$ rpki-client -vvf rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft File: Nocz_cVgxeuJ5FJA331AOcsvYQg.mft (raw, json) Hash identifier: KcxHskTJXJRNDXanPmSQ//km8HTnuIxqPxaxzzTTfq0= Subject key identifier: 5D:DB:41:68:51:D4:9B:CC:CE:36:D1:B9:6B:4F:B7:E7:AA:6D:7A:74 Authority key identifier: 36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 Certificate issuer: /CN=A91C97F5/serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Certificate serial: 028E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft Manifest number: 0288 Signing time: Mon 03 Nov 2025 02:39:17 +0000 Manifest this update: Mon 03 Nov 2025 02:39:16 +0000 Manifest next update: Mon 10 Nov 2025 02:39:16 +0000 Files and hashes: 1: Nocz_cVgxeuJ5FJA331AOcsvYQg.crl (hash: 7M32Un4aZgcw2sB1fK4fPW7B7Y2UXr1l5awVQNfajzg=) 2: 48B639C8B85E11F0B0F0B01CC4F9AE02.roa (hash: 7WPqwG1SjXeSVpDuyJqejWY1jhEBBefx5pu/jvpGXtc=) 3: 020D49E0283211ED9E29FA70C4F9AE02.roa (hash: LQxrSI0KNNYbihu8S9SLx+zDE07D+HfcizadCn96Tg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C97F5, serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Validity Not Before: Nov 3 02:39:16 2025 GMT Not After : Nov 10 02:39:16 2025 GMT Subject: CN=690815d4-cb6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:08:3f:33:52:ce:9c:2b:fc:a5:3d:9f:b6:a3: a2:14:bd:42:61:78:a2:ff:9d:4e:ac:b7:ba:06:09: f4:f7:39:c8:de:27:5e:e2:2d:ec:bd:b5:43:ed:59: 73:9d:5a:0d:32:ff:42:28:22:36:0c:72:76:fc:8d: ce:da:eb:00:22:26:b7:af:55:96:ce:69:93:fb:47: e6:d7:ef:49:b3:23:5f:6c:7a:94:db:f8:6f:00:3c: 63:77:35:17:21:f5:42:52:31:24:b8:63:cb:f3:e1: 0a:52:ad:4a:89:0c:df:8a:d8:81:e8:cc:49:a8:80: 18:f8:5f:5a:07:9e:3f:a3:b1:ca:0a:54:4d:c9:96: 58:89:d8:8f:85:3c:3d:a6:26:a5:82:fd:65:d1:52: 2e:36:72:c6:16:f1:bf:6c:81:b0:06:bd:4e:15:78: 5e:fc:c7:4d:f2:9c:de:dd:f1:22:62:05:5a:51:8d: 14:34:08:2f:b8:c8:b4:9c:8f:5a:38:af:77:c0:19: 1f:ed:31:b6:cd:32:2c:11:6b:dc:a8:4d:84:d7:cd: aa:b3:10:28:e5:05:a1:26:9f:47:22:ec:df:50:f5: 23:28:e6:21:fc:75:18:e1:b5:a2:c8:c5:1e:08:29: 45:15:a1:9a:4c:45:4f:b5:0c:f7:7a:a7:fc:db:43: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DB:41:68:51:D4:9B:CC:CE:36:D1:B9:6B:4F:B7:E7:AA:6D:7A:74 X509v3 Authority Key Identifier: keyid:36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:33:7a:0a:1c:13:7a:6b:20:8b:9c:88:94:3d:15:7e:dd:0d: 3e:d0:74:99:08:52:ac:7d:33:78:66:5f:5f:54:31:2f:39:40: c8:9d:f2:9f:51:4c:fc:35:6e:fe:10:ea:d1:bf:20:b3:97:18: 9b:17:29:03:9c:3d:32:5e:1b:7e:1d:3d:ec:fe:83:b7:94:05: 5e:d7:f8:6a:b2:d3:e2:40:1b:36:48:fb:16:5b:49:d9:7b:95: 6e:ad:bd:e3:72:c6:93:c4:5c:6d:62:b2:db:75:96:28:bf:e0: 8e:44:16:e1:5c:ac:a9:d9:8f:62:bd:0a:b5:e1:90:0c:7a:ff: 49:43:68:69:ca:0a:0d:93:80:5e:66:9c:2d:19:06:0f:73:fe: 08:20:e8:7c:64:68:7c:71:96:d2:21:0a:31:ec:68:d5:e5:70: 9b:af:a4:05:f4:a6:55:55:11:9d:53:09:94:83:5c:f5:28:3e: 2d:0f:d1:8c:db:34:d4:61:55:0f:fa:22:72:40:f8:e9:44:45: e9:a3:e2:ab:f7:ca:c2:26:ce:12:34:a5:c9:a5:09:d4:46:9a: 4d:8f:5b:18:28:3d:6d:fd:05:b0:ba:3f:0a:ff:52:04:96:aa: 2e:b7:b5:b8:db:29:fc:e8:2c:2b:af:4a:f1:46:86:94:ae:87: d3:da:2f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3RjUxMTAvBgNVBAUTKDM2ODczM0ZEQzU2MEM1RUI4OUU0NTI0MERGN0Q0MDM5 Q0IyRjYxMDgwHhcNMjUxMTAzMDIzOTE2WhcNMjUxMTEwMDIzOTE2WjAYMRYwFAYD VQQDEw02OTA4MTVkNC1jYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywg/M1LOnCv8pT2ftqOiFL1CYXii/51OrLe6Bgn09znI3ide4i3svbVD7Vlz nVoNMv9CKCI2DHJ2/I3O2usAIia3r1WWzmmT+0fm1+9JsyNfbHqU2/hvADxjdzUX IfVCUjEkuGPL8+EKUq1KiQzfitiB6MxJqIAY+F9aB54/o7HKClRNyZZYidiPhTw9 pialgv1l0VIuNnLGFvG/bIGwBr1OFXhe/MdN8pze3fEiYgVaUY0UNAgvuMi0nI9a OK93wBkf7TG2zTIsEWvcqE2E182qsxAo5QWhJp9HIuzfUPUjKOYh/HUY4bWiyMUe CClFFaGaTEVPtQz3eqf820OQ3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3bQWhR 1JvMzjbRuWtPt+eqbXp0MB8GA1UdIwQYMBaAFDaHM/3FYMXrieRSQN99QDnLL2EI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTdGNS85MTcwQzQyQTI3 NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hldUo1RkpBMzMxQU9jc3ZZ UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05vY3pfY1ZneGV1SjVGSkEzMzFBT2NzdllRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTdGNS85MTcwQzQyQTI3NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hl dUo1RkpBMzMxQU9jc3ZZUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcM3oKHBN6ayCLnIiUPRV+3Q0+0HSZCFKsfTN4Zl9fVDEvOUDInfKf UUz8NW7+EOrRvyCzlxibFykDnD0yXht+HT3s/oO3lAVe1/hqstPiQBs2SPsWW0nZ e5Vurb3jcsaTxFxtYrLbdZYov+CORBbhXKyp2Y9ivQq14ZAMev9JQ2hpygoNk4Be ZpwtGQYPc/4IIOh8ZGh8cZbSIQox7GjV5XCbr6QF9KZVVRGdUwmUg1z1KD4tD9GM 2zTUYVUP+iJyQPjpREXpo+Kr98rCJs4SNKXJpQnURppNj1sYKD1t/QWwuj8K/1IE lqout7W42yn86Cwrr0rxRoaUrofT2i82 -----END CERTIFICATE-----Generated at Tue Nov 4 12:48:15 2025 by rpki-client