$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: oVOOqMPXrlg6N8WE6CuITTI21EhR3X3vxMIBGgi+GHk= Subject key identifier: 41:DE:63:4D:9F:C3:9D:36:C2:9F:B9:5A:63:A7:FF:36:4F:C3:14:87 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 056A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0565 Signing time: Thu 18 Sep 2025 23:41:01 +0000 Manifest this update: Thu 18 Sep 2025 23:41:00 +0000 Manifest next update: Thu 25 Sep 2025 23:41:00 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: L0nMwaHZCqDIpYHFy+Ixv8GbGORdn9XF1BKEce4FIOA=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Sep 18 23:41:00 2025 GMT Not After : Sep 25 23:41:00 2025 GMT Subject: CN=68cc988d-a7d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fd:2f:ce:41:c9:f7:11:db:32:d4:37:d8:02: c7:07:2c:49:41:5a:36:b9:5f:f2:96:de:cd:99:c2: ae:aa:5a:95:6c:f9:38:5a:c4:68:87:4c:6a:07:51: c3:11:96:ae:9b:94:ca:75:0e:c8:f6:f1:54:a4:1c: b4:dd:db:4a:0b:6f:ab:81:c8:ef:4e:dc:18:54:88: 52:99:ff:9a:d8:f7:d1:ea:2c:a6:8d:e6:b6:6b:18: f5:3f:84:e2:95:79:6a:66:39:f6:e7:76:d6:bf:52: 01:f1:a1:59:a4:52:77:63:05:59:77:c6:ed:a5:75: a0:a1:50:01:68:89:6f:d2:bb:a8:57:6f:7d:46:55: 3a:7c:57:eb:9f:dd:5c:67:c5:8a:58:c6:7b:50:1f: 2d:78:3c:9e:1b:8f:03:49:00:eb:d6:c6:f7:46:2e: fe:d6:cc:6a:f2:3c:68:be:84:6a:ed:71:bb:a3:05: 48:10:bc:70:e1:1e:83:25:9b:b0:85:2e:dd:48:1d: f6:f7:24:f9:4f:64:0c:a5:19:58:c0:0f:cb:f4:df: 86:16:4f:ba:e5:90:d8:77:27:05:14:b4:b4:b3:d6: 6b:f8:1f:05:52:a8:41:04:82:15:50:fc:42:ab:47: 3a:e1:cf:e4:a6:62:25:eb:ca:87:fd:7d:bd:ed:7e: eb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DE:63:4D:9F:C3:9D:36:C2:9F:B9:5A:63:A7:FF:36:4F:C3:14:87 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:4f:af:78:cc:03:0c:41:fb:ef:b0:c7:f7:dd:8d:be:64:f9: 18:40:bb:df:9a:96:4d:d5:26:78:b6:1b:a8:19:4d:8c:3a:06: 15:82:cd:c2:ff:76:3c:82:be:26:df:ef:63:10:c3:e2:30:26: 42:c0:c7:d5:6f:5b:3e:33:04:37:6e:81:c0:36:7e:ca:19:15: bc:19:9a:9f:da:63:23:ca:bb:3a:dd:5c:d3:92:5e:01:71:93: 3b:d1:ea:1d:79:b5:90:b2:5a:95:e4:18:65:41:8c:00:c1:49: f9:ca:69:3d:74:8b:e0:26:bf:5b:21:f4:5b:54:d7:11:da:10: 37:5c:ef:1c:0e:91:d4:df:25:a2:5d:0b:0e:35:47:24:5e:3a: 89:92:1d:48:c4:e1:9c:c1:12:be:61:21:2a:05:61:c8:85:b6: 08:78:df:de:1c:95:a8:b3:8e:31:16:82:a3:df:18:23:c9:2c: b9:51:5d:8d:4d:70:73:99:09:f5:6d:f3:48:bc:30:43:8a:98: 7e:16:12:a7:ba:54:ae:46:90:12:bd:ed:48:a5:53:e1:5f:aa: 08:75:bc:43:6b:1c:af:57:af:8b:b7:3a:3c:f1:99:65:69:25: e0:c9:56:94:0a:2e:02:a4:21:5a:df:bd:73:8f:7b:ca:f9:c3: d7:88:66:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUwOTE4MjM0MTAwWhcNMjUwOTI1MjM0MTAwWjAYMRYwFAYD VQQDEw02OGNjOTg4ZC1hN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP0vzkHJ9xHbMtQ32ALHByxJQVo2uV/ylt7NmcKuqlqVbPk4WsRoh0xqB1HD EZaum5TKdQ7I9vFUpBy03dtKC2+rgcjvTtwYVIhSmf+a2PfR6iymjea2axj1P4Ti lXlqZjn253bWv1IB8aFZpFJ3YwVZd8btpXWgoVABaIlv0ruoV299RlU6fFfrn91c Z8WKWMZ7UB8teDyeG48DSQDr1sb3Ri7+1sxq8jxovoRq7XG7owVIELxw4R6DJZuw hS7dSB329yT5T2QMpRlYwA/L9N+GFk+65ZDYdycFFLS0s9Zr+B8FUqhBBIIVUPxC q0c64c/kpmIl68qH/X297X7rrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHeY02f w502wp+5WmOn/zZPwxSHMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFT694zAMMQfvvsMf33Y2+ZPkYQLvfmpZN1SZ4thuoGU2MOgYVgs3C /3Y8gr4m3+9jEMPiMCZCwMfVb1s+MwQ3boHANn7KGRW8GZqf2mMjyrs63VzTkl4B cZM70eodebWQslqV5BhlQYwAwUn5ymk9dIvgJr9bIfRbVNcR2hA3XO8cDpHU3yWi XQsONUckXjqJkh1IxOGcwRK+YSEqBWHIhbYIeN/eHJWos44xFoKj3xgjySy5UV2N TXBzmQn1bfNIvDBDiph+FhKnulSuRpASve1IpVPhX6oIdbxDaxyvV6+Ltzo88Zll aSXgyVaUCi4CpCFa371zj3vK+cPXiGaR -----END CERTIFICATE-----Generated at Fri Sep 19 02:29:50 2025 by rpki-client