$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft File: nhW8ueM67e2saArIyYFuEVkFyiw.mft (raw, json) Hash identifier: jqDupES0KXF+yKtEaUzByBje/EAZ285hI4ofmIPQ+z4= Subject key identifier: 37:1C:2D:14:58:4C:54:D2:1F:B4:91:5E:77:5F:38:1A:64:51:00:BA Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 1732 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft Manifest number: 1725 Signing time: Tue 04 Nov 2025 16:43:21 +0000 Manifest this update: Tue 04 Nov 2025 16:43:21 +0000 Manifest next update: Tue 11 Nov 2025 16:43:21 +0000 Files and hashes: 1: nhW8ueM67e2saArIyYFuEVkFyiw.crl (hash: p5DR6diD5rxMO8lWKdlB9hiPO2tlKXEQ8yc1D1Sn6rw=) 2: 7A7A6AC6234311EA90D15227C4F9AE02.roa (hash: inLOYpzfiQRyaW4Jx9DTFdqEkju4HPJ5ZYoO4gNZ1PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5938 (0x1732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A, serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Nov 4 16:43:21 2025 GMT Not After : Nov 11 16:43:21 2025 GMT Subject: CN=690a2d29-3482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:33:41:30:96:4d:db:78:f7:f6:88:70:f0:93: 23:ef:86:7a:a8:f5:52:d3:72:c8:b5:39:b7:00:48: 03:bf:08:77:f0:bd:a6:fe:d7:07:5a:50:bf:ea:94: 60:41:00:2e:47:11:b7:56:91:b0:cb:1a:81:39:d1: 73:ff:e4:5e:42:77:e2:ea:9c:7f:4b:e0:a6:9a:63: ab:65:7a:e1:9f:96:bc:ae:91:ae:bd:5d:76:3e:1b: 70:92:57:c1:50:5f:4b:f0:d9:ae:8e:e7:79:8f:d9: cb:99:8b:3d:7e:a7:51:b7:04:60:12:b0:4b:0f:7a: a8:c0:35:c4:43:f1:82:59:93:be:6b:ca:7c:fc:12: 20:b0:cf:fd:f7:38:cb:ec:ba:f1:6f:41:9e:b1:80: 95:fa:9d:85:cc:3d:30:23:ad:a2:4b:7a:e0:ae:db: c8:15:d5:2d:7c:24:d3:5a:a9:d4:f3:eb:0e:ec:82: b8:28:93:ba:c4:bb:71:a1:7b:67:2f:0f:58:10:61: 84:fc:4e:68:3a:27:95:d8:63:76:60:f8:a4:e9:2d: de:b9:fb:ac:09:62:19:ec:ad:8a:dc:b5:a8:ff:4e: c0:8c:17:7c:89:6c:5c:4c:98:c1:aa:e8:8f:30:d0: 31:5d:5c:41:4f:06:82:04:b9:9a:37:3d:bf:65:5e: b5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1C:2D:14:58:4C:54:D2:1F:B4:91:5E:77:5F:38:1A:64:51:00:BA X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ac:8e:c1:27:69:72:24:09:81:58:f9:c4:d2:3a:31:26:d9: cd:5e:89:76:3c:81:36:90:02:f9:61:30:13:82:ca:14:b5:23: 3e:56:a6:44:5e:ba:77:22:a4:41:cd:69:6b:7e:28:15:dd:99: cb:ff:d1:69:99:8f:ae:d0:e9:ef:53:df:89:20:f0:2f:52:88: 60:8b:44:66:f3:cf:1f:8b:2d:72:7b:f8:43:12:66:9d:c0:f8: 5b:92:65:65:4d:5f:d5:e0:29:13:58:32:51:6b:b1:e4:47:09: 81:c6:e8:3e:ad:d1:cf:59:d0:cf:4e:90:6e:25:5f:02:7f:a7: 54:0d:d3:12:df:3e:e6:24:0a:51:fd:03:3d:46:0d:bc:8d:60: 3f:d9:44:22:5b:e2:a2:05:95:26:17:ba:af:35:2a:b5:2a:c7: 4c:78:82:80:5c:74:9e:11:c1:16:0d:c3:71:ea:dd:2d:80:fe: 1f:0a:73:7e:61:c2:8d:ea:9a:9d:69:12:94:d4:0e:3f:67:ee: c1:1f:a1:2e:a5:56:c0:51:89:61:1a:db:50:76:b0:1b:b2:ef: cc:6a:90:23:f8:d9:fb:b6:25:b9:be:f1:26:da:21:19:ce:bd: c1:a7:df:9f:f5:1f:77:bb:cf:d4:6d:6b:c1:83:ea:5e:2c:9d: a5:d6:97:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUxMTA0MTY0MzIxWhcNMjUxMTExMTY0MzIxWjAYMRYwFAYD VQQDEw02OTBhMmQyOS0zNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjNBMJZN23j39ohw8JMj74Z6qPVS03LItTm3AEgDvwh38L2m/tcHWlC/6pRg QQAuRxG3VpGwyxqBOdFz/+ReQnfi6px/S+CmmmOrZXrhn5a8rpGuvV12PhtwklfB UF9L8Nmujud5j9nLmYs9fqdRtwRgErBLD3qowDXEQ/GCWZO+a8p8/BIgsM/99zjL 7Lrxb0GesYCV+p2FzD0wI62iS3rgrtvIFdUtfCTTWqnU8+sO7IK4KJO6xLtxoXtn Lw9YEGGE/E5oOieV2GN2YPik6S3eufusCWIZ7K2K3LWo/07AjBd8iWxcTJjBquiP MNAxXVxBTwaCBLmaNz2/ZV61ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDccLRRY TFTSH7SRXndfOBpkUQC6MB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUIzQS83REVBRTczNEYzQTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdl MnNhQXJJeVlGdUVWa0Z5aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADrI7BJ2lyJAmBWPnE0joxJtnNXol2PIE2kAL5YTATgsoUtSM+VqZE Xrp3IqRBzWlrfigV3ZnL/9FpmY+u0OnvU9+JIPAvUohgi0Rm888fiy1ye/hDEmad wPhbkmVlTV/V4CkTWDJRa7HkRwmBxug+rdHPWdDPTpBuJV8Cf6dUDdMS3z7mJApR /QM9Rg28jWA/2UQiW+KiBZUmF7qvNSq1KsdMeIKAXHSeEcEWDcNx6t0tgP4fCnN+ YcKN6pqdaRKU1A4/Z+7BH6EupVbAUYlhGttQdrAbsu/MapAj+Nn7tiW5vvEm2iEZ zr3Bp9+f9R93u8/UbWvBg+peLJ2l1pfr -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:28 2025 by rpki-client