$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: mWskIKlT1RNg9BcpMSeJbbplFQdx+FEaW4sDDrjai+E= Subject key identifier: FC:63:51:88:26:E2:8F:0B:11:12:1F:76:8C:D2:C6:D7:F9:3B:A4:11 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 016B Signing time: Wed 05 Nov 2025 04:04:30 +0000 Manifest this update: Wed 05 Nov 2025 04:04:30 +0000 Manifest next update: Wed 12 Nov 2025 04:04:30 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: nLmnCieJVYp8JVLa/oOnzcWoKmPTgO5ctbJ6vLzIKpA=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Nov 5 04:04:30 2025 GMT Not After : Nov 12 04:04:30 2025 GMT Subject: CN=690accce-278d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:9a:b6:40:9a:b0:78:67:0e:2a:18:19:3b: 2c:4d:5d:52:d7:a8:44:0c:d7:71:3f:30:3e:b5:33: 8f:ab:c5:67:70:b1:ea:0c:8c:91:a5:c6:a5:52:a2: 5d:a9:71:c2:29:24:52:d5:68:45:47:35:45:44:2d: 54:33:03:b2:2f:6d:15:2a:01:5d:87:87:1c:93:69: 73:43:47:72:73:4f:a5:27:7f:83:61:b3:ce:64:b6: 10:fe:a9:bc:86:cd:a2:fc:c0:7b:05:6f:9e:8f:00: 97:0b:51:16:3b:ad:2c:24:30:cf:2b:19:f1:d1:7b: ba:2e:32:62:82:88:c8:41:47:91:57:f5:b5:19:7d: cb:3d:61:d8:80:28:cd:cc:b7:6b:61:54:7b:a8:d1: db:db:d6:5f:a4:4d:aa:28:34:1a:5b:4c:a5:5e:39: 12:ed:78:f1:7e:4d:d6:8d:5e:ec:6b:74:e5:8c:4a: 3b:26:74:c9:42:db:3b:82:9c:00:0e:ae:f7:22:d2: c2:f1:f5:07:08:b9:ff:d9:48:e0:9f:6f:ee:3e:2e: f2:6b:88:50:af:7f:5b:bd:f5:84:c6:e8:4b:8d:04: 55:55:5b:16:ac:61:07:56:f4:1b:fb:89:1f:7a:a9: 22:80:d2:c3:94:78:8a:68:b6:f8:4f:bb:6f:8d:f8: 88:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:63:51:88:26:E2:8F:0B:11:12:1F:76:8C:D2:C6:D7:F9:3B:A4:11 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:77:7b:f9:e4:39:b3:79:7d:5c:7b:fd:9b:59:15:9d:ef:a8: cb:dc:ae:a3:03:26:05:2c:f5:0e:20:46:92:71:68:0c:47:4c: 0d:64:dd:75:be:8b:6b:2b:0a:93:11:9f:af:5d:04:ca:28:aa: 01:a7:c9:8e:25:69:4a:c1:dc:3c:84:5d:0a:5f:a9:83:31:fe: 61:76:c9:ab:d0:55:88:82:04:08:28:c9:fd:e7:02:6f:8c:56: 67:90:aa:43:77:11:11:76:a1:e3:e6:d1:4f:3b:b2:1c:f3:48: 8d:70:37:62:4c:91:3e:d4:d2:01:61:d4:9e:2f:8d:56:4c:f3: f3:e5:b9:b0:89:a6:c4:a7:65:1b:5e:36:40:ea:12:30:1a:06: ef:81:8b:13:69:cd:d0:a1:d0:50:73:fe:af:d6:40:71:cc:a2: 8e:f8:ff:8a:df:53:16:db:fe:7e:15:74:17:b6:3d:b1:d2:73: c7:5f:4c:86:e7:54:d3:23:f7:b9:9f:5a:a7:2a:60:52:d2:98: ff:be:1d:00:c2:d1:92:3d:d8:19:d6:b7:4d:0e:73:3a:41:fb: 33:6d:6c:a7:71:d0:50:b2:af:f9:7e:67:3e:2d:fc:3d:8a:8f: 48:29:fc:15:e5:6b:95:0f:1d:3c:5e:96:ee:03:0c:f0:ec:b1: 25:93:19:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUxMTA1MDQwNDMwWhcNMjUxMTEyMDQwNDMwWjAYMRYwFAYD VQQDEw02OTBhY2NjZS0yNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeOatkCasHhnDioYGTssTV1S16hEDNdxPzA+tTOPq8VncLHqDIyRpcalUqJd qXHCKSRS1WhFRzVFRC1UMwOyL20VKgFdh4cck2lzQ0dyc0+lJ3+DYbPOZLYQ/qm8 hs2i/MB7BW+ejwCXC1EWO60sJDDPKxnx0Xu6LjJigojIQUeRV/W1GX3LPWHYgCjN zLdrYVR7qNHb29ZfpE2qKDQaW0ylXjkS7Xjxfk3WjV7sa3TljEo7JnTJQts7gpwA Dq73ItLC8fUHCLn/2Ujgn2/uPi7ya4hQr39bvfWExuhLjQRVVVsWrGEHVvQb+4kf eqkigNLDlHiKaLb4T7tvjfiIzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxjUYgm 4o8LERIfdozSxtf5O6QRMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfd3v55DmzeX1ce/2bWRWd76jL3K6jAyYFLPUOIEaScWgMR0wNZN11 votrKwqTEZ+vXQTKKKoBp8mOJWlKwdw8hF0KX6mDMf5hdsmr0FWIggQIKMn95wJv jFZnkKpDdxERdqHj5tFPO7Ic80iNcDdiTJE+1NIBYdSeL41WTPPz5bmwiabEp2Ub XjZA6hIwGgbvgYsTac3QodBQc/6v1kBxzKKO+P+K31MW2/5+FXQXtj2x0nPHX0yG 51TTI/e5n1qnKmBS0pj/vh0AwtGSPdgZ1rdNDnM6QfszbWyncdBQsq/5fmc+Lfw9 io9IKfwV5WuVDx08XpbuAwzw7LElkxlw -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:35 2025 by rpki-client