$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft File: NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft (raw, json) Hash identifier: Y6rxaB4tp2Il4nfe/9oOj1thvGDiFb48rdygDRJoCUE= Subject key identifier: E8:02:81:95:F0:8D:A8:74:EF:48:56:0C:62:C6:40:AA:2E:46:DD:03 Authority key identifier: 34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A Certificate issuer: /CN=A91B927E/serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Certificate serial: 0A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft Manifest number: 11D4 Signing time: Tue 04 Nov 2025 19:39:23 +0000 Manifest this update: Tue 04 Nov 2025 19:39:23 +0000 Manifest next update: Tue 11 Nov 2025 19:39:23 +0000 Files and hashes: 1: NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl (hash: k3ehgS09+o2qqZ3iS8tDBX2LaJp0GNOcZIXuh1ZWgGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E, serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Validity Not Before: Nov 4 19:39:23 2025 GMT Not After : Nov 11 19:39:23 2025 GMT Subject: CN=690a566b-b1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:42:dd:89:95:f7:f0:b6:b0:7f:0c:e4:23: dc:49:7e:6d:5d:3b:b1:62:0f:52:f4:70:cb:e7:eb: e8:05:a4:2b:f1:69:8b:7f:2e:bb:44:d5:71:5f:e1: c7:81:ac:13:16:f9:13:a7:e5:f3:f5:08:56:8b:d9: 70:e7:1f:ef:e6:a3:4c:87:63:6a:a5:c5:3a:c1:6a: 5d:d2:5b:fc:4e:a3:08:72:cd:67:83:4e:36:26:49: dc:80:e3:4e:37:13:54:62:48:2b:59:27:ed:0e:72: 9a:19:32:f8:1e:04:72:0a:21:c4:76:b9:88:2d:06: 79:7d:f3:aa:b0:f7:be:88:a1:74:d2:17:6d:a3:17: 5d:5c:df:58:6d:da:d7:98:ca:9c:d4:36:8e:c8:3f: af:a0:b7:55:50:e6:18:ca:00:da:30:17:a8:02:6f: 1e:ee:4d:55:7c:5e:69:7c:66:56:5c:31:db:05:d4: a5:1f:1d:a9:1e:79:04:8a:e2:fe:37:e2:65:53:d6: 5c:e9:b3:4f:22:d4:6d:eb:83:62:0c:41:ee:2e:a2: c6:92:be:55:f5:54:08:91:cd:86:18:0d:fb:ec:48: 5e:74:5f:97:20:22:e5:ba:3d:5e:fb:dd:de:92:3d: c1:74:1f:5d:74:d1:58:59:cf:85:69:fc:87:c4:92: 8e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:02:81:95:F0:8D:A8:74:EF:48:56:0C:62:C6:40:AA:2E:46:DD:03 X509v3 Authority Key Identifier: keyid:34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:72:6b:73:c8:52:99:3a:36:5b:b5:31:bd:22:ee:40:04:60: 4e:d4:0c:75:c4:c4:3f:34:ea:b6:e9:7c:e2:a3:83:59:75:b1: 9b:01:0f:ad:3e:ce:98:11:5d:a5:6a:49:f5:62:03:25:88:c4: 7b:9d:50:59:c3:f1:ea:e3:ec:ee:12:9a:34:bd:7d:ae:f3:55: dc:e8:fa:ce:3a:c5:b5:97:8b:0f:0b:92:32:5e:29:d0:ed:ae: cf:25:e2:cf:8d:f8:1c:5c:5a:b9:3f:e3:64:a3:88:b1:66:78: a0:73:9c:77:04:ef:a4:e0:2a:2c:a8:94:06:28:f1:29:a4:dc: c1:ec:8f:b8:8f:d8:29:84:0b:5d:9c:26:74:0b:1c:f3:0b:28: d5:d0:6b:95:7e:c7:a4:30:0a:1a:fe:6b:8b:61:6b:60:17:25: ff:48:87:02:a2:ab:49:1d:38:d0:25:c2:2a:1a:1a:e0:27:59: ea:f7:ad:6a:6c:ba:0c:25:af:08:6d:bd:6d:12:4b:34:44:19: d1:ee:62:fb:c2:cc:05:d3:05:c9:c7:5a:dd:40:4f:ad:1c:bc: 0f:a8:d7:6c:8d:95:80:b5:2d:9f:6f:7f:65:bd:21:d0:00:0b: 4f:5e:37:38:ae:51:dc:20:ab:cd:88:62:a8:96:0b:bd:9b:b5: fa:7a:2b:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDM0NkRGMEVGNEQ4QkM2M0MzODI0RDZFNDkwMDY3NDYz MjU0N0IwOEEwHhcNMjUxMTA0MTkzOTIzWhcNMjUxMTExMTkzOTIzWjAYMRYwFAYD VQQDEw02OTBhNTY2Yi1iMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpdC3YmV9/C2sH8M5CPcSX5tXTuxYg9S9HDL5+voBaQr8WmLfy67RNVxX+HH gawTFvkTp+Xz9QhWi9lw5x/v5qNMh2NqpcU6wWpd0lv8TqMIcs1ng042JkncgONO NxNUYkgrWSftDnKaGTL4HgRyCiHEdrmILQZ5ffOqsPe+iKF00hdtoxddXN9YbdrX mMqc1DaOyD+voLdVUOYYygDaMBeoAm8e7k1VfF5pfGZWXDHbBdSlHx2pHnkEiuL+ N+JlU9Zc6bNPItRt64NiDEHuLqLGkr5V9VQIkc2GGA377EhedF+XICLluj1e+93e kj3BdB9ddNFYWc+FafyHxJKOKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgCgZXw jah070hWDGLGQKouRt0DMB8GA1UdIwQYMBaAFDRt8O9Ni8Y8OCTW5JAGdGMlR7CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhqdzRKTmJra0FaMFl5Vkhz SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05HM3c3MDJMeGp3NEpOYmtrQVowWXlWSHNJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI3RS9DQ0Q2RUQxQzY4REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhq dzRKTmJra0FaMFl5VkhzSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAecmtzyFKZOjZbtTG9Iu5ABGBO1Ax1xMQ/NOq26Xzio4NZdbGbAQ+t Ps6YEV2lakn1YgMliMR7nVBZw/Hq4+zuEpo0vX2u81Xc6PrOOsW1l4sPC5IyXinQ 7a7PJeLPjfgcXFq5P+Nko4ixZnigc5x3BO+k4CosqJQGKPEppNzB7I+4j9gphAtd nCZ0CxzzCyjV0GuVfsekMAoa/muLYWtgFyX/SIcCoqtJHTjQJcIqGhrgJ1nq961q bLoMJa8Ibb1tEks0RBnR7mL7wswF0wXJx1rdQE+tHLwPqNdsjZWAtS2fb39lvSHQ AAtPXjc4rlHcIKvNiGKolgu9m7X6eivg -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:23 2025 by rpki-client