$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: FvBmqxJRZ7b/8Ci46iDPvCgWw9REWDtSzkTDxWKsW4M= Subject key identifier: D2:1C:43:3A:43:9E:C3:52:A8:24:8B:1C:40:93:55:1D:4F:C7:1A:D2 Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 52 Signing time: Wed 05 Nov 2025 07:30:50 +0000 Manifest this update: Wed 05 Nov 2025 07:30:49 +0000 Manifest next update: Wed 12 Nov 2025 07:30:49 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: EGKGpywQNKSuc0asy+ndhe+PgmlZr4VL2ty7EqyFE1c=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: iZRDXQppbsQwPvsyTvXzZpqvjaraKsPpnctxXUoNoxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Nov 5 07:30:49 2025 GMT Not After : Nov 12 07:30:49 2025 GMT Subject: CN=690afd2a-7a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:81:e9:f8:6b:00:ac:90:22:ed:61:08:cf:9a: ac:ea:90:8b:e0:59:5d:89:cb:f2:71:06:4f:d0:37: 0c:d4:4e:6e:33:6e:82:95:23:1a:12:a0:df:da:24: 86:40:83:b7:3d:4b:22:34:b6:b2:04:23:64:36:ba: 5f:fd:cd:44:35:21:02:49:cc:e4:67:93:f2:a9:09: da:4a:8e:a4:27:a2:1c:9c:3f:1e:71:d1:2b:4f:94: 05:a9:90:3f:2d:a1:db:a8:da:bb:0d:2e:68:a3:ad: 2a:5b:d6:c2:1e:f6:2b:e4:3c:3b:6f:0f:c5:89:27: 5b:2d:73:4a:bc:b9:4f:31:4d:b6:3d:b3:e0:4c:1a: f8:a1:52:34:03:6c:33:10:77:8e:2a:9e:0e:b0:18: fe:07:16:cd:5d:7c:cd:0b:76:b8:00:e2:45:f1:f5: e7:86:b0:dd:d1:4c:60:56:1a:50:69:b0:f7:82:11: 55:79:5d:20:0b:b8:97:1a:5c:dc:c7:d3:d7:86:ab: 6e:cd:72:91:73:c8:e1:e0:9c:94:b0:13:91:19:18: 77:03:66:84:ef:a9:d8:ce:51:de:24:7f:50:62:f6: ec:d2:0d:4a:3d:bc:70:90:11:b8:ec:73:ca:52:c7: 7d:4c:61:3d:f9:d7:51:ff:03:98:94:ef:c0:15:8f: cf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1C:43:3A:43:9E:C3:52:A8:24:8B:1C:40:93:55:1D:4F:C7:1A:D2 X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:62:de:77:f2:0e:f4:02:fe:36:7d:77:15:e9:32:da:3b:41: ab:37:38:01:0c:cb:3b:d2:25:55:00:44:20:96:85:b9:9a:d9: 8b:7b:8f:d7:98:ab:74:96:ae:56:88:f1:a9:d9:a2:f0:da:b5: 85:be:73:0c:2e:43:ac:a7:a5:23:f2:07:a1:b1:4f:12:ac:cc: b5:4b:56:36:24:22:af:02:56:4a:f0:60:06:f8:cf:d5:44:42: 2f:a7:19:3d:42:5e:ab:58:67:29:97:58:38:61:ff:ec:e0:3b: 0e:34:bd:d7:ac:e5:bf:a1:53:ab:2f:f4:7d:45:85:5e:75:ca: 68:f6:88:57:c3:d1:92:0a:2a:82:f4:37:aa:25:21:e1:11:7a: c1:28:e4:a2:9b:5a:3a:79:75:ad:c1:b8:c3:b7:5d:4d:77:60: b6:19:be:56:6a:f6:4c:f0:ba:5c:94:17:c8:a4:f0:6f:52:cd: 69:de:44:ee:e4:4c:f1:b5:0c:94:7c:30:6a:35:11:4d:8a:3c: ca:a2:70:70:32:f2:b5:f5:fa:6e:bb:e8:ac:34:d8:05:71:53: 9d:fa:2f:d4:3e:17:b1:a0:e1:98:c6:47:c3:d0:27:25:3d:bd: a0:3b:0d:5e:6c:42:1e:6b:19:61:cf:ec:41:c8:44:cf:52:a9: bd:47:00:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0REQjExMC8GA1UEBRMoMzRDREE2NUIwMkYxNzZCRkMyNDg3ODREQUE5QUM4QTdC RTE2NTNEQjAeFw0yNTExMDUwNzMwNDlaFw0yNTExMTIwNzMwNDlaMBgxFjAUBgNV BAMTDTY5MGFmZDJhLTdhNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYgen4awCskCLtYQjPmqzqkIvgWV2Jy/JxBk/QNwzUTm4zboKVIxoSoN/aJIZA g7c9SyI0trIEI2Q2ul/9zUQ1IQJJzORnk/KpCdpKjqQnohycPx5x0StPlAWpkD8t oduo2rsNLmijrSpb1sIe9ivkPDtvD8WJJ1stc0q8uU8xTbY9s+BMGvihUjQDbDMQ d44qng6wGP4HFs1dfM0LdrgA4kXx9eeGsN3RTGBWGlBpsPeCEVV5XSALuJcaXNzH 09eGq27NcpFzyOHgnJSwE5EZGHcDZoTvqdjOUd4kf1Bi9uzSDUo9vHCQEbjsc8pS x31MYT3511H/A5iU78AVj881AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0hxDOkOe w1KoJIscQJNVHU/HGtIwHwYDVR0jBBgwFoAUNM2mWwLxdr/CSHhNqprIp74WU9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRERCLzBFM0JEQUVDNDcy NDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk0ybVd3THhkcl9DU0hoTnFwcklwNzRXVTlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJf Q1NIaE5xcHJJcDc0V1U5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFVi3nfyDvQC/jZ9dxXpMto7Qas3OAEMyzvSJVUARCCWhbma2Yt7j9eY q3SWrlaI8anZovDatYW+cwwuQ6ynpSPyB6GxTxKszLVLVjYkIq8CVkrwYAb4z9VE Qi+nGT1CXqtYZymXWDhh/+zgOw40vdes5b+hU6sv9H1FhV51ymj2iFfD0ZIKKoL0 N6olIeEResEo5KKbWjp5da3BuMO3XU13YLYZvlZq9kzwulyUF8ik8G9SzWneRO7k TPG1DJR8MGo1EU2KPMqicHAy8rX1+m676Kw02AVxU536L9Q+F7Gg4ZjGR8PQJyU9 vaA7DV5sQh5rGWHP7EHIRM9Sqb1HAN8= -----END CERTIFICATE-----Generated at Wed Nov 5 21:10:29 2025 by rpki-client