$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: u9jnUULfgIO2sIhxfm4MNLUU9gKlNdwiUS1zlxg1zZ0= Subject key identifier: 5C:69:B0:C6:9B:B3:B3:BE:A1:65:32:2D:83:0A:BE:49:FF:80:A7:01 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: F3 Signing time: Mon 03 Nov 2025 05:16:45 +0000 Manifest this update: Mon 03 Nov 2025 05:16:44 +0000 Manifest next update: Mon 10 Nov 2025 05:16:44 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: GAnQZebN2SD4ku7eZx9AxuKAtQtcqE40b+ntZNztJcg=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: gcIhWP5NO91lJBfeWuctKx1kLPZssG1GkCQYCQaZs38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Nov 3 05:16:44 2025 GMT Not After : Nov 10 05:16:44 2025 GMT Subject: CN=69083abd-3ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:61:c5:2f:59:c4:05:50:ce:a8:42:a4:b8:f5: 62:89:ff:41:69:4c:a2:22:eb:53:d2:96:b8:14:8c: 20:c1:42:90:54:77:dc:ef:7b:06:e3:99:c9:d2:af: 65:df:01:be:4f:e5:7c:18:a6:07:ca:a3:0e:c7:ed: 1e:47:7f:96:cd:b3:18:06:e3:44:ad:94:86:66:7f: 54:2c:0b:d1:cd:08:18:c2:b8:0d:94:46:3f:55:6c: cf:30:01:f1:7f:70:c1:ab:84:c2:ef:0e:2a:76:0b: 21:8e:cd:80:28:85:02:ee:af:ec:84:ab:f6:bc:74: 7f:a2:53:aa:11:f2:e3:ff:94:d7:f3:46:0c:f6:b4: 9d:6d:fe:05:3a:dc:72:1c:f3:63:0b:61:c4:46:76: 6c:a5:b3:f2:ee:a3:7c:81:b3:cf:fd:59:cd:da:07: fe:3f:6f:f9:4a:1d:e1:e0:e2:81:95:43:ff:08:54: d3:75:2d:4f:d5:f3:84:9b:41:b9:88:6c:b4:15:a2: d1:bf:0c:c4:9a:4c:f0:ec:d8:2f:3d:dd:73:20:c6: 93:65:54:99:a1:85:96:41:82:a0:af:a2:4a:1f:bc: 7e:21:ca:06:42:87:a0:c3:0d:7f:0b:d6:04:cf:fe: 44:8c:d8:a4:45:07:68:7a:94:49:3d:62:ce:3a:de: e9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:69:B0:C6:9B:B3:B3:BE:A1:65:32:2D:83:0A:BE:49:FF:80:A7:01 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:56:76:ef:c2:36:ea:a0:0f:8f:35:74:11:80:10:75:44:ea: 74:0e:6e:0b:6f:38:f0:c5:4d:de:a4:0a:1f:73:5a:28:3b:49: 15:66:2d:24:e2:e5:e2:93:67:75:a4:35:a1:2c:2e:ef:3f:f7: ce:93:b2:31:d0:7d:8c:00:2e:5d:b6:de:53:66:4d:ed:5f:7b: d9:bc:20:56:d2:7b:8a:ff:53:ba:b4:d6:f6:48:e1:62:22:23: 36:8d:26:fb:90:92:9d:74:61:24:44:fd:81:33:f2:98:e7:12: ac:f4:bf:56:f6:c4:49:15:4e:0e:3e:86:bf:5c:71:7b:59:d0: 29:ed:81:73:7a:cd:c5:8b:c5:e4:97:1b:69:b9:05:47:aa:45: 7e:01:dc:f6:d2:2b:6b:39:45:28:b4:c7:80:0c:d5:0c:a9:67: de:fb:c1:5d:25:bb:54:d3:01:3a:5f:fe:f1:ec:f2:56:b9:03: fa:40:5e:86:41:43:0e:df:4c:0d:e7:8e:d5:91:0e:36:22:48: e4:e5:f1:61:d2:69:7d:10:38:e1:95:85:ec:36:64:f4:5f:d7: 7a:38:69:01:86:2d:85:ff:2b:61:d1:5a:58:04:20:3a:87:c3: ec:a1:3c:f3:d1:d9:58:da:88:13:bd:14:8b:9d:2e:64:d1:de: 0b:d2:7e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUxMTAzMDUxNjQ0WhcNMjUxMTEwMDUxNjQ0WjAYMRYwFAYD VQQDEw02OTA4M2FiZC0zZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmHFL1nEBVDOqEKkuPViif9BaUyiIutT0pa4FIwgwUKQVHfc73sG45nJ0q9l 3wG+T+V8GKYHyqMOx+0eR3+WzbMYBuNErZSGZn9ULAvRzQgYwrgNlEY/VWzPMAHx f3DBq4TC7w4qdgshjs2AKIUC7q/shKv2vHR/olOqEfLj/5TX80YM9rSdbf4FOtxy HPNjC2HERnZspbPy7qN8gbPP/VnN2gf+P2/5Sh3h4OKBlUP/CFTTdS1P1fOEm0G5 iGy0FaLRvwzEmkzw7NgvPd1zIMaTZVSZoYWWQYKgr6JKH7x+IcoGQoegww1/C9YE z/5EjNikRQdoepRJPWLOOt7pWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxpsMab s7O+oWUyLYMKvkn/gKcBMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXVnbvwjbqoA+PNXQRgBB1ROp0Dm4LbzjwxU3epAofc1ooO0kVZi0k 4uXik2d1pDWhLC7vP/fOk7Ix0H2MAC5dtt5TZk3tX3vZvCBW0nuK/1O6tNb2SOFi IiM2jSb7kJKddGEkRP2BM/KY5xKs9L9W9sRJFU4OPoa/XHF7WdAp7YFzes3Fi8Xk lxtpuQVHqkV+Adz20itrOUUotMeADNUMqWfe+8FdJbtU0wE6X/7x7PJWuQP6QF6G QUMO30wN547VkQ42Ikjk5fFh0ml9EDjhlYXsNmT0X9d6OGkBhi2F/yth0VpYBCA6 h8PsoTzz0dlY2ogTvRSLnS5k0d4L0n4T -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:26 2025 by rpki-client