$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: 4t+wF0bAUjp1TI4xayUq8FlAxKC6AEJlLyFHbwKy220= Subject key identifier: AC:8E:BB:D9:03:21:5A:7D:56:A1:4E:54:06:FB:3A:5F:1F:38:DF:FB Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1CB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1C99 Signing time: Sun 02 Nov 2025 16:11:15 +0000 Manifest this update: Sun 02 Nov 2025 16:11:15 +0000 Manifest next update: Sun 09 Nov 2025 16:11:15 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: IAHkJotXyTwtOgHpDJrjIk/0cd3+jaXiLL/ETt4FEBM=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: mbirPrlAXH5YzuouoktzvpQ1tw+oe1CclK8OL36QAb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7345 (0x1cb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Nov 2 16:11:15 2025 GMT Not After : Nov 9 16:11:15 2025 GMT Subject: CN=690782a3-a5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e7:48:8d:b9:30:9b:de:ea:44:74:02:f6:71: e8:78:d6:98:ba:02:97:60:68:96:06:ae:f2:d8:13: 96:c1:99:d0:65:20:dc:8f:99:92:5a:f2:60:6d:26: 8c:ca:61:90:ef:e2:f3:7f:8c:ff:37:36:f0:79:fd: a9:02:19:0d:5b:cf:84:e1:93:a1:c1:a4:8f:b6:dc: 4c:62:c1:ad:af:2c:ce:cf:b8:23:2e:4c:f0:19:c6: f6:6f:b9:2c:ff:0e:b8:b6:b3:d6:11:8e:02:87:e9: a9:71:b9:7a:ee:1b:8e:3f:c8:2c:47:84:38:13:4a: 9b:21:09:8c:e7:7d:2f:46:99:12:20:b3:4b:e5:d9: 2b:c5:f9:d8:79:cb:cc:fa:0d:de:8c:bf:cd:35:a7: 13:a7:de:05:f2:0b:7d:0f:c1:65:cd:74:1f:73:e3: 0f:2d:da:21:70:e2:1c:b7:b7:5d:7b:7c:0d:19:c1: c0:7d:4f:df:3b:a5:22:71:60:8c:03:55:97:61:dc: f4:13:a7:fe:45:99:fc:6a:2a:e3:cb:40:08:5c:38: 8b:d9:c5:a8:ea:9c:3c:15:16:c7:83:7d:ec:6d:78: 3c:8d:21:c5:d9:b9:02:60:c2:77:14:ad:54:bd:2e: 15:9c:26:63:86:14:df:3f:9b:ec:8a:e9:52:1c:1d: 3f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:8E:BB:D9:03:21:5A:7D:56:A1:4E:54:06:FB:3A:5F:1F:38:DF:FB X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a9:97:1e:ce:e5:49:71:e2:7c:c5:ad:ab:ad:25:55:bd:5e: ae:0e:24:e9:60:fe:2d:be:a7:3a:84:0b:86:f3:f7:72:15:fd: 2a:8c:ec:e2:03:90:36:24:42:1e:c1:92:4f:22:13:03:2d:28: 0f:8b:94:20:fd:66:47:73:8f:a8:75:19:a2:cc:78:6c:91:57: 68:42:4a:a5:bc:7d:85:c6:28:87:8a:69:db:55:c6:50:a9:b1: 12:77:eb:07:29:ef:c3:c9:a8:5c:81:71:f8:a2:36:7b:3f:cc: 4f:21:77:e9:14:f1:a4:ca:1b:b7:33:3a:af:7c:36:ad:0c:f8: 82:67:44:a3:e9:f8:ea:ff:61:3b:e4:fe:30:1c:31:91:3a:7e: 1c:88:32:47:46:a3:b7:a0:e4:25:62:51:04:9c:8d:50:36:70: ed:b7:c0:0c:d6:c5:a5:16:2b:81:67:fa:95:da:7a:f3:ad:d7: 1d:fe:33:e4:b4:43:92:35:d7:bc:e7:0e:3e:9a:08:95:50:db: f4:66:e3:cb:ed:95:0e:4d:a2:c6:fb:5a:73:cc:21:e3:15:89: 89:04:36:a1:b2:95:19:9f:fd:08:97:ed:4f:cc:e3:c1:33:11: 73:9a:3d:9e:db:f9:3b:47:49:ae:1c:39:1d:08:42:f7:b7:31: f4:ea:32:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUxMTAyMTYxMTE1WhcNMjUxMTA5MTYxMTE1WjAYMRYwFAYD VQQDEw02OTA3ODJhMy1hNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOdIjbkwm97qRHQC9nHoeNaYugKXYGiWBq7y2BOWwZnQZSDcj5mSWvJgbSaM ymGQ7+Lzf4z/Nzbwef2pAhkNW8+E4ZOhwaSPttxMYsGtryzOz7gjLkzwGcb2b7ks /w64trPWEY4Ch+mpcbl67huOP8gsR4Q4E0qbIQmM530vRpkSILNL5dkrxfnYecvM +g3ejL/NNacTp94F8gt9D8FlzXQfc+MPLdohcOIct7dde3wNGcHAfU/fO6UicWCM A1WXYdz0E6f+RZn8airjy0AIXDiL2cWo6pw8FRbHg33sbXg8jSHF2bkCYMJ3FK1U vS4VnCZjhhTfP5vsiulSHB0/HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyOu9kD IVp9VqFOVAb7Ol8fON/7MB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeqZcezuVJceJ8xa2rrSVVvV6uDiTpYP4tvqc6hAuG8/dyFf0qjOzi A5A2JEIewZJPIhMDLSgPi5Qg/WZHc4+odRmizHhskVdoQkqlvH2FxiiHimnbVcZQ qbESd+sHKe/DyahcgXH4ojZ7P8xPIXfpFPGkyhu3MzqvfDatDPiCZ0Sj6fjq/2E7 5P4wHDGROn4ciDJHRqO3oOQlYlEEnI1QNnDtt8AM1sWlFiuBZ/qV2nrzrdcd/jPk tEOSNde85w4+mgiVUNv0ZuPL7ZUOTaLG+1pzzCHjFYmJBDahspUZn/0Il+1PzOPB MxFzmj2e2/k7R0muHDkdCEL3tzH06jIj -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:34 2025 by rpki-client