$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: gvHjYhc5A0fkZYZ5BRIaj9DeUgvR5MPPiouD3y7DVGA= Subject key identifier: F1:D1:1D:25:F7:E1:DA:3D:2A:1A:2E:03:FA:9A:B0:89:75:A2:3A:83 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 76 Signing time: Fri 05 Sep 2025 07:21:29 +0000 Manifest this update: Fri 05 Sep 2025 07:21:28 +0000 Manifest next update: Fri 12 Sep 2025 07:21:28 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: b3/Awe3H4PokRjKQ6PC+jLhvTfoiv9XcKBrl+rIWuCs=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Sep 5 07:21:28 2025 GMT Not After : Sep 12 07:21:28 2025 GMT Subject: CN=68ba8f78-f6e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:18:60:52:b5:a7:ef:91:90:d0:64:a7:30: d2:1d:dd:86:ad:49:18:29:cf:1d:b7:2d:87:fa:87: 0b:b0:7a:6c:94:22:db:b9:f2:a8:f8:0c:16:08:5d: b7:66:12:e2:33:3b:54:ca:99:3b:97:5a:30:bd:8d: e3:1d:5e:75:d3:41:be:ed:b1:44:5e:19:eb:05:63: 50:74:72:ae:e9:e3:ab:ca:2c:33:15:15:4d:71:af: 4f:c8:8b:f0:b5:b1:ab:3c:10:6b:47:00:1a:b3:57: 59:ae:7a:14:6f:e2:f4:64:db:0e:7a:46:f7:11:b6: 42:3b:27:d6:2c:07:e2:08:11:06:a5:33:a7:b2:64: fd:90:11:c8:27:4c:1c:52:7e:76:ce:41:86:44:b2: ea:9d:d6:b8:9b:1d:f1:ca:7c:df:ea:4c:70:92:4c: e7:bf:6a:24:50:6e:e2:74:6f:13:33:47:9a:6f:1a: dc:6b:cd:1a:30:36:89:ba:f1:3f:74:63:8e:bf:6a: 8a:98:63:ed:1a:fc:b4:d5:c6:cf:2d:4b:63:06:ba: e5:51:1b:fb:11:79:0f:2d:12:0e:47:d9:55:1c:42: 55:3e:10:eb:a1:fb:68:87:72:f1:bd:1f:b3:c8:f9: 18:48:ce:9b:2e:2a:15:1a:f0:c7:be:f8:f9:4f:d5: 25:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D1:1D:25:F7:E1:DA:3D:2A:1A:2E:03:FA:9A:B0:89:75:A2:3A:83 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:cb:3a:60:18:96:cf:b9:86:0b:00:01:bf:d3:e0:d0:0e:f5: 68:7c:5b:b2:19:f9:72:80:e7:d9:d8:24:17:e9:d0:8d:e9:ee: 12:ea:d5:e1:73:d4:91:ba:bc:db:b8:92:54:07:e2:6f:11:2c: 5b:15:0e:e0:09:51:3a:c6:bd:5d:af:c1:ff:97:09:8e:1e:91: 7d:e3:de:e2:21:71:91:d5:c1:05:7a:4b:18:fc:f5:40:f1:a8: e6:d8:72:20:00:4a:89:d8:58:d4:2d:3d:db:ef:87:ba:e8:01: cd:0f:c8:d9:4e:5b:3a:17:60:c4:a0:84:10:2f:71:43:6b:48: 32:8b:b7:9d:3b:be:c4:d6:a3:d1:76:b2:27:12:a8:13:7a:31: 40:38:ff:03:4e:b9:cb:e7:89:8b:07:f6:6a:4e:3b:9d:d1:96: c1:f6:12:c5:6e:34:c4:f1:76:2e:8d:32:2e:18:7c:16:86:4d: d0:96:52:59:83:bd:cd:88:df:2c:a8:01:c8:12:b4:50:1b:8e: c4:a2:6c:a9:fa:5a:55:66:b3:ca:2a:31:ad:23:a2:60:67:cc: 63:c9:e7:49:57:d2:a7:fa:2d:66:ce:83:61:9f:89:03:f4:92: 77:6f:7d:55:6f:91:85:6a:ff:50:06:3a:c7:6d:61:f3:96:0d: 88:a0:66:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA5MDUwNzIxMjhaFw0yNTA5MTIwNzIxMjhaMBgxFjAUBgNV BAMTDTY4YmE4Zjc4LWY2ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI4BhgUrWn75GQ0GSnMNId3YatSRgpzx23LYf6hwuwemyUItu58qj4DBYIXbdm EuIzO1TKmTuXWjC9jeMdXnXTQb7tsUReGesFY1B0cq7p46vKLDMVFU1xr0/Ii/C1 sas8EGtHABqzV1muehRv4vRk2w56RvcRtkI7J9YsB+IIEQalM6eyZP2QEcgnTBxS fnbOQYZEsuqd1ribHfHKfN/qTHCSTOe/aiRQbuJ0bxMzR5pvGtxrzRowNom68T90 Y46/aoqYY+0a/LTVxs8tS2MGuuVRG/sReQ8tEg5H2VUcQlU+EOuh+2iHcvG9H7PI +RhIzpsuKhUa8Me++PlP1SVfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8dEdJffh 2j0qGi4D+pqwiXWiOoMwHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI/LOmAYls+5hgsAAb/T4NAO9Wh8W7IZ+XKA59nYJBfp0I3p7hLq1eFz 1JG6vNu4klQH4m8RLFsVDuAJUTrGvV2vwf+XCY4ekX3j3uIhcZHVwQV6Sxj89UDx qObYciAASonYWNQtPdvvh7roAc0PyNlOWzoXYMSghBAvcUNrSDKLt507vsTWo9F2 sicSqBN6MUA4/wNOucvniYsH9mpOO53RlsH2EsVuNMTxdi6NMi4YfBaGTdCWUlmD vc2I3yyoAcgStFAbjsSibKn6WlVms8oqMa0jomBnzGPJ50lX0qf6LWbOg2GfiQP0 kndvfVVvkYVq/1AGOsdtYfOWDYigZt0= -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:07 2025 by rpki-client