$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: WTR+toLikS7oD6oT8zzpzFCEsS+e37dt10XHf3q7RFc= Subject key identifier: EF:EB:B7:DB:8A:60:2C:90:66:5A:8D:DA:A4:43:46:34:ED:0A:22:0D Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 8A Signing time: Mon 03 Nov 2025 06:38:36 +0000 Manifest this update: Mon 03 Nov 2025 06:38:35 +0000 Manifest next update: Mon 10 Nov 2025 06:38:35 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: cGCbsmL+VZv3uXvImCPDdDkW5wcWWE91QaF63R7X3qg=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Nov 3 06:38:35 2025 GMT Not After : Nov 10 06:38:35 2025 GMT Subject: CN=69084dec-eef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ff:ba:cf:21:61:92:93:3f:a8:6b:0c:2d:a6: 51:6d:7b:85:92:18:78:46:23:83:85:8c:e2:33:ed: 3d:35:9e:9c:04:b4:f0:5c:b4:c1:0b:24:94:98:a1: a6:08:3b:76:27:d8:c5:a4:34:fb:ec:d9:a6:6b:5f: 45:a8:b6:8d:d2:df:b2:f1:cb:56:cf:76:40:af:95: 01:74:5d:56:c1:a9:eb:a8:bd:07:fc:8b:1b:d1:40: 87:20:f1:b4:4b:df:7f:8d:3a:06:96:cf:c8:e3:f1: 0f:ba:19:64:c0:55:c7:ad:78:60:c9:9f:2a:97:b3: f6:f9:85:c2:3c:93:23:b2:66:3a:e2:49:68:59:65: a4:28:bb:bf:f0:c2:b2:84:ef:1a:bf:c0:f3:48:c5: b3:c2:37:51:25:0a:66:fa:7a:e4:bc:ec:04:3c:f6: 75:b9:45:c5:6c:f3:15:ac:20:90:f8:5c:37:bd:46: 28:f3:bd:bc:14:ab:cf:0a:05:49:f1:e8:dc:d2:8b: 28:b8:3a:57:1c:a7:b5:fd:e7:27:f1:3d:0e:97:f8: 10:c7:a8:a1:98:b0:b7:2d:e6:22:96:2e:3d:d9:f4: 5c:78:6b:a5:a5:c3:3e:3c:52:52:bd:7c:87:57:38: b6:97:fe:16:5c:1a:f9:63:be:38:ab:72:df:12:7a: de:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:EB:B7:DB:8A:60:2C:90:66:5A:8D:DA:A4:43:46:34:ED:0A:22:0D X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:b2:1b:4b:f4:7a:3d:4b:7a:8e:fa:b3:e7:eb:79:1c:e2:9b: 67:1c:6b:c8:2b:07:37:f7:bd:77:1c:ff:06:ca:1b:c0:11:8c: ce:2c:c4:0e:47:0f:9d:6a:59:e1:ea:02:7e:da:34:ca:70:67: 62:37:f9:85:99:07:87:2f:04:6c:e6:76:22:27:5f:89:bf:9a: 81:20:88:7f:57:08:d9:b4:d2:16:ef:01:b2:40:bf:6c:dc:8e: e7:74:5c:72:d8:1a:e9:20:f5:59:92:29:2f:a8:4e:01:65:01: 33:e8:c7:3a:b3:7c:b4:0b:a4:a4:68:f0:52:c4:15:bf:ca:33: e8:39:eb:a8:33:f9:25:77:6f:16:8d:2a:8d:c8:31:7b:3d:f4: d8:0f:4c:88:14:67:aa:c8:88:33:63:e2:94:46:b2:98:90:f4: f0:32:f8:2e:e6:b1:d6:9d:bd:86:6a:14:d6:cd:18:0a:6f:59: ed:40:3a:67:9f:9e:af:79:69:6b:86:aa:e4:ff:ec:5b:79:c1: a9:83:d8:7c:a1:12:ed:00:88:2f:91:b3:dc:80:7c:fe:04:c1: 96:e6:66:bd:af:92:e1:7d:47:bf:2b:86:01:33:34:1d:40:39: 03:93:c5:13:ea:1e:45:ec:13:52:e3:d7:34:98:9d:0e:26:56: 08:bb:65:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjUxMTAzMDYzODM1WhcNMjUxMTEwMDYzODM1WjAYMRYwFAYD VQQDEw02OTA4NGRlYy1lZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/+6zyFhkpM/qGsMLaZRbXuFkhh4RiODhYziM+09NZ6cBLTwXLTBCySUmKGm CDt2J9jFpDT77Nmma19FqLaN0t+y8ctWz3ZAr5UBdF1WwanrqL0H/Isb0UCHIPG0 S99/jToGls/I4/EPuhlkwFXHrXhgyZ8ql7P2+YXCPJMjsmY64kloWWWkKLu/8MKy hO8av8DzSMWzwjdRJQpm+nrkvOwEPPZ1uUXFbPMVrCCQ+Fw3vUYo8728FKvPCgVJ 8ejc0osouDpXHKe1/ecn8T0Ol/gQx6ihmLC3LeYili492fRceGulpcM+PFJSvXyH Vzi2l/4WXBr5Y744q3LfEnreCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/rt9uK YCyQZlqN2qRDRjTtCiINMB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyshtL9Ho9S3qO+rPn63kc4ptnHGvIKwc39713HP8GyhvAEYzOLMQO Rw+dalnh6gJ+2jTKcGdiN/mFmQeHLwRs5nYiJ1+Jv5qBIIh/VwjZtNIW7wGyQL9s 3I7ndFxy2BrpIPVZkikvqE4BZQEz6Mc6s3y0C6SkaPBSxBW/yjPoOeuoM/kld28W jSqNyDF7PfTYD0yIFGeqyIgzY+KURrKYkPTwMvgu5rHWnb2GahTWzRgKb1ntQDpn n56veWlrhqrk/+xbecGpg9h8oRLtAIgvkbPcgHz+BMGW5ma9r5LhfUe/K4YBMzQd QDkDk8UT6h5F7BNS49c0mJ0OJlYIu2Up -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:38 2025 by rpki-client