$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: N5YE5CLQ4SmIRZ9e88xFQawV+5Efs8Q2vUT3B+qJeQg= Subject key identifier: 50:5C:CA:BE:A4:08:6E:65:FB:79:21:F1:FC:99:FB:D5:C3:27:67:D5 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0829 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 0823 Signing time: Wed 22 Oct 2025 21:36:16 +0000 Manifest this update: Wed 22 Oct 2025 21:36:15 +0000 Manifest next update: Wed 29 Oct 2025 21:36:15 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: Ur6ksZ5ApPElWkeV94T3Smk2j0eBC5oTgtXRQdghbEI=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Oct 22 21:36:15 2025 GMT Not After : Oct 29 21:36:15 2025 GMT Subject: CN=68f94e4f-abc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:70:99:0e:f5:d3:74:3b:6f:42:52:64:9b:ae: 44:d8:44:df:cb:e4:ae:ec:e1:fd:27:5a:d7:e8:05: c6:9e:89:49:74:be:c6:6f:b9:4a:ba:57:23:db:f1: f0:dc:e6:0f:7e:b0:72:ac:f9:48:0f:fd:33:1f:c0: b6:f6:a4:7b:d9:b9:53:8b:2d:46:ca:ce:23:df:ef: 1c:9b:32:ab:77:ed:e4:9b:d8:e4:02:7a:8e:67:02: 9a:40:d8:0f:bf:59:5a:7e:af:e5:91:a0:2e:e1:69: 50:ea:9a:95:dc:95:b6:d0:8f:57:cc:18:59:a1:32: 65:7b:49:9b:b6:e9:98:1a:bb:af:b0:ad:76:d0:5c: 8e:f4:35:37:df:61:89:72:54:77:3c:75:00:d5:30: 2e:45:e1:e7:2a:dd:76:ce:4f:a4:b7:19:8b:6b:89: be:d6:35:6a:8e:af:d2:ca:b3:0f:6c:4f:2d:cb:5a: 36:b6:1e:24:8e:95:50:54:42:dc:cb:03:87:53:bb: ba:09:cb:78:c1:75:62:27:b1:cd:da:cb:fb:7f:88: 82:d3:76:bf:fb:03:0e:83:4c:e6:86:90:74:a9:03: 2a:a5:64:41:66:2f:9b:e5:02:c6:c5:31:d0:9f:3e: c0:c0:d5:76:d8:69:e1:e0:8f:dd:8c:a3:29:fa:ea: 4a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5C:CA:BE:A4:08:6E:65:FB:79:21:F1:FC:99:FB:D5:C3:27:67:D5 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b0:63:b4:71:8b:9f:e0:84:8f:66:62:4c:86:69:28:de:87: 86:93:14:6b:4f:97:c6:05:fe:2f:9d:15:e6:c6:82:24:12:4e: 4c:88:7a:80:bf:85:62:2a:15:d7:7d:32:fd:71:83:80:91:2f: 68:8f:7f:52:47:89:05:c1:68:fd:94:cf:7e:c5:c3:e8:92:01: 31:6d:f5:b9:d4:e0:ea:5b:f4:d4:f6:d2:d8:67:c4:dc:e2:df: a4:4d:85:42:87:5f:87:c1:fa:f0:d5:ef:20:02:b3:35:bb:51: b8:15:cb:55:2e:35:62:84:51:f4:d0:40:f6:42:37:0e:f2:89: a0:1e:68:3b:d9:f7:39:af:f1:95:6e:df:55:02:5a:ee:ab:4f: 84:b9:2b:bc:f4:8d:38:f4:8e:e4:7e:24:df:5b:ac:10:14:dd: c1:f6:1f:28:80:71:8e:e0:ba:93:f3:99:9a:b1:8c:f8:c2:20: f6:ff:bf:f5:3c:1d:d6:89:93:4e:e3:be:ac:d1:c5:6a:d4:14: 09:6f:d2:04:86:81:fd:33:23:97:5f:56:03:8d:19:9b:a5:08: a0:6d:fd:0d:45:ed:fb:6a:df:ac:4a:4d:61:97:ad:70:84:63: 62:30:f4:df:fc:30:78:5c:cb:69:0a:14:97:37:f7:2b:33:b9: 4a:a6:23:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUxMDIyMjEzNjE1WhcNMjUxMDI5MjEzNjE1WjAYMRYwFAYD VQQDEw02OGY5NGU0Zi1hYmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHCZDvXTdDtvQlJkm65E2ETfy+Su7OH9J1rX6AXGnolJdL7Gb7lKulcj2/Hw 3OYPfrByrPlID/0zH8C29qR72blTiy1Gys4j3+8cmzKrd+3km9jkAnqOZwKaQNgP v1lafq/lkaAu4WlQ6pqV3JW20I9XzBhZoTJle0mbtumYGruvsK120FyO9DU332GJ clR3PHUA1TAuReHnKt12zk+ktxmLa4m+1jVqjq/SyrMPbE8ty1o2th4kjpVQVELc ywOHU7u6Cct4wXViJ7HN2sv7f4iC03a/+wMOg0zmhpB0qQMqpWRBZi+b5QLGxTHQ nz7AwNV22Gnh4I/djKMp+upKywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBcyr6k CG5l+3kh8fyZ+9XDJ2fVMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisGO0cYuf4ISPZmJMhmko3oeGkxRrT5fGBf4vnRXmxoIkEk5MiHqA v4ViKhXXfTL9cYOAkS9oj39SR4kFwWj9lM9+xcPokgExbfW51ODqW/TU9tLYZ8Tc 4t+kTYVCh1+Hwfrw1e8gArM1u1G4FctVLjVihFH00ED2QjcO8omgHmg72fc5r/GV bt9VAlruq0+EuSu89I049I7kfiTfW6wQFN3B9h8ogHGO4LqT85masYz4wiD2/7/1 PB3WiZNO476s0cVq1BQJb9IEhoH9MyOXX1YDjRmbpQigbf0NRe37at+sSk1hl61w hGNiMPTf/DB4XMtpChSXN/crM7lKpiPH -----END CERTIFICATE-----Generated at Fri Oct 24 05:56:12 2025 by rpki-client