$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: 8d9QO22VdEwBqvTwQRJcVOOmTWyGVH4UyKhqUe78HwM= Subject key identifier: 92:AD:F6:2F:FF:F8:4F:88:F6:DC:DE:65:70:C0:BD:31:ED:3C:F4:0C Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 0163 Signing time: Sun 19 Oct 2025 06:41:57 +0000 Manifest this update: Sun 19 Oct 2025 06:41:57 +0000 Manifest next update: Sun 26 Oct 2025 06:41:57 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: f+/18anZ1XZXz6Jvatsa3wMOsPSOX4Go5V6UxlPV6Hg=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Oct 19 06:41:57 2025 GMT Not After : Oct 26 06:41:57 2025 GMT Subject: CN=68f48835-a399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5b:01:98:e0:fa:16:ab:1f:0c:02:62:ea:56: 15:28:67:ee:48:31:4c:17:31:b2:4b:83:15:45:eb: b5:b0:90:2c:8e:02:a6:47:11:c5:4d:30:2e:84:9e: 6c:61:9b:08:5b:70:ac:d4:5e:ee:b4:92:3f:2a:17: 48:5c:a4:fb:2f:ad:33:e5:59:03:6a:24:1a:8f:be: e8:4d:53:93:07:92:19:b5:be:bf:9d:fe:c5:cb:bc: af:d9:8a:57:a3:42:9b:fa:af:e3:c4:6f:d0:a9:7e: cf:0c:84:54:65:91:6a:09:d3:d6:98:60:61:0e:84: f3:62:0b:a7:56:4e:53:cb:b9:e3:82:e4:d0:ae:4b: d1:40:89:82:ad:34:b9:e5:3e:af:3f:1e:68:ad:5c: 49:26:8d:43:1d:d2:95:3d:86:53:dc:57:c2:e1:ea: 40:0e:2c:98:27:56:cf:ce:55:ab:b7:87:48:02:7b: 27:5a:0d:f9:81:2b:44:4f:42:b4:b7:03:68:39:33: f1:b7:82:9f:01:e8:45:9d:b3:47:f1:9e:49:53:19: e9:3c:18:d9:5f:46:06:c9:fe:cf:52:c4:2e:c9:46: e7:4d:06:ca:1e:e7:71:2d:3a:9d:6a:e1:41:14:f1: 09:a7:fc:ea:f7:0f:9f:14:42:f6:44:d1:eb:60:7f: 8b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:F6:2F:FF:F8:4F:88:F6:DC:DE:65:70:C0:BD:31:ED:3C:F4:0C X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d0:7c:8e:10:da:f7:51:c2:39:33:0f:a6:58:05:bd:e7:a7: d1:fa:16:64:81:aa:f4:04:f3:c8:50:0d:04:18:f0:76:29:a0: 39:f2:6b:6f:dd:52:9e:e2:4a:4d:32:54:1a:20:74:f8:7a:f2: 24:c7:48:83:8b:b6:df:3d:9b:93:ac:a5:70:99:e8:9c:6d:ec: 87:b3:91:a1:77:2e:08:9c:91:16:a5:0e:48:4b:ad:9a:3f:8c: 39:e5:1d:b1:b4:c5:cf:5b:fd:95:c0:9c:6f:ec:c7:c3:05:0b: ef:49:63:2e:fe:57:e8:b2:58:ca:5a:e0:c9:af:66:b2:c8:6b: c9:55:8b:50:ab:8d:ff:a8:f4:fb:a0:e4:0c:c1:0d:d4:2b:30: 2a:83:93:80:23:8b:7b:4d:16:82:9a:f8:05:a9:8b:2b:10:90: f1:5c:9f:24:a8:86:68:de:aa:96:37:f2:6c:f6:f4:87:d8:c0: bc:ca:11:cc:40:79:b1:62:21:b3:62:e4:ab:53:ce:2a:33:9e: 8d:3f:9c:e4:94:20:27:e1:fb:c8:5e:d3:72:07:07:b9:be:a0: ad:a6:84:07:1b:06:43:92:57:64:ef:11:39:9f:27:fa:c2:94: 46:45:fa:25:cd:93:5e:05:bd:20:c9:54:97:27:d1:d0:5c:30: 5f:d1:3c:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUxMDE5MDY0MTU3WhcNMjUxMDI2MDY0MTU3WjAYMRYwFAYD VQQDEw02OGY0ODgzNS1hMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FsBmOD6FqsfDAJi6lYVKGfuSDFMFzGyS4MVReu1sJAsjgKmRxHFTTAuhJ5s YZsIW3Cs1F7utJI/KhdIXKT7L60z5VkDaiQaj77oTVOTB5IZtb6/nf7Fy7yv2YpX o0Kb+q/jxG/QqX7PDIRUZZFqCdPWmGBhDoTzYgunVk5Ty7njguTQrkvRQImCrTS5 5T6vPx5orVxJJo1DHdKVPYZT3FfC4epADiyYJ1bPzlWrt4dIAnsnWg35gStET0K0 twNoOTPxt4KfAehFnbNH8Z5JUxnpPBjZX0YGyf7PUsQuyUbnTQbKHudxLTqdauFB FPEJp/zq9w+fFEL2RNHrYH+LywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKt9i// +E+I9tzeZXDAvTHtPPQMMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ0HyOENr3UcI5Mw+mWAW956fR+hZkgar0BPPIUA0EGPB2KaA58mtv 3VKe4kpNMlQaIHT4evIkx0iDi7bfPZuTrKVwmeicbeyHs5Ghdy4InJEWpQ5IS62a P4w55R2xtMXPW/2VwJxv7MfDBQvvSWMu/lfosljKWuDJr2ayyGvJVYtQq43/qPT7 oOQMwQ3UKzAqg5OAI4t7TRaCmvgFqYsrEJDxXJ8kqIZo3qqWN/Js9vSH2MC8yhHM QHmxYiGzYuSrU84qM56NP5zklCAn4fvIXtNyBwe5vqCtpoQHGwZDkldk7xE5nyf6 wpRGRfolzZNeBb0gyVSXJ9HQXDBf0Tyv -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:34 2025 by rpki-client