$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft File: 01nlbdoAA8SD861qQMCA6Qy41HI.mft (raw, json) Hash identifier: yjaNzKxxd1Bh6q8ct2x53YvIcHX7o5ryCzc7R18Nn4g= Subject key identifier: 46:4E:71:94:F7:B7:B4:41:FB:9B:C9:44:4B:1A:DC:E2:2C:FB:8D:FA Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft Manifest number: FC Signing time: Wed 05 Nov 2025 05:20:34 +0000 Manifest this update: Wed 05 Nov 2025 05:20:34 +0000 Manifest next update: Wed 12 Nov 2025 05:20:34 +0000 Files and hashes: 1: 01nlbdoAA8SD861qQMCA6Qy41HI.crl (hash: I3zktTWwLftrB7Kq5JJut9guUanFoZMC1SPHYDHMi6I=) 2: 97530E023D0911EFA33E4A38C4F9AE02.roa (hash: pQpO0/PUmsk8Ne8Tm6dn6viR4Yd/Q34ajbz6wbYS9Zc=) 3: 573BE4DE3D0811EF84157B26C4F9AE02.roa (hash: sO/FcuusJDef8Jgb3m4tmdQe6il72ChJ0DAhA0al1Bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9B1B, serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Validity Not Before: Nov 5 05:20:34 2025 GMT Not After : Nov 12 05:20:34 2025 GMT Subject: CN=690adea2-2eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:df:e2:ec:2e:26:21:79:0f:92:92:70:91: c1:1f:de:73:80:da:c0:01:94:ee:38:3c:7e:26:24: 08:3d:fb:b1:23:71:21:7f:52:dc:80:5c:bd:63:b4: 58:39:30:75:e0:ce:9d:33:b0:05:f9:19:8c:d0:a8: 4f:af:5f:71:5c:b1:56:26:d4:8f:6b:c8:b7:42:29: ff:a7:9e:b4:3d:d0:c9:ca:5c:6e:f1:2c:e2:9c:e1: 52:3e:01:4e:f4:72:54:a0:19:8c:a6:b0:86:42:46: 74:8e:90:42:d1:d3:79:1c:81:23:01:c1:e8:ba:a2: 0e:0d:10:37:3f:38:ab:cb:27:79:ee:94:e7:82:e6: 94:43:97:7c:3d:02:bc:40:ec:a1:24:54:9e:23:7e: 23:0d:3a:b6:43:f2:0c:9e:ad:d8:5f:95:96:62:3e: 64:81:15:d9:57:e2:b8:f0:36:eb:98:a1:41:e1:06: c5:7b:2b:f9:1f:56:7b:b0:e5:36:9c:63:d8:38:26: 7f:28:20:8c:c4:fb:67:97:68:70:7a:93:49:15:8c: dc:7b:f7:97:29:53:5d:fb:f6:ea:cc:fc:e0:7c:9d: 62:fb:d2:9b:be:2d:75:e1:2f:f6:26:5b:f9:c6:23: 34:34:5e:e7:b5:1a:fb:fb:f9:87:7d:5a:d5:53:8b: d7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4E:71:94:F7:B7:B4:41:FB:9B:C9:44:4B:1A:DC:E2:2C:FB:8D:FA X509v3 Authority Key Identifier: keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:0e:05:ca:cb:8b:a5:3d:fb:28:9a:7f:d7:97:bb:a3:a8:22: 2d:79:ea:4c:c7:dc:8b:75:2f:eb:07:c2:99:40:de:41:70:59: 94:95:cb:21:8f:00:d3:ae:d6:10:5f:78:a6:60:cb:4f:f3:0c: 74:53:c9:fc:ec:b2:87:f9:9d:c3:f0:bf:5c:0b:df:aa:ed:37: 18:4b:0f:3e:6b:21:52:52:d9:2e:79:78:2b:5e:57:63:8d:74: 6f:bf:eb:83:ab:c9:4c:f2:3e:71:32:80:4c:f9:90:a8:06:54: 52:f8:55:10:f7:5e:90:6b:ef:e7:40:92:25:8c:34:1a:27:2c: 0c:16:76:74:96:7f:80:8e:7b:90:7d:77:00:b9:2a:b3:42:7c: 93:83:e8:67:2c:63:03:e1:21:5f:e3:fb:6e:36:f6:6b:00:09: 60:7d:8c:fa:11:15:a8:9a:3b:46:00:3c:9e:be:ff:54:88:85: ae:a6:58:b3:ce:51:6a:83:c3:d9:50:27:6e:b4:8a:1c:7c:c0: 83:65:c5:82:47:a9:17:4d:cd:70:f7:d8:c3:25:71:60:55:f0: cf:28:fa:cb:a1:d2:cc:bc:29:b9:04:eb:77:d3:b7:77:86:d9: 24:8b:38:7a:77:5f:a0:a3:7e:63:75:b6:f1:a6:ca:c6:31:49: de:44:f0:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlCMUIxMTAvBgNVBAUTKEQzNTlFNTZEREEwMDAzQzQ4M0YzQUQ2QTQwQzA4MEU5 MENCOEQ0NzIwHhcNMjUxMTA1MDUyMDM0WhcNMjUxMTEyMDUyMDM0WjAYMRYwFAYD VQQDEw02OTBhZGVhMi0yZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C7f4uwuJiF5D5KScJHBH95zgNrAAZTuODx+JiQIPfuxI3Ehf1LcgFy9Y7RY OTB14M6dM7AF+RmM0KhPr19xXLFWJtSPa8i3Qin/p560PdDJylxu8SzinOFSPgFO 9HJUoBmMprCGQkZ0jpBC0dN5HIEjAcHouqIODRA3Pziryyd57pTnguaUQ5d8PQK8 QOyhJFSeI34jDTq2Q/IMnq3YX5WWYj5kgRXZV+K48DbrmKFB4QbFeyv5H1Z7sOU2 nGPYOCZ/KCCMxPtnl2hwepNJFYzce/eXKVNd+/bqzPzgfJ1i+9Kbvi114S/2Jlv5 xiM0NF7ntRr7+/mHfVrVU4vXcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZOcZT3 t7RB+5vJREsa3OIs+436MB8GA1UdIwQYMBaAFNNZ5W3aAAPEg/OtakDAgOkMuNRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUIxQi9GOUZFRTA0NjND RjgxMUVGQTM2N0MzODVDNEY5QUUwMi8wMW5sYmRvQUE4U0Q4NjFxUU1DQTZReTQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAxbmxiZG9BQThTRDg2MXFRTUNBNlF5NDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUIxQi9GOUZFRTA0NjNDRjgxMUVGQTM2N0MzODVDNEY5QUUwMi8wMW5sYmRvQUE4 U0Q4NjFxUU1DQTZReTQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZDgXKy4ulPfsomn/Xl7ujqCIteepMx9yLdS/rB8KZQN5BcFmUlcsh jwDTrtYQX3imYMtP8wx0U8n87LKH+Z3D8L9cC9+q7TcYSw8+ayFSUtkueXgrXldj jXRvv+uDq8lM8j5xMoBM+ZCoBlRS+FUQ916Qa+/nQJIljDQaJywMFnZ0ln+AjnuQ fXcAuSqzQnyTg+hnLGMD4SFf4/tuNvZrAAlgfYz6ERWomjtGADyevv9UiIWupliz zlFqg8PZUCdutIocfMCDZcWCR6kXTc1w99jDJXFgVfDPKPrLodLMvCm5BOt307d3 htkkizh6d1+go35jdbbxpsrGMUneRPCc -----END CERTIFICATE-----Generated at Wed Nov 5 11:50:20 2025 by rpki-client