$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft File: nlcX9fFLsp9ntXrX2dXweRWunEM.mft (raw, json) Hash identifier: ZZRoUiJZwtxDCRTW1iI+5eeVe5aF9vcM5YZ4HIbOkY4= Subject key identifier: BE:88:99:A4:EE:A8:1C:F5:AF:CD:4F:E7:A8:11:E5:1F:38:64:C9:48 Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft Manifest number: 03E2 Signing time: Mon 03 Nov 2025 00:30:15 +0000 Manifest this update: Mon 03 Nov 2025 00:30:14 +0000 Manifest next update: Mon 10 Nov 2025 00:30:14 +0000 Files and hashes: 1: nlcX9fFLsp9ntXrX2dXweRWunEM.crl (hash: 8c4j+AFA24DWUxJfie3nlwGaz70YiruZUHBvN8XH4Cw=) 2: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (hash: l5UPW8luctznfhC7jBJpvRQP7pkTfMgJK+ognjXHfwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E, serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: Nov 3 00:30:14 2025 GMT Not After : Nov 10 00:30:14 2025 GMT Subject: CN=6907f796-1695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:db:43:91:b9:f8:d7:c0:2f:35:03:91:d1: d6:5b:3b:c6:b5:68:92:a6:b4:2b:59:79:25:2b:a6: 7a:04:49:10:ab:1d:96:37:4c:b5:f4:d9:4d:98:9e: 53:a6:de:cc:df:ac:de:ba:0f:d8:90:5b:de:63:51: ea:7e:ec:10:2c:df:1b:8c:ac:a2:f8:23:91:08:4a: 64:3b:ee:d3:5a:3c:1e:34:29:8a:8f:b1:16:18:89: 0e:55:8c:d4:76:26:ed:72:7a:c8:8b:aa:7b:b9:2e: fa:9b:fc:d0:a3:96:84:9f:26:fe:d7:8b:3a:18:b9: 06:5b:e7:04:7f:30:90:dd:c2:8e:a0:9d:4c:1a:98: 20:3e:58:28:6f:9f:d7:9e:b3:e9:03:11:99:7d:3a: 09:26:f8:67:4f:2b:e7:eb:7c:15:9f:d9:d4:fd:3d: bc:75:bc:7f:fa:b3:2f:96:63:e3:36:a4:80:57:56: 96:59:a4:ca:2c:c0:57:ae:e9:31:d6:9e:92:5c:db: 29:35:b8:d0:34:9e:f7:bc:ee:51:04:db:15:22:03: 85:a5:8b:0a:da:cd:37:26:01:e7:3b:35:ed:e6:f5: 58:c4:24:10:ff:10:7e:3c:a3:18:fe:dc:cf:68:a2: a9:91:02:38:b9:60:0d:1a:87:21:e8:3d:e5:96:32: 77:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:88:99:A4:EE:A8:1C:F5:AF:CD:4F:E7:A8:11:E5:1F:38:64:C9:48 X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:17:e8:76:28:c9:8b:b3:f5:83:ce:d2:fe:01:62:64:a7:b2: 51:81:4d:3e:70:4e:9a:6c:13:ba:10:fe:b3:d2:5b:51:ce:da: 73:2d:08:9f:38:24:fe:88:a2:c6:eb:2c:e9:1d:25:44:c0:74: 92:d0:c3:f8:be:f5:97:14:1d:a0:90:a8:f4:ec:f9:1f:03:c7: eb:a3:36:b1:c3:8f:74:0c:b1:09:f8:36:34:85:b0:ae:0d:ac: b3:f7:2f:d7:6e:92:48:41:26:b3:9b:a8:aa:24:93:cd:d5:fb: 5b:90:5a:eb:73:a7:00:2c:f9:24:79:0c:23:c1:20:12:26:11: 58:0a:25:2a:22:fb:75:f9:6b:02:3a:65:6a:ba:00:27:35:64: 88:1e:02:26:c5:10:47:2a:8a:19:86:f2:40:91:a1:f8:a6:fd: 87:65:85:1c:8a:f9:54:7d:e6:39:b7:29:c5:30:01:c0:c1:d5: b9:15:ab:45:51:c6:3e:0d:5c:07:f5:13:1b:54:09:58:e9:18: b0:68:3e:e8:9a:d7:77:b9:0f:8c:ec:c0:86:a8:32:01:b8:af: e5:ea:ec:50:08:97:40:09:86:12:60:49:48:ac:3a:15:b8:57: fc:b5:36:ba:c7:14:97:40:62:b2:65:79:88:9e:e7:96:fb:c0: 0a:b6:bb:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjUxMTAzMDAzMDE0WhcNMjUxMTEwMDAzMDE0WjAYMRYwFAYD VQQDEw02OTA3Zjc5Ni0xNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFfbQ5G5+NfALzUDkdHWWzvGtWiSprQrWXklK6Z6BEkQqx2WN0y19NlNmJ5T pt7M36zeug/YkFveY1HqfuwQLN8bjKyi+CORCEpkO+7TWjweNCmKj7EWGIkOVYzU dibtcnrIi6p7uS76m/zQo5aEnyb+14s6GLkGW+cEfzCQ3cKOoJ1MGpggPlgob5/X nrPpAxGZfToJJvhnTyvn63wVn9nU/T28dbx/+rMvlmPjNqSAV1aWWaTKLMBXrukx 1p6SXNspNbjQNJ73vO5RBNsVIgOFpYsK2s03JgHnOzXt5vVYxCQQ/xB+PKMY/tzP aKKpkQI4uWANGoch6D3lljJ3EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6ImaTu qBz1r81P56gR5R84ZMlIMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAxRS9DNUM2RjA1RTlFQTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNw OW50WHJYMmRYd2VSV3VuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKF+h2KMmLs/WDztL+AWJkp7JRgU0+cE6abBO6EP6z0ltRztpzLQif OCT+iKLG6yzpHSVEwHSS0MP4vvWXFB2gkKj07PkfA8frozaxw490DLEJ+DY0hbCu Dayz9y/XbpJIQSazm6iqJJPN1ftbkFrrc6cALPkkeQwjwSASJhFYCiUqIvt1+WsC OmVqugAnNWSIHgImxRBHKooZhvJAkaH4pv2HZYUcivlUfeY5tynFMAHAwdW5FatF UcY+DVwH9RMbVAlY6RiwaD7omtd3uQ+M7MCGqDIBuK/l6uxQCJdACYYSYElIrDoV uFf8tTa6xxSXQGKyZXmInueW+8AKtrsg -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:22 2025 by rpki-client