$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: pfUmHoDISALf7ueJWjpPFRqf58egnsYENIShIzG8q64= Subject key identifier: F4:06:BA:C4:77:92:22:AC:5B:9C:29:AC:2E:1D:04:22:89:38:FC:86 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 5D Signing time: Sat 19 Jul 2025 07:25:29 +0000 Manifest this update: Sat 19 Jul 2025 07:25:28 +0000 Manifest next update: Sat 26 Jul 2025 07:25:28 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: yHFKKKminJFAgvQB2bIqq+4X7LXDi8m8bkDDLxMsNzE=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Jul 19 07:25:28 2025 GMT Not After : Jul 26 07:25:28 2025 GMT Subject: CN=687b4868-73e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:c3:1a:4f:c0:fe:ce:c2:cb:63:c3:f6:b6: f2:90:31:15:3e:39:bc:d7:4d:45:99:f8:87:a3:59: 13:14:07:73:7f:92:5a:4f:87:2f:9e:bd:7f:c9:9b: 2d:2f:0a:be:09:dd:90:b7:a8:1e:cf:3e:d8:5c:e1: 28:7f:ef:61:62:13:d2:55:f3:3c:47:1d:96:55:aa: 22:3f:79:dd:2f:a5:be:54:a2:af:03:34:7a:57:db: fd:c1:f2:2c:56:2e:57:c4:0b:bd:b8:ac:06:6c:71: 34:91:17:68:d5:f3:a3:15:fb:4f:64:b4:56:51:0a: c5:6d:04:a1:00:60:18:54:e6:14:7e:2d:e6:81:0a: 44:b9:8c:0e:36:22:5b:91:35:f5:2c:bc:e5:e7:af: b5:e2:47:25:61:ce:36:cb:d9:d1:88:5d:3b:56:ef: ad:dc:cb:d3:94:18:4e:06:fb:2a:c4:84:1c:22:47: e7:7b:3c:79:a5:e0:ba:07:d6:ec:b7:6a:f7:44:e4: 2d:dc:e7:01:24:a5:07:98:7f:e2:1e:fb:61:17:ae: 88:73:f4:20:96:48:bd:ca:25:6a:bb:9a:fe:a7:24: a9:4e:01:98:27:bf:f8:9a:1c:78:0c:77:9f:c7:17: 98:01:a8:62:8e:aa:fc:73:a5:f9:8a:c3:85:57:6d: 0b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:06:BA:C4:77:92:22:AC:5B:9C:29:AC:2E:1D:04:22:89:38:FC:86 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:2b:d7:e4:ae:1b:df:9e:55:52:a7:0b:cb:40:69:f7:18:92: bd:72:b9:cf:e8:2e:50:6e:b7:68:43:1a:7f:bc:00:f5:04:23: 8c:b8:eb:a3:61:96:3a:4e:d9:92:ec:d3:49:f7:c6:c4:5c:4c: 69:7d:44:f4:42:27:61:b0:6a:39:55:06:4d:f0:3c:cf:43:72: 62:fa:b9:80:38:df:34:2c:f9:1f:2d:01:ee:a6:9c:22:f9:ee: b1:cd:d8:4d:18:61:2b:2b:17:90:17:6f:08:86:10:00:3c:a4: 92:52:53:c0:db:8c:3e:17:c6:b9:b8:31:25:5e:c9:55:a9:ba: 6a:78:e7:12:00:70:0f:82:79:39:01:0f:9e:66:87:2a:1d:75: 6d:52:b4:f3:07:7c:91:5e:83:a5:6a:37:1f:87:66:2f:c3:e3: d3:87:c3:00:8a:ed:8e:65:1d:b4:fc:2a:84:e5:b7:0b:a1:c3: 64:a8:d8:ce:e1:bd:75:1d:e7:77:37:4f:06:99:de:79:82:ab: 70:62:ad:d2:46:78:d1:08:2c:93:d9:2b:e7:79:4d:65:ae:e3: c5:56:53:26:62:4f:19:8d:d0:d2:77:1b:d3:33:c8:9b:ca:69: 94:b6:d7:a7:49:98:c8:fb:7a:84:65:62:2a:51:8b:e7:95:ae: 05:ff:7d:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA3MTkwNzI1MjhaFw0yNTA3MjYwNzI1MjhaMBgxFjAUBgNV BAMTDTY4N2I0ODY4LTczZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmW8MaT8D+zsLLY8P2tvKQMRU+ObzXTUWZ+IejWRMUB3N/klpPhy+evX/Jmy0v Cr4J3ZC3qB7PPthc4Sh/72FiE9JV8zxHHZZVqiI/ed0vpb5Uoq8DNHpX2/3B8ixW LlfEC724rAZscTSRF2jV86MV+09ktFZRCsVtBKEAYBhU5hR+LeaBCkS5jA42IluR NfUsvOXnr7XiRyVhzjbL2dGIXTtW763cy9OUGE4G+yrEhBwiR+d7PHml4LoH1uy3 avdE5C3c5wEkpQeYf+Ie+2EXrohz9CCWSL3KJWq7mv6nJKlOAZgnv/iaHHgMd5/H F5gBqGKOqvxzpfmKw4VXbQsJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9Aa6xHeS IqxbnCmsLh0EIok4/IYwHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH8r1+SuG9+eVVKnC8tAafcYkr1yuc/oLlBut2hDGn+8APUEI4y466Nh ljpO2ZLs00n3xsRcTGl9RPRCJ2GwajlVBk3wPM9DcmL6uYA43zQs+R8tAe6mnCL5 7rHN2E0YYSsrF5AXbwiGEAA8pJJSU8DbjD4Xxrm4MSVeyVWpump45xIAcA+CeTkB D55mhyoddW1StPMHfJFeg6VqNx+HZi/D49OHwwCK7Y5lHbT8KoTltwuhw2So2M7h vXUd53c3TwaZ3nmCq3BirdJGeNEILJPZK+d5TWWu48VWUyZiTxmN0NJ3G9MzyJvK aZS216dJmMj7eoRlYipRi+eVrgX/fcc= -----END CERTIFICATE-----Generated at Sat Jul 19 21:19:39 2025 by rpki-client