$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: cxoJikrkFQVbNpuln/zIdZt4NFDuQKFSIUTZUoBK+Ms= Subject key identifier: BC:DA:CC:D0:32:3C:40:1D:4F:C1:3A:9E:DF:93:17:CC:43:E2:F1:36 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 5E Signing time: Mon 21 Jul 2025 07:21:23 +0000 Manifest this update: Mon 21 Jul 2025 07:21:23 +0000 Manifest next update: Mon 28 Jul 2025 07:21:23 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: WbzxxmApAOekXC/+aA32CIx1A128K6DTWPWFT95msZw=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Jul 21 07:21:23 2025 GMT Not After : Jul 28 07:21:23 2025 GMT Subject: CN=687dea73-856f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e5:b0:d8:be:b8:7d:46:96:35:f9:39:1e:3c: f3:da:0c:28:e2:59:47:c1:69:2e:29:7d:a5:cc:94: 73:6b:16:f3:dc:82:e5:86:06:ac:8a:81:de:0a:ec: 77:40:ae:c0:77:bc:c5:77:6a:36:3a:8d:f5:81:9c: 07:eb:42:24:67:d1:7f:56:be:fa:3e:8b:d5:26:96: 1c:17:96:92:90:5e:f8:a5:c8:b2:c3:18:0e:13:bf: bd:e8:77:b8:33:8c:3b:9a:18:c3:42:15:a7:b4:c7: 73:2a:09:81:91:e3:3d:6d:e8:8c:99:a1:f2:4b:94: 19:97:a9:91:32:14:d2:ab:a6:35:09:86:15:0f:99: 53:39:0a:cd:af:9c:89:c2:8c:00:ae:3e:01:f1:14: 62:13:cc:52:39:a4:e9:15:90:01:cb:e7:08:c7:24: 62:75:92:38:dd:2a:07:9d:15:01:c4:66:ad:e8:5f: 19:0b:cc:b2:f0:10:2a:2c:8f:48:82:84:61:1d:b1: bb:53:6f:ba:d8:ff:55:b5:00:76:61:6c:28:97:40: 53:71:1f:23:0f:d3:17:19:4f:43:c3:a9:ab:53:a3: aa:7e:2a:ae:a5:89:a8:59:be:40:89:ba:a7:41:d6: b4:2d:b8:13:0e:d2:d1:91:ca:53:7f:d1:1c:2b:0a: 8e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DA:CC:D0:32:3C:40:1D:4F:C1:3A:9E:DF:93:17:CC:43:E2:F1:36 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:b4:4a:86:07:98:c7:f6:b8:dd:74:41:67:a6:54:cd:9b:ad: 52:06:86:78:17:60:ac:02:84:ff:22:41:51:9f:12:e9:f5:a8: 2b:5c:20:97:c4:1e:c0:93:5b:5d:c8:fa:2b:95:45:36:68:8b: 6f:3d:1f:9b:62:9b:e0:c5:eb:6b:44:a3:d7:31:eb:f0:6b:e5: c8:48:d7:de:7f:38:b2:7e:4b:75:aa:0c:5f:54:e7:13:17:c4: c7:5e:fa:23:68:52:20:55:4a:54:23:e8:e8:45:e2:6a:87:5c: 2d:14:de:e7:8f:8f:89:94:ae:ec:ee:93:7f:89:2c:0f:9e:e0: 97:65:8b:5d:2d:2e:fd:06:fe:57:ad:c3:3d:5e:16:72:9f:eb: 54:bc:d5:2b:16:af:99:f7:87:31:e5:e2:8f:46:00:75:17:d3: 35:f6:d3:ae:1b:ea:d0:65:25:6b:5a:4a:8f:7c:95:9c:bb:de: 68:80:7b:0f:dc:ee:70:4c:96:3f:a0:63:ab:91:49:12:3c:20: 23:d3:3e:54:36:c5:ae:05:7e:72:89:c2:e1:e8:3a:f0:d8:34: fd:a7:2f:20:71:2d:71:cd:2f:01:08:02:43:d8:fc:ce:fb:d8: 09:f6:74:aa:83:eb:41:1d:4b:7c:0f:9a:85:2c:8c:a1:5f:bd: 7d:f0:5b:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA3MjEwNzIxMjNaFw0yNTA3MjgwNzIxMjNaMBgxFjAUBgNV BAMTDTY4N2RlYTczLTg1NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi5bDYvrh9RpY1+TkePPPaDCjiWUfBaS4pfaXMlHNrFvPcguWGBqyKgd4K7HdA rsB3vMV3ajY6jfWBnAfrQiRn0X9Wvvo+i9UmlhwXlpKQXvilyLLDGA4Tv73od7gz jDuaGMNCFae0x3MqCYGR4z1t6IyZofJLlBmXqZEyFNKrpjUJhhUPmVM5Cs2vnInC jACuPgHxFGITzFI5pOkVkAHL5wjHJGJ1kjjdKgedFQHEZq3oXxkLzLLwECosj0iC hGEdsbtTb7rY/1W1AHZhbCiXQFNxHyMP0xcZT0PDqatTo6p+Kq6liahZvkCJuqdB 1rQtuBMO0tGRylN/0RwrCo6pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvNrM0DI8 QB1PwTqe35MXzEPi8TYwHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALy0SoYHmMf2uN10QWemVM2brVIGhngXYKwChP8iQVGfEun1qCtcIJfE HsCTW13I+iuVRTZoi289H5tim+DF62tEo9cx6/Br5chI195/OLJ+S3WqDF9U5xMX xMde+iNoUiBVSlQj6OhF4mqHXC0U3uePj4mUruzuk3+JLA+e4Jdli10tLv0G/let wz1eFnKf61S81SsWr5n3hzHl4o9GAHUX0zX2064b6tBlJWtaSo98lZy73miAew/c 7nBMlj+gY6uRSRI8ICPTPlQ2xa4FfnKJwuHoOvDYNP2nLyBxLXHNLwEIAkPY/M77 2An2dKqD60EdS3wPmoUsjKFfvX3wW7E= -----END CERTIFICATE-----Generated at Mon Jul 21 18:29:05 2025 by rpki-client