$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: 48I91yFc8cuoTu4bdHLqAjt3L724gj8dzqsIg4Ar1lg= Subject key identifier: 29:E1:14:56:99:27:5E:D8:91:61:35:40:AD:55:01:F1:81:A5:49:CA Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1CA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1C8F Signing time: Sat 18 Oct 2025 16:29:43 +0000 Manifest this update: Sat 18 Oct 2025 16:29:43 +0000 Manifest next update: Sat 25 Oct 2025 16:29:43 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: ZvIdKOVSsrYVtP0BpN9fLa8r72wm2CoRBr1jGXTLKKM=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: 3515yyoHz/OpGxhQJVW0uZ09F4a0FPsq5rPkaEYDZbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7334 (0x1ca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Oct 18 16:29:43 2025 GMT Not After : Oct 25 16:29:43 2025 GMT Subject: CN=68f3c077-e4e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ef:85:f1:b9:81:b3:a4:fa:db:71:65:bb:2c: 51:f2:bd:ab:90:b9:d0:20:6c:96:fa:cb:1d:a0:f0: ad:dd:0e:39:24:e6:54:4a:a5:a4:46:40:d5:6c:cc: c9:6c:85:6b:fd:5f:ba:60:fd:f0:93:59:28:86:db: 31:14:d3:75:d8:0e:03:2e:4b:24:78:cf:0d:dc:d2: ed:ac:11:8a:1c:f0:76:26:7c:02:c0:48:5e:c0:ff: 71:d7:8d:f2:08:50:c8:e6:cd:dc:b9:b1:1f:ef:a6: 82:fd:18:f8:6a:13:2d:c2:15:ce:74:b9:da:b9:46: d1:9a:5a:18:a9:09:91:54:17:3b:87:62:7a:89:5e: ad:54:b8:94:7f:5c:74:25:2b:3d:ad:3a:71:b2:22: a5:a7:5c:79:d8:83:c4:f7:34:9e:41:48:ca:2e:63: d0:64:94:17:97:ec:4b:cc:c7:33:3b:29:39:1b:9a: 6a:f5:52:e6:d4:62:ba:c4:5d:47:68:fc:72:85:0a: 5a:8e:e5:c4:72:77:81:06:99:36:f6:9f:03:e5:e8: b9:a8:79:fc:f2:c8:e9:ff:4b:1b:4b:b7:e7:e0:21: df:b4:8c:a4:26:79:bb:88:de:2c:26:33:c5:3c:e8: 43:d8:ef:a2:24:d1:fe:52:9f:c0:90:b5:0d:dc:2e: e9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E1:14:56:99:27:5E:D8:91:61:35:40:AD:55:01:F1:81:A5:49:CA X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:dc:25:b9:55:5c:a4:fd:8c:3e:f0:fc:b7:cc:d5:f1:00:9c: 86:b5:3b:1e:20:a3:86:ca:52:8d:dd:17:b1:79:ab:e9:99:61: bd:f6:2d:83:55:6d:20:64:e7:d9:f0:7a:e5:6c:07:ca:82:57: 69:10:4a:ba:9b:11:df:d5:72:d6:77:0c:4b:ac:a5:70:41:c1: 14:91:95:9b:c1:a9:15:10:1d:ca:cf:90:47:7c:18:2c:29:b9: a7:c4:a9:f4:cf:09:60:34:37:48:76:cb:00:05:d3:4f:1e:34: 16:e6:ee:4f:54:c2:95:da:42:40:60:90:08:ac:2a:53:c1:1e: d4:41:79:21:65:7d:ae:15:f4:83:4e:2b:c6:80:1c:e7:80:32: 50:0c:a8:2c:62:e6:eb:60:a8:03:85:3e:96:d0:e6:60:69:30: 17:d0:7f:1e:52:81:8c:6c:60:0e:69:cd:3c:61:ea:d4:85:6d: 2c:66:fc:83:2e:ea:98:b3:45:f8:3e:7b:bd:e5:d0:08:bf:87: b8:bc:fe:bc:1d:1a:dd:57:0c:83:8a:23:43:54:9d:9a:30:7e: e0:4d:8e:39:aa:d8:06:93:23:78:9b:cc:9d:3a:bf:50:f0:29: 75:7a:1b:89:40:cd:d2:c7:3c:1b:b4:b0:fc:fd:ef:b8:b8:46: 64:19:4b:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUxMDE4MTYyOTQzWhcNMjUxMDI1MTYyOTQzWjAYMRYwFAYD VQQDEw02OGYzYzA3Ny1lNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O+F8bmBs6T623FluyxR8r2rkLnQIGyW+ssdoPCt3Q45JOZUSqWkRkDVbMzJ bIVr/V+6YP3wk1kohtsxFNN12A4DLkskeM8N3NLtrBGKHPB2JnwCwEhewP9x143y CFDI5s3cubEf76aC/Rj4ahMtwhXOdLnauUbRmloYqQmRVBc7h2J6iV6tVLiUf1x0 JSs9rTpxsiKlp1x52IPE9zSeQUjKLmPQZJQXl+xLzMczOyk5G5pq9VLm1GK6xF1H aPxyhQpajuXEcneBBpk29p8D5ei5qHn88sjp/0sbS7fn4CHftIykJnm7iN4sJjPF POhD2O+iJNH+Up/AkLUN3C7pQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnhFFaZ J17YkWE1QK1VAfGBpUnKMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV3CW5VVyk/Yw+8Py3zNXxAJyGtTseIKOGylKN3RexeavpmWG99i2D VW0gZOfZ8HrlbAfKgldpEEq6mxHf1XLWdwxLrKVwQcEUkZWbwakVEB3Kz5BHfBgs KbmnxKn0zwlgNDdIdssABdNPHjQW5u5PVMKV2kJAYJAIrCpTwR7UQXkhZX2uFfSD TivGgBzngDJQDKgsYubrYKgDhT6W0OZgaTAX0H8eUoGMbGAOac08YerUhW0sZvyD LuqYs0X4Pnu95dAIv4e4vP68HRrdVwyDiiNDVJ2aMH7gTY45qtgGkyN4m8ydOr9Q 8Cl1ehuJQM3SxzwbtLD8/e+4uEZkGUuV -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:29 2025 by rpki-client