$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: WOsYpFtMNf2N7u00h4kFSTqt9QRXbzQaRsWv0qi+2cM= Subject key identifier: 98:2F:EF:01:27:6D:30:FF:8D:14:16:C8:37:24:47:22:CA:A2:7C:1F Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 93 Signing time: Mon 03 Nov 2025 06:31:54 +0000 Manifest this update: Mon 03 Nov 2025 06:31:53 +0000 Manifest next update: Mon 10 Nov 2025 06:31:53 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: lALAG3bg9LnMH56clHhZI2IJHVwkBrC02PC+EnHLT+Y=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Nov 3 06:31:53 2025 GMT Not After : Nov 10 06:31:53 2025 GMT Subject: CN=69084c5a-a072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:49:8e:0c:b5:f4:ba:2c:af:7b:b3:c6:4e:05: 96:13:2c:e4:c6:a4:10:5a:f9:96:a9:bb:46:c9:31: 78:08:80:36:22:10:85:fe:f2:a1:ec:e4:42:ee:ac: 13:e7:fc:3b:e6:c9:19:67:45:60:56:f0:28:0e:93: 65:2e:13:70:5d:b6:81:d0:bf:c6:a8:bf:d9:4d:e7: c4:78:05:99:5c:91:23:9f:bf:dc:0a:7c:1f:35:aa: ee:5c:d0:2a:0f:0a:ef:fc:d4:02:59:e8:dc:34:e9: 2d:c9:41:4c:82:03:6d:d2:4c:44:b6:dc:12:4f:88: be:e1:42:c2:41:f6:95:66:8f:be:ef:8a:f9:ac:0b: 34:77:38:28:54:5f:a9:ad:ba:ae:ca:c0:8f:f4:8f: e6:de:42:f2:df:ff:9e:7e:61:e2:51:5a:31:11:62: 55:82:8e:a2:f5:ea:be:6a:a5:5f:16:e6:e1:2a:cb: 12:df:48:2f:ea:1f:24:27:37:d7:f7:72:f5:b4:0f: 6e:61:94:fb:63:5c:c8:2a:df:9c:92:41:9f:77:77: 2e:c1:21:1e:0f:42:0a:9a:21:49:a9:8c:e8:91:5c: 13:2b:aa:da:04:ee:7e:4c:21:d2:15:bc:ba:75:59: ec:b9:bc:e1:8f:9e:84:06:55:bf:f7:53:33:79:24: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2F:EF:01:27:6D:30:FF:8D:14:16:C8:37:24:47:22:CA:A2:7C:1F X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:0c:a1:0e:d8:c6:52:f6:bb:95:c0:f8:c8:70:b3:51:a0:13: ff:b8:b4:87:21:63:06:cc:a6:57:8b:79:00:ba:3a:09:6b:84: a1:45:3a:38:4a:c6:cb:0e:af:e1:5a:3f:b8:18:1c:aa:65:75: 0c:60:e1:22:66:30:81:25:81:ee:bc:00:6c:e5:c9:a0:90:d2: 2b:e5:02:a9:68:7c:47:19:e2:65:a5:56:f4:20:b4:f2:d4:41: 4d:7f:44:2f:6c:f8:d5:5f:9b:59:7d:bf:55:fd:ba:40:7d:20: 66:4f:54:9d:fa:0e:ee:c2:ca:91:4a:af:cd:0c:98:80:a5:ac: c4:b0:2e:5e:c9:9b:be:99:34:57:6e:db:fa:c1:3c:ec:7e:d6: 68:6c:d4:11:67:40:62:84:72:5b:1c:f8:61:dd:6c:db:d8:8c: c9:42:34:18:7f:c7:c1:93:8f:47:b7:09:eb:6f:4a:f5:e0:f2: a7:8d:16:65:ae:65:32:ea:b6:6a:64:76:bb:d4:cc:aa:6a:a6: 14:52:53:48:d5:d7:ad:f8:e1:5e:b6:ba:9b:84:bf:9e:43:da: d7:34:6d:5a:9d:4c:b9:2e:fc:69:da:b5:02:c9:c2:6b:ac:c7: b0:e2:b7:96:6c:a7:37:28:f1:62:72:88:37:c6:32:d7:62:79: b4:14:fd:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDM2MUZBREEyRTBBODhDRjI4N0Y0Q0U2Q0MzQjQ0NjJD OTEzMzBCRkMwHhcNMjUxMTAzMDYzMTUzWhcNMjUxMTEwMDYzMTUzWjAYMRYwFAYD VQQDEw02OTA4NGM1YS1hMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0mODLX0uiyve7PGTgWWEyzkxqQQWvmWqbtGyTF4CIA2IhCF/vKh7ORC7qwT 5/w75skZZ0VgVvAoDpNlLhNwXbaB0L/GqL/ZTefEeAWZXJEjn7/cCnwfNaruXNAq Dwrv/NQCWejcNOktyUFMggNt0kxEttwST4i+4ULCQfaVZo++74r5rAs0dzgoVF+p rbquysCP9I/m3kLy3/+efmHiUVoxEWJVgo6i9eq+aqVfFubhKssS30gv6h8kJzfX 93L1tA9uYZT7Y1zIKt+ckkGfd3cuwSEeD0IKmiFJqYzokVwTK6raBO5+TCHSFby6 dVnsubzhj56EBlW/91MzeSR+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgv7wEn bTD/jRQWyDckRyLKonwfMB8GA1UdIwQYMBaAFDYfraLgqIzyh/TObMO0RiyRMwv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xNEE3OEYyQ0RG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQS0g5TTVzdzdSR0xKRXpD X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xNEE3OEYyQ0RGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQ S0g5TTVzdzdSR0xKRXpDX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBDKEO2MZS9ruVwPjIcLNRoBP/uLSHIWMGzKZXi3kAujoJa4ShRTo4 SsbLDq/hWj+4GByqZXUMYOEiZjCBJYHuvABs5cmgkNIr5QKpaHxHGeJlpVb0ILTy 1EFNf0QvbPjVX5tZfb9V/bpAfSBmT1Sd+g7uwsqRSq/NDJiApazEsC5eyZu+mTRX btv6wTzsftZobNQRZ0BihHJbHPhh3Wzb2IzJQjQYf8fBk49Htwnrb0r14PKnjRZl rmUy6rZqZHa71MyqaqYUUlNI1det+OFetrqbhL+eQ9rXNG1anUy5Lvxp2rUCycJr rMew4reWbKc3KPFicog3xjLXYnm0FP0u -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:08 2025 by rpki-client