$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: FNiE/j+GV9VR2XU/KCnEAtSEo+Tzx2u5RtfhuTOedEE= Subject key identifier: 9D:3D:24:B8:40:2D:AF:A0:D7:41:BA:5C:DC:5F:03:F8:77:9A:57:CB Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0155 Signing time: Mon 03 Nov 2025 04:13:15 +0000 Manifest this update: Mon 03 Nov 2025 04:13:15 +0000 Manifest next update: Mon 10 Nov 2025 04:13:14 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: Rf/G/fH4Tsokc4iARoueJDJbk/+aWpswoa5yl2k2Aiw=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Nov 3 04:13:15 2025 GMT Not After : Nov 10 04:13:14 2025 GMT Subject: CN=69082bdb-4c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:47:09:e9:14:73:66:3f:b4:51:c5:a4:26:84: eb:5d:88:9a:1c:c8:70:dd:b6:93:ac:8e:f4:b5:22: a2:e9:bd:48:c9:24:84:1e:f0:07:86:7e:3d:18:e1: b4:31:73:13:74:9a:1c:52:2f:ec:72:04:fb:88:fb: 29:cf:8c:a8:7b:0c:ad:1f:c9:8e:b6:16:0f:ef:b5: f4:f7:7f:8f:6c:8b:c0:b3:5a:b1:d5:db:73:e6:88: d1:3b:de:09:c9:d7:2a:af:38:b9:81:0c:d8:97:10: 45:98:2c:4a:5d:1d:ea:36:9d:8a:e5:4c:45:25:aa: f5:a4:44:5e:db:e3:0b:3e:b2:fb:b1:f4:26:b6:49: 59:96:d1:5c:3a:82:57:10:80:59:65:20:dc:67:b8: 1e:e9:3e:81:49:49:b1:8a:fa:d2:a3:a8:55:63:6a: 73:02:0c:81:75:0e:24:83:b4:d2:50:a7:67:87:82: 49:78:b1:52:e5:ac:0e:d6:83:c6:f5:a8:e4:be:28: 0e:d5:e1:85:08:8f:c7:c4:ac:23:4a:c2:4b:a8:34: 92:0a:0e:50:5f:72:be:a3:08:2d:d0:33:27:14:df: 9a:eb:b9:e6:c0:fa:1d:50:22:6f:60:e0:b3:5d:9d: b7:59:09:8a:96:5d:b1:57:fd:e8:38:b7:bd:aa:f3: 93:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3D:24:B8:40:2D:AF:A0:D7:41:BA:5C:DC:5F:03:F8:77:9A:57:CB X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:5b:76:80:bc:03:30:c3:48:eb:3f:9d:46:0a:ff:c5:4e:ed: 8c:56:8e:b8:11:ba:c7:43:bd:7b:de:0e:bf:99:04:ff:4a:c8: dd:56:fa:9b:46:48:27:8b:d5:1d:94:f0:2a:26:29:5f:bb:77: 37:9a:2a:9c:a3:4f:b7:22:ee:8f:66:5d:e4:db:e2:20:ec:03: ba:14:f2:bb:8d:54:44:90:9c:41:f8:a1:25:3e:77:d0:5f:54: f2:41:e9:08:d6:8b:26:b1:45:4e:fb:47:4c:fd:2e:ed:0e:95: 36:51:ff:32:bc:eb:f6:b0:eb:54:34:bc:6a:33:a0:3e:5e:6b: 0b:ba:7c:48:38:d0:7f:bf:3f:ba:7c:51:e5:88:f6:f1:b7:2d: a1:40:e4:b1:fc:fe:7b:b1:d0:4b:d7:74:73:7b:76:0f:5c:8c: 58:66:69:88:20:2a:34:83:46:3e:48:3d:c1:70:03:b0:1e:e4: a3:9e:a5:b1:55:88:52:20:89:d2:b0:22:8e:f2:80:55:eb:63: f8:dd:47:f4:fd:68:d2:84:2e:76:5f:a2:21:8f:f9:cb:06:b3: ab:52:36:2c:59:73:79:09:4d:56:cb:7f:02:f9:55:d8:48:22: d0:25:45:79:57:38:62:52:d5:11:6d:59:15:13:9d:c0:24:92: bf:55:65:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUxMTAzMDQxMzE1WhcNMjUxMTEwMDQxMzE0WjAYMRYwFAYD VQQDEw02OTA4MmJkYi00YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUcJ6RRzZj+0UcWkJoTrXYiaHMhw3baTrI70tSKi6b1IySSEHvAHhn49GOG0 MXMTdJocUi/scgT7iPspz4yoewytH8mOthYP77X093+PbIvAs1qx1dtz5ojRO94J ydcqrzi5gQzYlxBFmCxKXR3qNp2K5UxFJar1pERe2+MLPrL7sfQmtklZltFcOoJX EIBZZSDcZ7ge6T6BSUmxivrSo6hVY2pzAgyBdQ4kg7TSUKdnh4JJeLFS5awO1oPG 9ajkvigO1eGFCI/HxKwjSsJLqDSSCg5QX3K+owgt0DMnFN+a67nmwPodUCJvYOCz XZ23WQmKll2xV/3oOLe9qvOT7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ09JLhA La+g10G6XNxfA/h3mlfLMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMW3aAvAMww0jrP51GCv/FTu2MVo64EbrHQ7173g6/mQT/SsjdVvqb Rkgni9UdlPAqJilfu3c3miqco0+3Iu6PZl3k2+Ig7AO6FPK7jVREkJxB+KElPnfQ X1TyQekI1osmsUVO+0dM/S7tDpU2Uf8yvOv2sOtUNLxqM6A+XmsLunxIONB/vz+6 fFHliPbxty2hQOSx/P57sdBL13Rze3YPXIxYZmmIICo0g0Y+SD3BcAOwHuSjnqWx VYhSIInSsCKO8oBV62P43Uf0/WjShC52X6Ihj/nLBrOrUjYsWXN5CU1Wy38C+VXY SCLQJUV5VzhiUtURbVkVE53AJJK/VWW6 -----END CERTIFICATE-----Generated at Tue Nov 4 23:15:28 2025 by rpki-client