$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: if9hoeqEqeUa+vXOV4M8xHNjwDce4ZJcrG5AFpsWaYQ= Subject key identifier: 13:90:FC:F4:56:E7:E5:C0:AF:88:FC:B1:08:12:8B:27:14:AB:48:6E Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1C80 Signing time: Thu 18 Sep 2025 16:17:30 +0000 Manifest this update: Thu 18 Sep 2025 16:17:29 +0000 Manifest next update: Thu 25 Sep 2025 16:17:29 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: ibcwtRIrcLgMihCAjEsFEiKt687CnKhdwS3dWegs2jY=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: 3515yyoHz/OpGxhQJVW0uZ09F4a0FPsq5rPkaEYDZbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7319 (0x1c97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Sep 18 16:17:29 2025 GMT Not After : Sep 25 16:17:29 2025 GMT Subject: CN=68cc309a-78d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:83:00:ef:b1:49:48:d0:c4:b9:31:16:cc:f7: 85:d7:34:a8:51:e4:42:88:18:3c:58:0d:de:6d:f1: 0b:80:5b:b6:62:25:79:1b:d6:5e:56:4e:96:63:35: b1:96:82:e1:93:6f:64:39:90:63:0f:d7:65:8c:87: 00:33:b0:bb:3a:db:9c:11:2e:03:73:d7:8b:8c:8c: c6:a9:d7:0a:ca:33:a9:68:27:c6:1d:23:c3:cd:da: 54:c9:2e:a7:a0:3b:3e:a8:d6:ed:f8:53:9e:5a:73: ef:78:c6:5b:31:45:65:03:3e:18:77:7e:2c:74:d6: 80:da:0f:cb:35:33:ed:49:dc:89:ee:ab:cc:b4:cd: f2:e2:9e:5b:67:7e:f0:00:80:30:8a:cd:90:1f:82: f2:a5:61:13:92:5c:16:86:e8:15:ff:a0:16:28:25: 58:6b:bb:9e:8a:0c:10:7a:08:18:d3:fc:0f:8b:cf: 1c:27:41:7b:e5:f1:98:0f:24:3b:6d:77:f9:6a:d9: 14:64:e1:4f:16:7c:48:d0:5d:52:78:74:f8:9e:07: a8:d4:21:2c:74:15:0f:b5:1c:ec:5e:3b:81:18:29: b9:6b:c1:66:d0:6e:8e:86:8a:e2:1f:f8:e6:28:5c: c4:39:2b:49:77:5d:09:7a:8c:f2:0a:bc:5b:05:52: c4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:90:FC:F4:56:E7:E5:C0:AF:88:FC:B1:08:12:8B:27:14:AB:48:6E X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:5b:6f:30:33:dd:88:8d:2d:0e:6f:55:06:2f:d9:a7:a9:7e: f1:28:b7:f7:59:22:d2:1a:a3:db:a2:ab:c8:eb:9c:95:82:9f: 4c:87:b3:c2:c1:a8:9c:91:bc:f0:02:84:12:56:01:01:01:bd: 9a:08:8a:c7:ab:3f:ba:b6:78:c0:9a:4a:d3:d0:23:78:19:7e: 49:ef:91:8d:23:e4:3d:62:2b:f2:23:64:8e:7e:b0:6a:bd:c7: 46:c6:2b:44:20:11:8f:d5:ce:ce:b6:2b:9d:a2:7d:33:14:3a: 7f:e0:06:08:fc:6c:6e:6f:5d:ab:fd:e4:cf:42:74:04:59:d7: fb:2d:45:4a:be:a6:bc:80:07:a9:fa:68:f0:0d:32:f2:c4:4c: 48:37:30:0a:d3:42:5b:53:07:76:29:08:2c:ce:cf:15:db:2b: 21:ab:ef:9f:25:f1:d9:4a:1a:6e:f7:2e:46:23:eb:10:c4:9b: 24:ac:1b:dc:e3:1b:76:07:9f:ef:4f:ad:da:2a:7e:d0:cb:f6: f3:3d:df:5b:b0:2a:57:e7:eb:e2:a2:5c:12:31:ce:97:bf:9a: fc:91:1f:3f:b9:0e:06:55:e1:15:bc:94:0c:fc:ff:a4:fa:a3: 2f:55:3c:17:07:ea:0e:4c:5e:40:4c:92:ed:82:5d:1c:59:d9: 38:96:57:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUwOTE4MTYxNzI5WhcNMjUwOTI1MTYxNzI5WjAYMRYwFAYD VQQDEw02OGNjMzA5YS03OGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IMA77FJSNDEuTEWzPeF1zSoUeRCiBg8WA3ebfELgFu2YiV5G9ZeVk6WYzWx loLhk29kOZBjD9dljIcAM7C7OtucES4Dc9eLjIzGqdcKyjOpaCfGHSPDzdpUyS6n oDs+qNbt+FOeWnPveMZbMUVlAz4Yd34sdNaA2g/LNTPtSdyJ7qvMtM3y4p5bZ37w AIAwis2QH4LypWETklwWhugV/6AWKCVYa7ueigwQeggY0/wPi88cJ0F75fGYDyQ7 bXf5atkUZOFPFnxI0F1SeHT4ngeo1CEsdBUPtRzsXjuBGCm5a8Fm0G6OhoriH/jm KFzEOStJd10JeozyCrxbBVLETQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOQ/PRW 5+XAr4j8sQgSiycUq0huMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApW28wM92IjS0Ob1UGL9mnqX7xKLf3WSLSGqPboqvI65yVgp9Mh7PC waickbzwAoQSVgEBAb2aCIrHqz+6tnjAmkrT0CN4GX5J75GNI+Q9YivyI2SOfrBq vcdGxitEIBGP1c7Otiudon0zFDp/4AYI/Gxub12r/eTPQnQEWdf7LUVKvqa8gAep +mjwDTLyxExINzAK00JbUwd2KQgszs8V2yshq++fJfHZShpu9y5GI+sQxJskrBvc 4xt2B5/vT63aKn7Qy/bzPd9bsCpX5+violwSMc6Xv5r8kR8/uQ4GVeEVvJQM/P+k +qMvVTwXB+oOTF5ATJLtgl0cWdk4lle5 -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:04 2025 by rpki-client