$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: t+X52zdBdK16UgHu45rbMciMwsxRfWOaoH0npl0vpTg= Subject key identifier: 3F:BE:93:82:8B:C4:38:F8:03:8B:1C:75:E5:6E:96:D6:25:5E:86:EE Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 45 Signing time: Sun 01 Jun 2025 07:11:47 +0000 Manifest this update: Sun 01 Jun 2025 07:11:47 +0000 Manifest next update: Sun 08 Jun 2025 07:11:47 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: eyHGrjovray/qsqBJZth9WGDXrT+u/PjP3g0L1Nzkjk=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Jun 1 07:11:47 2025 GMT Not After : Jun 8 07:11:47 2025 GMT Subject: CN=683bfd33-c486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:46:c2:0c:95:0b:6a:b9:ee:4d:b5:c5:38: 2a:cb:58:a5:03:5d:25:4b:13:e3:e9:e1:28:26:3a: 49:e6:68:10:58:e7:7a:99:b1:d8:4f:f0:3a:30:a1: 64:35:30:3d:e0:5b:9b:2b:60:44:f6:b4:98:08:6b: 48:48:62:67:a7:e2:6a:37:04:66:c2:c5:24:98:6f: 32:8d:83:e7:8b:ce:fa:19:85:48:8a:b3:98:8e:cf: 42:78:85:e0:a8:e5:e6:ad:8d:e6:46:4d:9a:63:33: e9:3a:36:7f:ac:28:f0:a7:68:22:24:3d:c6:e4:5e: 2b:7e:95:34:39:b1:8b:80:fe:cf:d1:9f:55:db:9d: 15:a4:63:ed:c4:f5:38:0b:65:d4:95:e8:1e:54:b0: 0a:da:e9:af:f2:fb:a3:cd:f7:3a:dc:0f:00:ce:10: 69:18:cb:0a:a6:bb:e5:59:0a:dc:60:b1:5f:ea:0d: 23:e4:45:c2:6b:92:4f:1e:c7:26:b4:c8:07:26:ec: 01:7d:55:64:86:2e:24:8b:3f:59:3c:80:34:69:95: 0c:f7:d8:49:2a:ca:00:3e:88:66:7f:df:d8:87:45: 57:09:9e:f1:b3:51:f9:33:3b:fd:e1:dc:d3:da:57: 5b:ec:9e:43:1f:c3:ae:79:4f:c7:00:c9:27:73:e0: 6c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BE:93:82:8B:C4:38:F8:03:8B:1C:75:E5:6E:96:D6:25:5E:86:EE X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:48:8d:63:8d:39:1d:30:00:3b:ce:fe:b6:aa:32:48:70:4b: 06:5f:04:82:0a:91:67:24:08:8e:9b:37:8d:a4:48:03:10:6b: e4:7e:f0:0b:f5:49:90:09:3a:d5:fa:d0:3d:73:10:2c:ed:4a: 07:67:e3:e9:62:3a:30:a8:94:7f:99:05:88:9c:79:1e:5e:b3: 9e:19:65:c0:4e:64:52:32:b3:9e:00:19:c7:cd:6a:6e:db:ce: 2f:b1:1b:ec:3a:de:64:15:07:ab:df:90:20:60:7e:4d:28:1e: ec:43:82:15:6f:12:00:fd:4b:08:4f:75:8d:a8:5e:b7:42:90: e2:7a:79:5a:41:05:0e:45:e9:9b:52:d3:64:a2:98:e6:cb:76: 63:e8:1a:de:33:4e:d8:36:8a:29:3b:a8:45:dd:14:c9:bc:12: 3c:c7:71:6e:e1:42:71:22:5e:28:57:be:74:a9:a9:ca:79:b0: 96:b7:2b:ad:d1:84:2b:7c:97:7f:21:9c:6f:93:d2:64:c1:1f: 18:61:c9:cf:f8:ac:d6:b6:fb:5a:f1:ce:47:ec:9c:4a:82:1f: 3b:e2:7e:49:cb:58:9b:1a:81:5f:9c:9f:08:b5:19:cb:b3:81: 2f:cd:17:e7:2f:1f:3d:13:94:3e:26:08:bd:90:a4:03:a4:81: 94:7a:61:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA2MDEwNzExNDdaFw0yNTA2MDgwNzExNDdaMBgxFjAUBgNV BAMTDTY4M2JmZDMzLWM0ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRkkbCDJULarnuTbXFOCrLWKUDXSVLE+Pp4SgmOknmaBBY53qZsdhP8DowoWQ1 MD3gW5srYET2tJgIa0hIYmen4mo3BGbCxSSYbzKNg+eLzvoZhUiKs5iOz0J4heCo 5eatjeZGTZpjM+k6Nn+sKPCnaCIkPcbkXit+lTQ5sYuA/s/Rn1XbnRWkY+3E9TgL ZdSV6B5UsAra6a/y+6PN9zrcDwDOEGkYywqmu+VZCtxgsV/qDSPkRcJrkk8exya0 yAcm7AF9VWSGLiSLP1k8gDRplQz32EkqygA+iGZ/39iHRVcJnvGzUfkzO/3h3NPa V1vsnkMfw655T8cAySdz4GwnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP76TgovE OPgDixx15W6W1iVehu4wHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANNIjWONOR0wADvO/raqMkhwSwZfBIIKkWckCI6bN42kSAMQa+R+8Av1 SZAJOtX60D1zECztSgdn4+liOjColH+ZBYiceR5es54ZZcBOZFIys54AGcfNam7b zi+xG+w63mQVB6vfkCBgfk0oHuxDghVvEgD9SwhPdY2oXrdCkOJ6eVpBBQ5F6ZtS 02SimObLdmPoGt4zTtg2iik7qEXdFMm8EjzHcW7hQnEiXihXvnSpqcp5sJa3K63R hCt8l38hnG+T0mTBHxhhyc/4rNa2+1rxzkfsnEqCHzvifknLWJsagV+cnwi1Gcuz gS/NF+cvHz0TlD4mCL2QpAOkgZR6YRg= -----END CERTIFICATE-----Generated at Mon Jun 2 20:50:10 2025 by rpki-client