$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json) Hash identifier: oKa0LHHgKg3viNv1jGatiGpv/qhOpNgeQ7qdBW+tiZU= Subject key identifier: 80:31:A2:C2:BE:11:C3:DE:08:37:46:84:69:9B:99:20:8B:66:6E:97 Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Certificate serial: 120B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft Manifest number: 11DC Signing time: Tue 04 Nov 2025 17:17:34 +0000 Manifest this update: Tue 04 Nov 2025 17:17:33 +0000 Manifest next update: Tue 11 Nov 2025 17:17:33 +0000 Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: ytXHs6Ja7eAD5FalevDlU5dZ6O3dCiDawsaGehK/HUs=) 2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: hpmM9pfcrUFnNRets4Cm3b/cVvffA5StG3HyqAHQxOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4619 (0x120b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Validity Not Before: Nov 4 17:17:33 2025 GMT Not After : Nov 11 17:17:33 2025 GMT Subject: CN=690a352d-0705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:ad:08:ec:a6:10:82:06:42:a4:2a:a9:06: 9a:ab:28:58:e5:4e:a3:32:7e:22:78:1d:1a:9b:4e: d3:e1:90:e3:3d:20:4f:a5:38:54:dc:e9:3d:ca:0c: 2f:50:ee:d7:a4:62:a7:41:1e:db:03:b6:f8:ff:04: c8:cd:74:41:1f:00:11:98:47:f9:2e:4c:69:cf:1d: 05:12:05:6d:7c:d6:ce:17:3b:49:e5:14:e5:73:fb: 15:0a:35:d0:f7:04:e7:70:31:a1:e9:dc:a5:09:9d: 5d:94:18:d6:90:85:be:77:e3:e2:5d:c5:2b:8c:ce: 19:07:0d:fd:11:1e:0f:f2:55:84:fa:52:43:a3:0b: 28:30:a1:57:f1:1a:7d:a9:41:4b:ef:71:fd:1f:b9: 30:cb:a7:e7:6e:ee:e9:2f:16:75:eb:a0:42:68:29: 88:e0:06:ce:8f:db:17:6e:77:34:b7:01:11:46:f5: d9:ad:25:f7:60:77:58:94:2a:58:e0:87:11:56:a3: 89:10:57:9c:24:f4:e1:be:e6:c8:d9:7e:5c:25:9b: 59:d6:d6:a0:39:ec:0a:ba:db:77:2f:15:59:a5:be: 94:0f:43:a8:c9:7e:e9:f8:6b:d0:ab:6a:08:e8:47: 3a:20:3a:da:8b:c4:6e:e5:c8:27:3f:35:ca:4f:4f: 90:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:31:A2:C2:BE:11:C3:DE:08:37:46:84:69:9B:99:20:8B:66:6E:97 X509v3 Authority Key Identifier: keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:44:1e:21:41:41:37:0e:65:93:04:39:6e:2a:ec:0b:73:1c: 66:65:d1:5e:52:21:b7:99:7e:09:86:66:1c:e8:36:14:3c:cf: da:bb:18:33:bd:f2:8c:5d:a2:ee:10:1b:b3:23:a4:44:cf:ef: 71:38:1a:fd:8a:c9:1c:50:43:5b:bf:70:78:b0:db:f7:8b:cc: 6e:cd:8a:62:33:54:ce:56:1d:9d:2b:b0:dd:2d:d4:f8:0d:0f: e9:04:db:91:87:ff:75:7c:1d:58:49:77:f6:84:73:8d:7f:e5: c3:7a:ae:5e:9e:5c:3a:31:07:89:41:0e:6b:ff:50:06:50:d4: 6b:df:0d:75:5c:fd:8a:ed:d8:ad:d1:1b:bc:dd:e9:5d:7d:81: ca:3b:2e:b0:64:8a:1d:4d:7b:d9:8e:97:d8:85:fe:60:5f:fc: 35:93:3c:5b:da:24:59:03:8e:49:57:cb:f2:86:28:bc:72:03: 3c:58:3a:0a:54:5c:2b:9c:58:71:2e:48:e8:3f:62:48:7f:bd: 21:64:bc:ed:7d:6f:44:8c:af:c3:ae:0c:85:a5:2a:65:2f:44: 9a:80:13:4a:e7:3c:0e:f1:81:3e:c3:32:67:59:c5:77:37:0e: 4c:ad:1c:9d:1d:ab:ef:36:59:06:6a:e3:5d:4c:24:44:0c:4d: 67:23:ae:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF ODJCRDQzOUEwHhcNMjUxMTA0MTcxNzMzWhcNMjUxMTExMTcxNzMzWjAYMRYwFAYD VQQDEw02OTBhMzUyZC0wNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb2tCOymEIIGQqQqqQaaqyhY5U6jMn4ieB0am07T4ZDjPSBPpThU3Ok9ygwv UO7XpGKnQR7bA7b4/wTIzXRBHwARmEf5Lkxpzx0FEgVtfNbOFztJ5RTlc/sVCjXQ 9wTncDGh6dylCZ1dlBjWkIW+d+PiXcUrjM4ZBw39ER4P8lWE+lJDowsoMKFX8Rp9 qUFL73H9H7kwy6fnbu7pLxZ166BCaCmI4AbOj9sXbnc0twERRvXZrSX3YHdYlCpY 4IcRVqOJEFecJPThvubI2X5cJZtZ1tagOewKutt3LxVZpb6UD0OoyX7p+GvQq2oI 6Ec6IDrai8Ru5cgnPzXKT0+QfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAxosK+ EcPeCDdGhGmbmSCLZm6XMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0 RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRRB4hQUE3DmWTBDluKuwLcxxmZdFeUiG3mX4JhmYc6DYUPM/auxgz vfKMXaLuEBuzI6REz+9xOBr9iskcUENbv3B4sNv3i8xuzYpiM1TOVh2dK7DdLdT4 DQ/pBNuRh/91fB1YSXf2hHONf+XDeq5enlw6MQeJQQ5r/1AGUNRr3w11XP2K7dit 0Ru83eldfYHKOy6wZIodTXvZjpfYhf5gX/w1kzxb2iRZA45JV8vyhii8cgM8WDoK VFwrnFhxLkjoP2JIf70hZLztfW9EjK/DrgyFpSplL0SagBNK5zwO8YE+wzJnWcV3 Nw5MrRydHavvNlkGauNdTCREDE1nI656 -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:11 2025 by rpki-client