$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: j3ypiAdcylFpdJzWXZwriYlvjAA3ThHaBSk1ePRTIxo= Subject key identifier: 52:A5:0E:7C:B8:3D:58:9B:20:3B:CC:25:F2:C4:AF:1A:F5:8F:79:2B Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0574 Signing time: Sun 19 Oct 2025 01:00:26 +0000 Manifest this update: Sun 19 Oct 2025 01:00:25 +0000 Manifest next update: Sun 26 Oct 2025 01:00:25 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: XADF2HqB4nj8TfIdztd0roFJ9VSO4LTrBSyt+w7miZU=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Oct 19 01:00:25 2025 GMT Not After : Oct 26 01:00:25 2025 GMT Subject: CN=68f43829-767e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:1c:aa:63:58:b0:6c:80:bc:97:c2:97:15: 6a:ce:c1:93:f5:bb:1e:d6:41:a0:9b:f8:01:f9:ed: d0:dc:a9:09:5f:3f:12:1a:21:70:0f:1b:05:1a:05: 57:50:57:1e:d0:17:14:b1:a5:a8:92:f7:75:33:74: 71:5e:30:2d:cb:51:b0:07:73:b4:5d:4e:f0:6f:2e: 96:0f:c4:b1:88:a1:3c:15:a4:3a:33:95:fd:7f:7f: 73:ee:d4:13:0d:58:46:db:35:5b:58:d9:72:d9:21: fd:a6:02:04:7d:ca:22:89:8a:46:31:e8:82:b9:fd: 40:27:30:b4:20:d1:a1:ea:a0:10:cc:a1:5a:6f:9a: da:c3:3e:12:7a:54:6a:da:2e:52:41:f9:23:1c:8e: ad:22:72:e1:f2:6f:11:99:31:3e:87:fa:3f:9d:dd: 24:7e:59:d0:40:ea:35:59:37:dd:89:84:aa:04:c3: b7:b5:62:3f:ab:39:0a:81:47:c6:e2:39:98:fc:43: b9:d8:3c:99:ad:77:c1:40:a3:01:e4:d2:13:16:41: 57:ec:66:5b:ed:fe:c6:9b:0e:de:68:18:16:67:a0: c3:45:b1:12:a6:88:28:70:69:3a:43:57:11:fd:46: 36:d4:ab:eb:45:e5:3d:6f:c9:01:ec:64:94:6b:ab: 16:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A5:0E:7C:B8:3D:58:9B:20:3B:CC:25:F2:C4:AF:1A:F5:8F:79:2B X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:1e:7a:56:e1:05:03:41:a7:10:1e:0c:78:0f:e3:c8:4f:de: ff:ab:f1:b7:3e:65:ff:cc:27:3d:62:ba:9a:4b:90:98:37:ee: c2:45:96:0a:5d:0e:f2:bb:59:d4:49:24:12:57:63:8b:cc:b4: eb:97:db:6d:2b:fe:28:fa:73:eb:a3:4f:e8:99:57:74:d7:ba: 0c:05:99:73:da:a7:d0:a4:89:ab:c9:53:4e:32:f3:26:5c:73: 35:24:ec:a1:4b:65:61:32:33:fa:5d:c4:34:f9:f4:ac:ae:17: 7a:7b:63:1e:8e:a9:62:83:27:2a:f1:34:da:ef:60:c3:b3:2b: a0:75:7b:5b:4c:ab:61:3b:5b:0a:4d:aa:b6:38:55:dc:5a:e6: 88:05:0c:83:bd:a7:da:b3:c1:50:08:f9:48:9b:9d:f6:b7:3e: 2a:87:4b:1b:e9:11:78:17:f0:02:31:15:2e:a1:52:1a:cc:59: 16:d6:09:0d:7f:e9:12:83:aa:61:6a:d1:18:bf:31:83:e1:2c: 08:57:75:79:4c:18:41:b8:f3:7c:a4:b2:2b:a6:22:11:c3:31: f7:d4:f4:c5:6b:47:9c:74:7b:02:c1:12:87:e1:71:84:d9:33: ec:66:02:2b:df:da:3c:c9:fe:b5:17:d3:24:74:e6:4c:60:23: aa:93:5c:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUxMDE5MDEwMDI1WhcNMjUxMDI2MDEwMDI1WjAYMRYwFAYD VQQDEw02OGY0MzgyOS03NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PUcqmNYsGyAvJfClxVqzsGT9bse1kGgm/gB+e3Q3KkJXz8SGiFwDxsFGgVX UFce0BcUsaWokvd1M3RxXjAty1GwB3O0XU7wby6WD8SxiKE8FaQ6M5X9f39z7tQT DVhG2zVbWNly2SH9pgIEfcoiiYpGMeiCuf1AJzC0INGh6qAQzKFab5rawz4SelRq 2i5SQfkjHI6tInLh8m8RmTE+h/o/nd0kflnQQOo1WTfdiYSqBMO3tWI/qzkKgUfG 4jmY/EO52DyZrXfBQKMB5NITFkFX7GZb7f7Gmw7eaBgWZ6DDRbESpogocGk6Q1cR /UY21KvrReU9b8kB7GSUa6sWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKlDny4 PVibIDvMJfLErxr1j3krMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOHnpW4QUDQacQHgx4D+PIT97/q/G3PmX/zCc9YrqaS5CYN+7CRZYK XQ7yu1nUSSQSV2OLzLTrl9ttK/4o+nPro0/omVd017oMBZlz2qfQpImryVNOMvMm XHM1JOyhS2VhMjP6XcQ0+fSsrhd6e2Mejqligycq8TTa72DDsyugdXtbTKthO1sK Taq2OFXcWuaIBQyDvafas8FQCPlIm532tz4qh0sb6RF4F/ACMRUuoVIazFkW1gkN f+kSg6phatEYvzGD4SwIV3V5TBhBuPN8pLIrpiIRwzH31PTFa0ecdHsCwRKH4XGE 2TPsZgIr39o8yf61F9MkdOZMYCOqk1zy -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:48 2025 by rpki-client