$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: qM7oauq8sE73UaTfHvXYJpXt4e0yaFsvRhLXuKba0Vo= Subject key identifier: AA:49:E6:82:E7:7B:0E:2F:D8:30:C3:E4:25:21:10:5F:89:F5:E8:A4 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: D5 Signing time: Sun 19 Oct 2025 08:57:42 +0000 Manifest this update: Sun 19 Oct 2025 08:57:42 +0000 Manifest next update: Sun 26 Oct 2025 08:57:42 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: fqnAjZ59AyemfP2jePZn0+BMxff+IdKm7sPMAW1XfPA=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Oct 19 08:57:42 2025 GMT Not After : Oct 26 08:57:42 2025 GMT Subject: CN=68f4a806-733d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:66:5a:a4:cf:5b:ef:ee:d2:44:1b:32:cb:d5: 13:bd:c8:5b:62:b9:de:6e:3c:9b:f2:02:ce:d4:ba: ef:33:80:af:33:31:42:75:be:02:32:83:d6:f1:34: 76:d5:41:11:b5:cf:cc:c2:b3:37:df:d9:9a:89:90: 59:46:21:25:90:27:0b:11:b2:f8:f6:e0:c6:cd:c4: 4d:18:c3:3d:b7:bf:dc:54:6f:59:b3:2e:b7:20:f0: f6:96:a6:72:4a:9b:83:86:fa:87:e3:3c:cf:c4:67: 3b:ac:4f:8e:b2:81:8e:44:8e:f1:fa:76:30:23:7e: 0d:be:04:94:a2:7b:be:09:20:21:42:da:c4:fa:5a: 5d:1f:81:2b:df:30:83:06:74:51:1c:a6:b2:5c:b5: c1:23:db:ee:06:df:49:52:c5:2e:7c:9e:1e:7d:a4: 1b:85:f8:0b:ca:b8:c0:ac:a1:9b:de:74:63:83:44: 17:79:61:5e:00:1a:46:b8:5e:db:6b:db:8a:5e:10: 9e:25:76:86:67:de:bb:eb:02:1d:11:79:aa:85:17: 5a:68:d2:ac:f4:ac:67:29:d6:77:97:55:41:3b:f4: a1:d7:73:d3:97:45:08:63:81:f0:77:65:db:e9:1d: e5:07:06:c0:4b:81:ec:f5:f0:c1:1c:c0:fd:54:f1: 0e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:49:E6:82:E7:7B:0E:2F:D8:30:C3:E4:25:21:10:5F:89:F5:E8:A4 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a3:36:06:95:a0:7a:98:61:82:86:47:97:f4:a7:fc:1f:bd: 27:fa:4d:56:61:2c:59:b7:23:40:88:48:90:65:f4:56:6a:f7: aa:e5:58:7a:74:96:cc:9a:a1:83:61:1a:30:f6:87:f2:69:ac: ca:a7:c3:32:1c:aa:1c:10:fa:88:5e:fe:aa:24:9a:ff:36:50: 62:ff:48:b0:18:f3:1d:b4:f4:63:41:2e:28:74:d0:1f:68:6b: d2:b5:6a:00:17:3b:f9:bb:5d:27:08:3f:18:16:94:51:b4:0a: ff:47:ac:35:75:ef:8c:10:83:6b:8e:26:7c:0f:14:9d:e2:8c: cc:0d:e1:c4:b0:b9:33:42:85:89:fa:de:a1:7d:9a:e4:7a:55: 05:7d:52:fa:35:77:81:15:5c:26:a3:ff:0e:1c:67:57:e5:ca: 6a:45:7e:de:73:a5:f7:61:0e:71:ec:db:96:44:e8:a2:ff:3c: 4f:fc:81:76:c9:17:3b:20:03:ef:76:d6:28:b8:d3:a6:51:1a: 1e:a2:97:63:9e:34:d2:45:0d:c0:73:7e:9a:de:f3:3e:93:19: f5:47:9f:20:3c:d7:0a:9f:b1:b9:55:f4:13:80:f0:55:ec:63: 65:a6:3d:b0:7c:76:32:00:e6:6c:fe:5a:50:aa:ac:da:63:59: 4d:4e:89:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUxMDE5MDg1NzQyWhcNMjUxMDI2MDg1NzQyWjAYMRYwFAYD VQQDEw02OGY0YTgwNi03MzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12ZapM9b7+7SRBsyy9UTvchbYrnebjyb8gLO1LrvM4CvMzFCdb4CMoPW8TR2 1UERtc/MwrM339maiZBZRiElkCcLEbL49uDGzcRNGMM9t7/cVG9Zsy63IPD2lqZy SpuDhvqH4zzPxGc7rE+OsoGORI7x+nYwI34NvgSUonu+CSAhQtrE+lpdH4Er3zCD BnRRHKayXLXBI9vuBt9JUsUufJ4efaQbhfgLyrjArKGb3nRjg0QXeWFeABpGuF7b a9uKXhCeJXaGZ9676wIdEXmqhRdaaNKs9KxnKdZ3l1VBO/Sh13PTl0UIY4Hwd2Xb 6R3lBwbAS4Hs9fDBHMD9VPEOzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpJ5oLn ew4v2DDD5CUhEF+J9eikMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNozYGlaB6mGGChkeX9Kf8H70n+k1WYSxZtyNAiEiQZfRWaveq5Vh6 dJbMmqGDYRow9ofyaazKp8MyHKocEPqIXv6qJJr/NlBi/0iwGPMdtPRjQS4odNAf aGvStWoAFzv5u10nCD8YFpRRtAr/R6w1de+MEINrjiZ8DxSd4ozMDeHEsLkzQoWJ +t6hfZrkelUFfVL6NXeBFVwmo/8OHGdX5cpqRX7ec6X3YQ5x7NuWROii/zxP/IF2 yRc7IAPvdtYouNOmURoeopdjnjTSRQ3Ac36a3vM+kxn1R58gPNcKn7G5VfQTgPBV 7GNlpj2wfHYyAOZs/lpQqqzaY1lNTomw -----END CERTIFICATE-----Generated at Tue Oct 21 15:10:01 2025 by rpki-client