$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: CsMDJJbj9UcDSGyztiWkjRonMQMAraInMTzV+/CzWSE= Subject key identifier: C0:CA:F9:07:AF:68:13:45:43:35:75:9B:64:4B:DF:69:DB:63:FF:C8 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 8D Signing time: Thu 23 Oct 2025 08:41:54 +0000 Manifest this update: Thu 23 Oct 2025 08:41:54 +0000 Manifest next update: Thu 30 Oct 2025 08:41:54 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: XfIrlcR9tIy5Vmg6Wwzz72qu5PvRGb5+pE6nWJ61mTA=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Oct 23 08:41:54 2025 GMT Not After : Oct 30 08:41:54 2025 GMT Subject: CN=68f9ea52-eb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:fd:98:77:85:48:08:a2:fb:9d:01:2d:9b: e5:10:21:30:1a:d7:8d:5b:6d:88:8b:e2:00:c7:d3: da:1c:5b:de:85:72:ef:46:07:f8:d9:b9:71:ce:87: 67:61:54:08:b7:03:47:fa:97:06:d5:06:b9:09:5b: ae:48:64:bb:47:03:64:0d:68:11:e6:83:ec:6f:52: 1f:61:c3:ed:91:26:18:7c:df:ac:95:e4:8e:9f:3d: 11:61:45:0a:26:31:ad:b1:bf:24:1e:f3:3c:7b:d1: 4e:da:19:98:be:22:9a:eb:5b:f6:57:96:99:54:49: 0e:e9:3d:93:d3:71:a2:60:64:d7:05:36:bd:47:2c: 2a:31:96:cb:9d:ed:92:27:34:d8:0e:97:b8:ec:6b: 90:80:c7:32:1b:5f:25:9b:03:06:b5:c5:bd:00:48: 0a:51:f2:09:5c:f0:bb:24:77:9d:46:f9:56:19:48: e7:22:7e:c5:6a:a2:8e:07:e1:af:21:45:c7:20:ee: d5:5a:46:dc:61:30:d5:29:70:8b:f0:cd:5a:68:d7: a6:b9:ef:3e:cf:b2:90:6b:03:ba:9a:b6:4d:c4:a0: 64:e7:f3:5e:ec:73:7d:91:a9:5d:ba:21:43:aa:2b: 31:b9:e9:c4:66:8c:64:c2:b5:a0:47:7d:e6:f3:70: 59:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CA:F9:07:AF:68:13:45:43:35:75:9B:64:4B:DF:69:DB:63:FF:C8 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e1:af:4e:fd:00:9f:5c:d6:17:00:f8:2f:5a:74:5c:5a:0c: 80:9d:bd:14:c7:a1:c9:99:fa:3c:05:d4:e2:f1:93:b1:9c:2d: eb:1d:4c:5f:c0:30:91:cb:ed:4d:e3:62:a6:35:6a:b0:35:aa: 13:e4:92:b3:f4:00:17:2c:e2:15:64:4f:a8:45:91:17:31:92: fd:6b:44:23:fd:28:ea:6a:7b:5a:9e:95:98:6e:47:ff:a9:63: e2:9d:19:cc:80:a3:35:20:30:31:53:42:7c:bd:5b:61:9f:74: 6d:5a:de:bd:e1:a3:43:38:3e:2e:50:94:9c:b6:ab:9b:42:78: 12:a5:e9:83:ce:3d:79:b0:1d:d5:b8:5f:47:49:97:b8:a2:84: 9e:42:c0:71:a2:5f:c9:0f:90:a2:fd:3f:ea:76:16:a9:a0:c0: 46:ab:d1:08:13:57:d7:8a:77:e6:bd:54:07:96:c0:9f:86:9f: c1:01:39:8f:d2:3e:e1:19:f1:fc:6c:07:c1:95:74:1c:62:5c: c6:8b:82:a4:20:58:2c:60:a6:ea:b8:74:9a:4b:0a:2f:38:31: a7:cc:fc:73:1d:d7:c8:9b:11:85:c8:df:d6:8a:73:d9:71:8d: 32:32:a4:9b:69:b3:4c:21:c1:1e:65:34:b5:bb:ee:11:81:6b: ee:55:7d:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDM2MUZBREEyRTBBODhDRjI4N0Y0Q0U2Q0MzQjQ0NjJD OTEzMzBCRkMwHhcNMjUxMDIzMDg0MTU0WhcNMjUxMDMwMDg0MTU0WjAYMRYwFAYD VQQDEw02OGY5ZWE1Mi1lYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwr9mHeFSAii+50BLZvlECEwGteNW22Ii+IAx9PaHFvehXLvRgf42blxzodn YVQItwNH+pcG1Qa5CVuuSGS7RwNkDWgR5oPsb1IfYcPtkSYYfN+sleSOnz0RYUUK JjGtsb8kHvM8e9FO2hmYviKa61v2V5aZVEkO6T2T03GiYGTXBTa9RywqMZbLne2S JzTYDpe47GuQgMcyG18lmwMGtcW9AEgKUfIJXPC7JHedRvlWGUjnIn7FaqKOB+Gv IUXHIO7VWkbcYTDVKXCL8M1aaNemue8+z7KQawO6mrZNxKBk5/Ne7HN9kalduiFD qisxuenEZoxkwrWgR33m83BZ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDK+Qev aBNFQzV1m2RL32nbY//IMB8GA1UdIwQYMBaAFDYfraLgqIzyh/TObMO0RiyRMwv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xNEE3OEYyQ0RG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQS0g5TTVzdzdSR0xKRXpD X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xNEE3OEYyQ0RGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQ S0g5TTVzdzdSR0xKRXpDX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE4a9O/QCfXNYXAPgvWnRcWgyAnb0Ux6HJmfo8BdTi8ZOxnC3rHUxf wDCRy+1N42KmNWqwNaoT5JKz9AAXLOIVZE+oRZEXMZL9a0Qj/SjqantanpWYbkf/ qWPinRnMgKM1IDAxU0J8vVthn3RtWt694aNDOD4uUJSctqubQngSpemDzj15sB3V uF9HSZe4ooSeQsBxol/JD5Ci/T/qdhapoMBGq9EIE1fXinfmvVQHlsCfhp/BATmP 0j7hGfH8bAfBlXQcYlzGi4KkIFgsYKbquHSaSwovODGnzPxzHdfImxGFyN/WinPZ cY0yMqSbabNMIcEeZTS1u+4RgWvuVX0s -----END CERTIFICATE-----Generated at Fri Oct 24 08:09:42 2025 by rpki-client