN0NDOEQxMkM4Q0I5NDBEMDZFQUVEQjVCMEFENDNE MDUwMzYyRjEwHhcNMjUxMDI1MTAxNTI5WhcNMjUxMTAxMTAxNTI5WjAYMRYwFAYD VQQDEw02OGZjYTM0Mi0xMDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4G2YHwRyoFCI+pfenO71gX6i1+1xm5QsICFqj4lcDCtmW/A0R0I/jeSgetD OPfHeSaldGfg8M11yWJ93WfsV90ii/0Bpm1VXySfy+daaFh3hppKJSbgnFSyxPmf T7fNVE5XWhoyRzUpoKcg5BvWKynAjnfXf3wfGRYqOt1L6QBc7Ns5HXod42SthR5w vif6msxDsnXxt9nXvoirYqwGCXWcf1XUTbo0oquQ5cEKM/oaRCjNFjJKnEFcphMj zp4NLwPdNE4UD1mFQKziRp+ECcPifLQdPM2AVtLUsVs4bN51A7iyYps6H0kb7WWY WW77aB27yY6Tw6GeiJCzoaHIswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxzo3k0 cwo5Br/4oIO5Gb+PiW7rMB8GA1UdIwQYMBaAFP58yNEsjLlA0G6u21sK1D0FA2Lx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDA0Ri9ENUQwRkVCNENC RjcxMUVGODY5QzkwNEZDNEY5QUUwMi9fbnpJMFN5TXVVRFFicTdiV3dyVVBRVURZ dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDA0Ri9ENUQwRkVCNENCRjcxMUVGODY5QzkwNEZDNEY5QUUwMi9fbnpJMFN5TXVV RFFicTdiV3dyVVBRVURZdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdnqqATq4rciqJXS6+j9RvmOR5umxDHYeSjR/3CHuDKVsGj4Sq3T9c Jdf6oEmZbbBH9fRGSWqEpkMIahTFRVNcAszHr6kWrq83Uy4PwP/4kKePK+Nfdyyd wOUQGGn7GOpUZrU1wCP7sD5kQLL6Ggigc96m8xtdhb7G7KbMRLFf780GwjBOcoSM zpO2AtzP7UEzP0sWesIIeTn6wYIU0IwLmevfYot/EN3pLL/dYnrhC+EUkYovsyFj VQphcgpELAB9tAfxmwkY6+ryM2B2q5eUMF38Er6m79SljNIC83DgwgbB9sQAoTjy ZZ+3L8i0bWpTYcVoWUV3LjuEBJiNb3LX -----END CERTIFICATE-----Generated at Sat Oct 25 20:00:17 2025 by rpki-client