$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: oIud+f1avojvYJdOLeLhX5qH07ETWfWrU369B5yedyk= Subject key identifier: E3:5E:FF:7A:1E:01:C7:5C:8E:37:07:02:EE:E8:77:87:0B:85:16:8B Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 4E Signing time: Thu 19 Jun 2025 06:44:16 +0000 Manifest this update: Thu 19 Jun 2025 06:44:16 +0000 Manifest next update: Thu 26 Jun 2025 06:44:16 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: kH5ut2bX/zHdVlt9DQEJLr//gNGiIUArUkzeg8MEhN8=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Jun 19 06:44:16 2025 GMT Not After : Jun 26 06:44:16 2025 GMT Subject: CN=6853b1c0-28a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:ca:de:fc:c0:54:76:3c:b6:49:1d:d0:10: 95:45:28:7f:13:d1:2c:72:5e:bb:ad:72:1d:f2:21: 4d:96:a8:3a:b9:3b:91:de:10:ad:30:46:f1:6e:10: 47:ff:af:0f:60:2b:3b:c7:e9:d8:eb:92:e2:52:e2: d4:68:24:c4:56:f3:9d:df:1e:af:62:26:0b:ed:e1: c8:21:23:e0:70:a3:70:74:d9:96:8f:32:81:37:70: 79:c0:c1:1e:c1:a0:b3:23:4e:23:ff:14:40:4d:b1: 09:3a:7e:fb:7f:53:39:b1:1b:4a:dc:92:69:84:7b: 75:31:16:3e:52:90:8b:aa:f0:b4:c8:4a:26:44:c8: 27:73:21:84:91:e6:9e:ea:a4:f0:d7:36:ee:44:51: c5:ef:19:f2:ce:46:1c:03:be:68:26:45:6b:63:3d: 7a:2c:ef:81:11:18:4c:46:3e:37:4c:c0:37:4f:c5: 0f:9c:f7:d7:cf:32:00:9a:50:20:ee:2b:b6:fc:b7: e3:07:c7:c7:a5:98:f3:61:20:6d:78:6c:b9:91:e2: 1c:e9:ea:31:4d:82:26:2d:fa:e6:39:a4:58:e7:b7: 47:73:55:5f:29:e0:12:c6:53:0c:30:5c:9c:d2:cc: f1:b0:05:e5:91:46:f7:61:b7:e5:4b:bf:88:4a:7f: 26:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5E:FF:7A:1E:01:C7:5C:8E:37:07:02:EE:E8:77:87:0B:85:16:8B X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:98:a5:13:5e:4f:a9:84:86:5e:53:80:b6:c8:82:3b:76:bd: f1:0f:a7:7e:4b:bc:b7:05:50:08:33:18:6e:4e:a3:7d:f4:d3: db:7a:a3:65:0c:5e:f4:a1:86:d7:9a:0f:61:af:06:8f:d7:04: de:00:de:93:98:a1:be:52:0e:e2:9b:09:dc:84:12:14:31:c7: 68:92:94:eb:63:a6:eb:05:42:ed:f4:9f:ea:f7:e6:d0:8b:be: 42:4e:52:2f:d3:4e:37:8c:e9:e9:eb:c9:48:c2:6e:71:cf:5c: 0e:1a:e0:ba:bd:1c:06:67:37:81:dd:32:4a:67:f3:7b:15:29: 67:50:f8:b3:6d:40:3e:a5:a4:19:e8:e8:35:ca:09:1e:be:cc: 13:38:b9:a3:8f:30:35:a3:bc:1a:75:2b:79:65:0a:cb:fe:94: 9a:2a:fa:03:fb:04:c8:8c:65:d6:47:bd:ad:99:ed:34:e9:1f: ed:f1:8d:69:65:da:2d:92:45:1f:38:eb:ef:c0:af:89:b5:e0: da:00:2e:1c:d5:38:42:f4:aa:88:98:ef:2f:61:aa:25:82:b4: 6c:10:90:30:1b:4c:95:12:4b:bf:f8:13:d0:36:df:95:3a:84: f9:9e:a7:9d:ae:ae:bf:b7:d8:58:c1:cc:4a:cd:dd:12:fc:71: a9:1c:48:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA2MTkwNjQ0MTZaFw0yNTA2MjYwNjQ0MTZaMBgxFjAUBgNV BAMTDTY4NTNiMWMwLTI4YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/Pcre/MBUdjy2SR3QEJVFKH8T0SxyXrutch3yIU2WqDq5O5HeEK0wRvFuEEf/ rw9gKzvH6djrkuJS4tRoJMRW853fHq9iJgvt4cghI+Bwo3B02ZaPMoE3cHnAwR7B oLMjTiP/FEBNsQk6fvt/UzmxG0rckmmEe3UxFj5SkIuq8LTISiZEyCdzIYSR5p7q pPDXNu5EUcXvGfLORhwDvmgmRWtjPXos74ERGExGPjdMwDdPxQ+c99fPMgCaUCDu K7b8t+MHx8elmPNhIG14bLmR4hzp6jFNgiYt+uY5pFjnt0dzVV8p4BLGUwwwXJzS zPGwBeWRRvdht+VLv4hKfybzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU417/eh4B x1yONwcC7uh3hwuFFoswHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALeYpRNeT6mEhl5TgLbIgjt2vfEPp35LvLcFUAgzGG5Oo33009t6o2UM XvShhteaD2GvBo/XBN4A3pOYob5SDuKbCdyEEhQxx2iSlOtjpusFQu30n+r35tCL vkJOUi/TTjeM6enryUjCbnHPXA4a4Lq9HAZnN4HdMkpn83sVKWdQ+LNtQD6lpBno 6DXKCR6+zBM4uaOPMDWjvBp1K3llCsv+lJoq+gP7BMiMZdZHva2Z7TTpH+3xjWll 2i2SRR846+/Ar4m14NoALhzVOEL0qoiY7y9hqiWCtGwQkDAbTJUSS7/4E9A235U6 hPmep52urr+32FjBzErN3RL8cakcSKk= -----END CERTIFICATE-----Generated at Fri Jun 20 11:31:55 2025 by rpki-client