$ rpki-client -vvf rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft File: NcbYSDFsIdmTz25MBtYB3AXvxOE.mft (raw, json) Hash identifier: XQo3XR1rH6Yj45lx1nyCi0CG0G6FABbophON5VGQyrQ= Subject key identifier: 75:B3:D9:43:93:B3:CB:CC:31:09:A5:BC:AF:95:AA:87:2B:E3:6E:90 Authority key identifier: 35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 Certificate issuer: /CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft Manifest number: 01B0 Signing time: Wed 05 Nov 2025 03:18:49 +0000 Manifest this update: Wed 05 Nov 2025 03:18:48 +0000 Manifest next update: Wed 12 Nov 2025 03:18:48 +0000 Files and hashes: 1: NcbYSDFsIdmTz25MBtYB3AXvxOE.crl (hash: J2sW26Vxg0gjpwjs7XCE3n/WwGTP+EfKTlMumXKE2WQ=) 2: C416FBB02D6F11EEAC755B42C4F9AE02.roa (hash: 8GoJZpCZ9P4ckdBt/ZtHhmXHWFZw1X3kEDMJv2TH3VQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F473F, serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Validity Not Before: Nov 5 03:18:48 2025 GMT Not After : Nov 12 03:18:48 2025 GMT Subject: CN=690ac219-2292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8a:56:5e:0f:6a:84:3a:07:fe:a3:66:fd:aa: 8c:3b:93:dc:4d:27:d6:28:a3:71:57:05:5b:f9:2a: 92:86:c5:ca:a5:7e:c1:c4:64:d6:9f:44:0e:fe:7e: b8:cb:17:d0:ef:2e:34:0f:e9:94:31:cd:58:16:d4: 11:d3:ee:53:6b:52:9e:d2:95:a2:0a:e3:5e:5f:19: d7:b7:2e:c2:39:76:29:dc:fd:3b:bc:25:aa:77:05: c5:4c:6d:58:49:40:33:c6:aa:ae:bd:84:77:e8:23: db:fb:70:e6:b8:2b:ab:7b:7c:47:6e:a3:9a:09:93: ec:10:60:2d:7a:95:77:c0:ec:7f:53:ee:ff:ea:a2: f7:04:6a:c2:0a:c3:12:db:73:47:45:34:93:c3:c0: 0a:27:dd:60:5e:49:c4:a4:05:60:9f:75:9a:bd:40: f1:9d:bf:aa:73:81:53:e4:dd:34:13:0f:75:a0:a2: 66:96:f4:ae:92:bc:6f:e7:75:90:63:41:90:b4:2e: d9:c5:33:25:78:5d:1f:e7:1f:a1:07:8f:1d:4c:8e: b6:6e:dc:ee:88:2c:74:24:27:24:29:8e:25:6a:13: b4:91:09:56:59:6f:10:9f:d3:75:ea:77:15:f4:65: e6:e0:d4:07:51:9f:84:cb:3e:aa:2d:44:62:26:d9: c3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B3:D9:43:93:B3:CB:CC:31:09:A5:BC:AF:95:AA:87:2B:E3:6E:90 X509v3 Authority Key Identifier: keyid:35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e8:da:b8:41:33:43:8c:90:cc:4e:c2:15:fa:8e:93:54:1f: e0:a3:bf:56:eb:88:1a:42:3b:75:27:83:71:68:d6:3a:39:86: 1c:ea:27:c5:1a:c2:db:fb:6a:2b:9b:3d:83:78:14:5d:3d:53: 66:3a:6e:58:21:77:29:78:48:61:92:34:e5:c1:c8:70:e9:02: d3:92:18:c0:6d:7d:cf:9c:f1:12:ef:da:2b:75:df:41:fe:89: 2c:88:a5:7e:5b:f4:1a:f4:a0:f2:94:2a:9e:1e:57:f1:f4:d8: 97:94:5d:7f:a8:e9:ef:f8:f0:b8:b5:2c:02:d2:54:b1:8e:b5: 0a:bc:8c:36:b9:2c:0d:23:a5:78:11:34:82:b6:c3:05:1f:6d: 73:f1:8f:87:27:4f:c2:e0:f3:08:f0:6d:77:c9:40:09:59:d0: 77:0c:56:4d:b6:9a:08:77:a8:ed:49:87:8e:0c:14:77:e2:aa: 76:e9:32:75:25:05:df:56:b8:40:e3:dd:95:bc:fd:55:7f:95: d9:e0:47:9d:33:c5:34:93:95:c8:b2:9b:6d:17:ad:c9:0a:ff: 8d:b6:1e:8d:4e:78:b2:46:cc:8f:8d:58:3a:ac:e1:c0:3d:8a: aa:59:ed:0d:ad:16:06:da:bf:36:b3:dd:2a:41:e7:50:b5:a7: 9d:32:39:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3M0YxMTAvBgNVBAUTKDM1QzZEODQ4MzE2QzIxRDk5M0NGNkU0QzA2RDYwMURD MDVFRkM0RTEwHhcNMjUxMTA1MDMxODQ4WhcNMjUxMTEyMDMxODQ4WjAYMRYwFAYD VQQDEw02OTBhYzIxOS0yMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYpWXg9qhDoH/qNm/aqMO5PcTSfWKKNxVwVb+SqShsXKpX7BxGTWn0QO/n64 yxfQ7y40D+mUMc1YFtQR0+5Ta1Ke0pWiCuNeXxnXty7COXYp3P07vCWqdwXFTG1Y SUAzxqquvYR36CPb+3DmuCure3xHbqOaCZPsEGAtepV3wOx/U+7/6qL3BGrCCsMS 23NHRTSTw8AKJ91gXknEpAVgn3WavUDxnb+qc4FT5N00Ew91oKJmlvSukrxv53WQ Y0GQtC7ZxTMleF0f5x+hB48dTI62btzuiCx0JCckKY4lahO0kQlWWW8Qn9N16ncV 9GXm4NQHUZ+Eyz6qLURiJtnDjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWz2UOT s8vMMQmlvK+Vqocr426QMB8GA1UdIwQYMBaAFDXG2EgxbCHZk89uTAbWAdwF78Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDczRi8xRDE3RURCNDJC OTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lkbVR6MjVNQnRZQjNBWHZ4 T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jYllTREZzSWRtVHoyNU1CdFlCM0FYdnhPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDczRi8xRDE3RURCNDJCOTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lk bVR6MjVNQnRZQjNBWHZ4T0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB06Nq4QTNDjJDMTsIV+o6TVB/go79W64gaQjt1J4NxaNY6OYYc6ifF GsLb+2ormz2DeBRdPVNmOm5YIXcpeEhhkjTlwchw6QLTkhjAbX3PnPES79ordd9B /oksiKV+W/Qa9KDylCqeHlfx9NiXlF1/qOnv+PC4tSwC0lSxjrUKvIw2uSwNI6V4 ETSCtsMFH21z8Y+HJ0/C4PMI8G13yUAJWdB3DFZNtpoId6jtSYeODBR34qp26TJ1 JQXfVrhA492VvP1Vf5XZ4EedM8U0k5XIspttF63JCv+Nth6NTniyRsyPjVg6rOHA PYqqWe0NrRYG2r82s90qQedQtaedMjls -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:15 2025 by rpki-client