$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: ige4yUnBdSbzennKzbtX3EfDPsJtZ+CEcY7K4CFpeAQ= Subject key identifier: 58:16:D8:1C:9B:E1:B0:56:8B:C5:15:2C:87:D0:F4:62:EB:CD:1F:7B Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 83 Signing time: Sun 19 Oct 2025 10:01:33 +0000 Manifest this update: Sun 19 Oct 2025 10:01:32 +0000 Manifest next update: Sun 26 Oct 2025 10:01:32 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: hu/z4vPXSZPm0zx3sZoAQ0aFTUMyn7rG759XRbz7BA8=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Oct 19 10:01:32 2025 GMT Not After : Oct 26 10:01:32 2025 GMT Subject: CN=68f4b6fd-5789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6f:fb:16:78:48:8f:31:ed:ef:a6:be:ec:4d: 68:38:f6:ef:8a:b6:af:58:18:f3:68:49:ad:a6:4c: d0:52:ea:bb:18:7c:72:5c:e2:16:0b:37:af:9f:2d: ee:03:d5:90:f7:a0:06:38:a7:0b:f0:f8:7d:2f:d5: a0:a8:48:1a:4b:f7:68:79:f3:60:86:fc:b2:6f:9f: 20:c7:82:ca:0d:99:dc:83:d6:d6:c7:ee:92:a6:3c: ac:e1:20:cf:a1:0c:45:c4:95:f7:ec:f6:ff:f1:f8: 1a:27:d3:b3:37:b1:11:8e:18:8b:22:ac:b4:27:e7: e7:39:8f:1f:05:c4:25:10:83:b6:f5:cf:c6:96:9b: cc:82:2c:8e:05:10:f0:a6:f9:97:5c:10:8b:29:e9: 9c:2f:e3:01:1e:cf:79:5c:50:33:51:90:ad:1f:ac: 43:bf:e2:14:8d:b8:9c:ac:6f:76:3b:8c:fd:7c:6e: 35:ef:e0:6b:cd:f5:76:23:4a:58:7a:f2:68:6b:3d: 5c:24:34:bd:68:4b:36:93:35:4b:d9:31:fc:79:69: ff:5a:8e:a8:de:dd:d9:cd:86:7f:0a:f7:c4:dc:a2: 18:36:40:68:f3:59:bc:17:fa:5e:1f:2a:4d:88:5e: bd:59:6a:80:18:72:16:b5:bb:84:ef:a0:9c:c7:89: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:16:D8:1C:9B:E1:B0:56:8B:C5:15:2C:87:D0:F4:62:EB:CD:1F:7B X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6e:1d:3d:10:66:3e:4f:79:f8:db:61:cf:45:b8:a0:3d:79: f8:0c:97:bb:65:55:b4:ad:7d:09:0f:31:c5:e7:29:d6:64:ba: bb:c2:5c:04:19:27:62:37:56:1e:50:77:a1:43:b8:ed:fc:8e: b1:69:a0:cf:d6:5f:6a:83:90:a1:f1:37:e8:07:62:22:b8:f2: b2:53:78:c7:73:93:ca:49:cf:0a:51:62:11:23:4f:0d:13:22: b2:8b:b2:27:77:8e:a6:da:ae:35:7c:56:05:89:65:bb:52:c2: 34:81:89:92:dd:cd:ae:b9:ce:92:dc:11:78:6b:a5:d1:2b:70: ad:b3:2a:2e:3c:e8:a4:84:94:81:32:c6:6c:9a:31:27:67:67: dd:a6:24:a7:66:2f:a4:13:86:ed:7b:5b:15:61:22:9f:bd:ab: 41:56:d7:d0:b4:d4:6a:60:3f:08:fa:d0:ad:7d:83:4e:a4:cd: 2a:19:49:a9:98:77:45:51:26:38:0e:3c:40:85:eb:b2:2a:91: 13:e5:fe:72:99:6d:a1:ef:24:eb:4e:75:c0:a0:1e:62:0a:7b: 23:28:4e:89:8c:f4:fd:1c:78:7a:82:b3:07:d7:ce:d0:af:aa: 36:11:67:94:9d:cb:1d:74:93:e6:79:b3:ba:95:04:01:86:4f: 60:a3:78:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjUxMDE5MTAwMTMyWhcNMjUxMDI2MTAwMTMyWjAYMRYwFAYD VQQDEw02OGY0YjZmZC01Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7m/7FnhIjzHt76a+7E1oOPbviravWBjzaEmtpkzQUuq7GHxyXOIWCzevny3u A9WQ96AGOKcL8Ph9L9WgqEgaS/doefNghvyyb58gx4LKDZncg9bWx+6Spjys4SDP oQxFxJX37Pb/8fgaJ9OzN7ERjhiLIqy0J+fnOY8fBcQlEIO29c/GlpvMgiyOBRDw pvmXXBCLKemcL+MBHs95XFAzUZCtH6xDv+IUjbicrG92O4z9fG417+BrzfV2I0pY evJoaz1cJDS9aEs2kzVL2TH8eWn/Wo6o3t3ZzYZ/CvfE3KIYNkBo81m8F/peHypN iF69WWqAGHIWtbuE76Ccx4kn4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgW2Byb 4bBWi8UVLIfQ9GLrzR97MB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2bh09EGY+T3n422HPRbigPXn4DJe7ZVW0rX0JDzHF5ynWZLq7wlwE GSdiN1YeUHehQ7jt/I6xaaDP1l9qg5Ch8TfoB2IiuPKyU3jHc5PKSc8KUWIRI08N EyKyi7Ind46m2q41fFYFiWW7UsI0gYmS3c2uuc6S3BF4a6XRK3CtsyouPOikhJSB MsZsmjEnZ2fdpiSnZi+kE4bte1sVYSKfvatBVtfQtNRqYD8I+tCtfYNOpM0qGUmp mHdFUSY4DjxAheuyKpET5f5ymW2h7yTrTnXAoB5iCnsjKE6JjPT9HHh6grMH187Q r6o2EWeUncsddJPmebO6lQQBhk9go3ie -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:39 2025 by rpki-client