$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: W69uoZ9DpxmhnP9cYacqvxSiH61snzqoNa+gUnm9Cmg= Subject key identifier: 37:89:9E:5E:65:C0:C6:81:2A:02:2C:4D:F8:AD:E2:7C:75:17:FF:9D Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 057C Signing time: Tue 04 Nov 2025 23:21:30 +0000 Manifest this update: Tue 04 Nov 2025 23:21:29 +0000 Manifest next update: Tue 11 Nov 2025 23:21:29 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: FtZLkky8mwxhDhp52QO+dVkdvQypV+TYdw08HUe4G/s=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Nov 4 23:21:29 2025 GMT Not After : Nov 11 23:21:29 2025 GMT Subject: CN=690a8a79-62c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a6:ea:c0:e3:47:88:45:08:de:2f:93:4a:04: d2:f3:cb:47:9b:56:b0:fc:bc:c8:1a:42:74:57:5b: d7:6c:e4:18:39:ed:1b:d0:39:76:b0:57:60:9e:6f: f0:78:f5:48:6d:61:76:bd:c3:a7:c5:af:c7:ca:36: ea:76:c9:8b:b6:6d:37:da:b4:ac:a2:d5:a9:73:84: 95:3b:0d:c1:b6:54:51:85:53:e5:e1:be:9f:59:3a: c0:b3:1c:69:a4:44:ef:9e:9d:d3:09:57:44:da:e6: 3f:ea:f7:1b:0f:67:a7:3c:ec:2d:dd:9c:55:fd:21: 58:c8:14:7a:72:cb:0d:8d:95:2d:9d:fe:7c:bb:7b: 65:78:d2:18:d9:3e:6f:25:95:6e:4d:ba:71:c5:89: 0f:3f:e0:c9:72:ce:46:eb:bf:98:f4:3d:69:ad:2e: 7f:e1:b2:5a:a3:06:5d:3e:45:7a:8d:28:4c:11:1a: a9:76:06:4d:5b:05:e5:25:8e:97:b1:ec:a0:64:8c: 7f:9d:62:9b:62:f9:be:54:ff:11:90:d6:12:48:c3: a7:1d:7d:90:31:41:8d:8f:80:a8:64:84:d6:3c:d8: 4c:17:8b:86:8c:bc:79:5e:99:fe:fe:5b:a1:6e:56: 3e:5f:a7:e0:f1:88:a6:ca:4f:c1:3c:19:e1:c2:2c: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:89:9E:5E:65:C0:C6:81:2A:02:2C:4D:F8:AD:E2:7C:75:17:FF:9D X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f4:07:81:2d:fd:43:84:71:7c:16:ab:85:be:a7:fc:7a:fd: 27:a8:67:f1:20:97:5e:69:d1:96:3f:e5:46:20:30:be:5e:b7: 1c:4d:39:c0:26:aa:d2:90:23:8b:a6:cb:00:e6:8d:04:0c:27: 03:44:15:4e:47:86:d3:d2:06:06:1a:17:c3:7e:72:d1:46:4e: b0:0f:de:3f:e2:83:13:bf:24:8a:fc:10:f8:65:14:59:b6:80: ba:65:53:bf:59:5e:e8:a0:0e:41:ed:17:56:fb:1c:fe:ee:1d: 96:7e:86:a5:5d:9a:8c:7b:80:54:10:5e:90:7d:c7:ae:f6:61: 17:cb:c8:fe:57:25:db:90:80:3d:2d:27:b4:4d:3a:bf:fe:bb: 0e:0a:85:15:98:3f:b7:93:e1:0a:93:9f:4f:4a:75:82:cc:af: 5d:fd:15:50:cb:d2:8b:91:c5:89:53:13:79:a9:f0:90:4a:24: 49:a3:7b:c4:50:0f:ea:4d:f8:7a:3f:5a:20:fc:15:68:d8:aa: 1f:6d:e8:95:04:9a:f1:83:49:4a:17:49:79:29:98:0a:c3:ad: 74:4e:19:e5:de:d0:66:00:41:17:f2:12:07:7d:3c:18:f7:b3: ce:ff:91:4b:61:18:65:78:78:84:1a:72:af:5b:d9:c4:8a:23: d0:a7:94:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUxMTA0MjMyMTI5WhcNMjUxMTExMjMyMTI5WjAYMRYwFAYD VQQDEw02OTBhOGE3OS02MmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KbqwONHiEUI3i+TSgTS88tHm1aw/LzIGkJ0V1vXbOQYOe0b0Dl2sFdgnm/w ePVIbWF2vcOnxa/HyjbqdsmLtm032rSsotWpc4SVOw3BtlRRhVPl4b6fWTrAsxxp pETvnp3TCVdE2uY/6vcbD2enPOwt3ZxV/SFYyBR6cssNjZUtnf58u3tleNIY2T5v JZVuTbpxxYkPP+DJcs5G67+Y9D1prS5/4bJaowZdPkV6jShMERqpdgZNWwXlJY6X seygZIx/nWKbYvm+VP8RkNYSSMOnHX2QMUGNj4CoZITWPNhMF4uGjLx5Xpn+/luh blY+X6fg8Yimyk/BPBnhwiwwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeJnl5l wMaBKgIsTfit4nx1F/+dMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW9AeBLf1DhHF8FquFvqf8ev0nqGfxIJdeadGWP+VGIDC+XrccTTnA JqrSkCOLpssA5o0EDCcDRBVOR4bT0gYGGhfDfnLRRk6wD94/4oMTvySK/BD4ZRRZ toC6ZVO/WV7ooA5B7RdW+xz+7h2WfoalXZqMe4BUEF6Qfceu9mEXy8j+VyXbkIA9 LSe0TTq//rsOCoUVmD+3k+EKk59PSnWCzK9d/RVQy9KLkcWJUxN5qfCQSiRJo3vE UA/qTfh6P1og/BVo2KofbeiVBJrxg0lKF0l5KZgKw610Thnl3tBmAEEX8hIHfTwY 97PO/5FLYRhleHiEGnKvW9nEiiPQp5Q1 -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:38 2025 by rpki-client