$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: f8z79sxr1IrhJ7cpBK8GoVCH7v5XrlDZ68dsLuSRWOU= Subject key identifier: 2E:1C:A2:55:C5:4D:E9:8A:38:14:99:86:02:7F:24:6E:E3:75:65:53 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: DE Signing time: Mon 03 Nov 2025 05:45:45 +0000 Manifest this update: Mon 03 Nov 2025 05:45:45 +0000 Manifest next update: Mon 10 Nov 2025 05:45:45 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: agMXNSA4YVZ3YUxLzoupThrtaJgAFawVjRPsfkIdgYE=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: v8ohmUSHk0fnin1T0AiYUETFghcnt5SEXbq5Yrmd+XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Nov 3 05:45:45 2025 GMT Not After : Nov 10 05:45:45 2025 GMT Subject: CN=69084189-bc4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3a:cf:e3:c7:a1:d4:bc:c3:d7:ac:86:0a:fe: 7b:5e:6e:c3:37:8e:d0:8f:5a:7d:b6:01:ba:36:60: f1:a9:33:c7:0c:c3:bb:f2:7e:07:02:62:9c:0d:14: 5f:bf:e5:ca:66:3d:50:fe:fe:58:4a:be:1d:49:1a: 5d:f8:72:06:cf:98:80:97:0c:8e:ba:ea:9b:1b:73: 3f:23:cd:f4:ee:15:04:2b:33:7e:62:de:ff:57:54: cd:c4:34:0d:23:c0:33:8c:4a:8f:ae:cd:cb:dc:f4: 9f:15:28:23:af:ea:88:a5:58:ea:41:24:77:23:00: 2d:ac:a2:b7:5a:70:51:d8:27:69:a3:60:a6:e3:a5: 7a:35:16:9b:31:27:50:f8:6c:62:fe:74:d7:53:3b: 55:40:d2:7f:b3:c5:98:4a:d2:4a:13:58:f2:65:55: 43:b2:88:32:8c:a4:01:58:e5:38:18:5c:0e:c9:51: 42:3a:8f:0e:d2:04:af:d5:c2:cb:fa:b9:de:c9:fa: 19:7d:36:09:9f:4f:17:58:51:6a:87:61:01:7f:7d: 7d:64:0d:81:2d:e2:21:db:20:9d:1e:77:9a:a8:b1: 5b:92:5c:95:66:20:5a:dd:49:9d:e1:24:53:10:09: 01:8f:0e:12:3c:66:e3:72:81:cf:af:04:b4:e0:a3: c7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1C:A2:55:C5:4D:E9:8A:38:14:99:86:02:7F:24:6E:E3:75:65:53 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ef:4a:24:aa:27:a6:87:50:e4:ca:47:b3:fd:8c:6e:64:7a: 26:9c:65:e5:53:ec:cf:6a:2f:98:47:21:94:24:41:b6:51:b5: 61:0c:52:b1:e1:b8:3a:f0:54:65:da:c1:74:da:c2:11:f4:f1: ee:53:43:35:cd:fe:19:f2:74:02:96:f5:f6:ae:14:47:f2:63: 08:97:d0:80:8a:e9:cf:ca:0d:70:87:fe:14:c2:61:c8:86:07: 86:f9:b5:82:f5:27:6e:c7:c1:46:83:41:31:aa:f2:53:ee:a8: ff:44:a3:94:80:d7:60:06:d6:a1:14:f1:92:10:1e:0a:cb:ad: 1d:2f:67:d0:c9:8e:18:9c:da:73:04:b6:58:6c:f3:42:35:ce: 98:41:e7:fb:fa:9f:1f:74:54:55:ed:db:ff:e1:72:a7:70:55: e3:9a:ce:57:e2:1d:15:f5:5e:09:11:73:06:ca:79:91:07:3a: 55:ce:df:e9:01:db:fd:23:27:76:bc:95:0c:ba:2e:98:f3:5e: 93:2d:14:85:20:c1:aa:69:0c:41:cd:ed:88:db:d3:59:cc:4c: 7b:76:25:3d:32:2c:82:8d:3e:39:8e:92:a0:c6:6b:af:4c:e3: 0e:5f:fd:15:e4:8f:0e:05:c8:0b:54:17:92:c0:6a:8d:6c:66: 38:69:ff:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUxMTAzMDU0NTQ1WhcNMjUxMTEwMDU0NTQ1WjAYMRYwFAYD VQQDEw02OTA4NDE4OS1iYzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zrP48eh1LzD16yGCv57Xm7DN47Qj1p9tgG6NmDxqTPHDMO78n4HAmKcDRRf v+XKZj1Q/v5YSr4dSRpd+HIGz5iAlwyOuuqbG3M/I8307hUEKzN+Yt7/V1TNxDQN I8AzjEqPrs3L3PSfFSgjr+qIpVjqQSR3IwAtrKK3WnBR2Cdpo2Cm46V6NRabMSdQ +Gxi/nTXUztVQNJ/s8WYStJKE1jyZVVDsogyjKQBWOU4GFwOyVFCOo8O0gSv1cLL +rneyfoZfTYJn08XWFFqh2EBf319ZA2BLeIh2yCdHneaqLFbklyVZiBa3Umd4SRT EAkBjw4SPGbjcoHPrwS04KPHewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4colXF TemKOBSZhgJ/JG7jdWVTMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY70okqiemh1Dkykez/YxuZHomnGXlU+zPai+YRyGUJEG2UbVhDFKx 4bg68FRl2sF02sIR9PHuU0M1zf4Z8nQClvX2rhRH8mMIl9CAiunPyg1wh/4UwmHI hgeG+bWC9Sdux8FGg0ExqvJT7qj/RKOUgNdgBtahFPGSEB4Ky60dL2fQyY4YnNpz BLZYbPNCNc6YQef7+p8fdFRV7dv/4XKncFXjms5X4h0V9V4JEXMGynmRBzpVzt/p Adv9Iyd2vJUMui6Y816TLRSFIMGqaQxBze2I29NZzEx7diU9MiyCjT45jpKgxmuv TOMOX/0V5I8OBcgLVBeSwGqNbGY4af8l -----END CERTIFICATE-----Generated at Wed Nov 5 01:01:01 2025 by rpki-client