$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: r2A3zAHq189Z7T3iCVDZlba5umjFEOGL73DlNma0wnY= Subject key identifier: 3D:2C:38:5D:B4:DF:2E:26:72:AE:FD:DB:B9:AA:29:94:C8:1F:45:B4 Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 073D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 0735 Signing time: Sun 02 Nov 2025 21:43:24 +0000 Manifest this update: Sun 02 Nov 2025 21:43:23 +0000 Manifest next update: Sun 09 Nov 2025 21:43:23 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: iAfLGgegHZKjcUQRm82BXmAu9AySGetDTmEQaWQsi68=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: ErOTyz5l442f54R4SgwNJSi5aE/r3E7WeodId76rTk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53, serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Validity Not Before: Nov 2 21:43:23 2025 GMT Not After : Nov 9 21:43:23 2025 GMT Subject: CN=6907d07c-3a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:47:62:dc:35:c0:04:8d:a9:4d:f7:fa:92:d7: 64:85:d7:27:41:b6:63:c6:ed:56:c8:b9:36:be:23: 59:89:3f:68:e5:3d:29:53:c7:53:3e:16:f7:e8:2e: 5d:02:43:8b:e6:91:a0:28:57:dd:7b:c6:bc:3f:18: 78:64:d7:1f:17:66:ac:df:cc:59:f6:53:05:cd:43: 81:55:b7:27:a8:8e:2d:4b:25:68:2a:f7:a8:4f:b9: 6e:d9:33:e9:c7:0b:23:c8:a5:1b:2c:9c:c8:44:90: a8:cb:26:f8:33:c2:41:9a:e8:42:06:b8:97:d2:e5: f3:32:f0:e7:8b:ee:7d:dc:07:e0:56:38:86:bd:ea: 39:17:25:19:65:24:bc:27:e8:9a:f2:7f:06:ed:6c: b9:20:01:03:e2:a4:fc:22:ea:07:2a:58:1c:69:87: eb:77:f4:ff:0c:fc:f2:cf:20:08:c3:74:5f:3b:d0: 15:f9:76:0a:0a:b6:67:ac:d4:ad:b9:c2:3f:38:50: 11:bc:5a:f2:ca:59:52:8f:56:cc:17:90:00:92:e9: 52:2d:08:13:7c:ab:d1:67:36:91:b7:f7:a0:d1:3f: 81:62:ba:6d:49:ad:f7:93:d5:7c:5d:ff:99:72:9e: 35:08:d0:42:02:02:88:5e:bc:ee:b1:bc:e2:f0:1c: 5b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:2C:38:5D:B4:DF:2E:26:72:AE:FD:DB:B9:AA:29:94:C8:1F:45:B4 X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:1a:8a:21:4a:58:b1:ec:dc:a3:a3:a4:e1:0e:b7:c4:ec:c4: 92:fb:46:e5:9d:d5:1a:6a:24:1c:e7:cf:2e:6b:10:ea:1c:0a: 3c:d1:91:86:d3:e2:ba:0d:5c:11:43:98:a2:56:c5:1c:61:fc: c7:24:82:8e:91:27:61:34:3d:7d:e1:61:6d:94:0b:d3:1e:6b: 0e:d2:14:44:e5:fe:ef:3c:33:b5:56:a3:bc:3b:4e:45:67:49: f9:1d:fc:73:9d:ba:e5:b1:f1:cc:f2:ad:92:4f:d8:e9:dc:14: 79:c2:75:2a:80:c5:1c:05:ca:2c:8b:5c:aa:a3:f6:f5:d6:fc: e4:ae:5e:5e:48:79:9c:d5:1f:da:f7:de:8b:6c:3b:88:47:4d: 63:85:77:13:54:86:48:12:76:2d:95:89:ca:42:e2:20:8c:93: 16:18:b5:98:6b:dd:1e:6d:60:9a:1a:a5:8e:95:49:71:52:f1: fd:aa:e6:a4:44:7f:43:7a:9e:e7:5a:b0:55:c2:06:5d:93:a8: 01:76:b0:35:a6:32:0b:05:4f:7d:bd:79:ba:bc:68:39:a6:11: 09:84:a8:1c:ab:a6:dd:70:60:b4:01:d1:ba:bf:5f:24:da:76: 9f:fc:ca:f9:c7:21:28:5a:f2:d4:45:bb:f2:7e:a7:47:39:b2: 16:16:3f:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjUxMTAyMjE0MzIzWhcNMjUxMTA5MjE0MzIzWjAYMRYwFAYD VQQDEw02OTA3ZDA3Yy0zYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkdi3DXABI2pTff6ktdkhdcnQbZjxu1WyLk2viNZiT9o5T0pU8dTPhb36C5d AkOL5pGgKFfde8a8Pxh4ZNcfF2as38xZ9lMFzUOBVbcnqI4tSyVoKveoT7lu2TPp xwsjyKUbLJzIRJCoyyb4M8JBmuhCBriX0uXzMvDni+593AfgVjiGveo5FyUZZSS8 J+ia8n8G7Wy5IAED4qT8IuoHKlgcaYfrd/T/DPzyzyAIw3RfO9AV+XYKCrZnrNSt ucI/OFARvFryyllSj1bMF5AAkulSLQgTfKvRZzaRt/eg0T+BYrptSa33k9V8Xf+Z cp41CNBCAgKIXrzusbzi8Bxb3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0sOF20 3y4mcq7927mqKZTIH0W0MB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5GoohSlix7Nyjo6ThDrfE7MSS+0blndUaaiQc588uaxDqHAo80ZGG 0+K6DVwRQ5iiVsUcYfzHJIKOkSdhND194WFtlAvTHmsO0hRE5f7vPDO1VqO8O05F Z0n5HfxznbrlsfHM8q2ST9jp3BR5wnUqgMUcBcosi1yqo/b11vzkrl5eSHmc1R/a 996LbDuIR01jhXcTVIZIEnYtlYnKQuIgjJMWGLWYa90ebWCaGqWOlUlxUvH9quak RH9Dep7nWrBVwgZdk6gBdrA1pjILBU99vXm6vGg5phEJhKgcq6bdcGC0AdG6v18k 2naf/Mr5xyEoWvLURbvyfqdHObIWFj+v -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:27 2025 by rpki-client