$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: tIvrdkCEmi20neO62DttEG0uUB2OKtyHMKFsgtxwz4c= Subject key identifier: 37:34:C9:B1:FD:BF:05:82:37:57:70:BE:5B:91:6A:15:EB:D2:AA:6E Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 52 Signing time: Sat 09 Aug 2025 07:47:19 +0000 Manifest this update: Sat 09 Aug 2025 07:47:19 +0000 Manifest next update: Sat 16 Aug 2025 07:47:19 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: MCQOMJzTQyio7mAK7vkrGkqXgQpG7m00LF4zNzGzY88=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Aug 9 07:47:19 2025 GMT Not After : Aug 16 07:47:19 2025 GMT Subject: CN=6896fd07-28c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:46:96:66:6a:43:bf:cd:7a:e1:ca:1c:9c:c5: d3:a0:5e:4a:b1:2b:9a:51:5a:ba:bd:5a:6d:e2:fc: 67:86:ce:41:30:e1:e5:a1:a4:72:61:53:44:37:de: 62:e9:5e:b9:4b:cf:75:16:9f:23:13:2e:1a:b3:03: a1:ee:d9:e4:d8:de:96:d9:d9:43:f2:e4:d8:c7:a8: f2:8c:1b:b0:41:c4:19:11:ff:7e:89:c9:bb:7a:33: 62:d2:ad:81:af:7e:af:bd:00:44:5b:98:a3:bf:7d: 3a:2e:bd:8b:af:b9:c6:6a:ca:1c:87:1b:2e:8b:40: b3:8b:73:99:c0:82:83:d7:1c:76:13:52:6f:4a:0b: d8:b9:5a:4c:f0:40:81:d4:ce:ca:30:62:33:f0:49: ad:ca:68:24:8b:f5:d5:21:1f:c5:9c:20:9b:60:78: fd:8c:74:5e:99:71:f6:99:de:b3:41:75:42:e4:a0: da:ef:be:19:4a:90:9a:df:21:f5:62:8b:bc:b1:c7: 45:45:58:23:08:d6:f8:92:e0:1a:49:09:3a:fa:bd: 2e:b4:d5:07:1b:15:ab:a7:bf:25:86:62:b2:8b:df: 0b:04:78:74:f0:25:cd:3c:a6:28:41:69:ed:8b:54: c2:8a:26:ff:3f:20:b8:7e:8f:fd:73:3a:fd:9d:8e: ac:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:34:C9:B1:FD:BF:05:82:37:57:70:BE:5B:91:6A:15:EB:D2:AA:6E X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5a:57:46:95:98:c2:83:df:ae:47:6d:cb:ce:7f:a1:a0:eb: 1a:cc:05:b8:e7:fd:7e:3f:f3:6d:1c:f9:83:e9:70:7e:c2:e3: 1e:81:ee:eb:2f:ae:55:58:d9:86:a3:34:60:3a:37:fe:10:7d: 3e:c0:8d:0a:a5:55:81:b4:bc:65:e3:f2:b9:a4:95:86:b8:1d: 3b:56:1b:7b:d4:32:03:20:81:56:cc:96:54:b0:a9:12:16:65: 15:f1:f9:b8:10:4b:d3:55:21:11:9d:c1:94:bc:ad:fe:37:09: b4:ab:b3:73:d7:9f:ee:43:bd:bd:34:98:49:2d:a3:1c:bf:91: 4a:64:c5:01:18:60:88:cb:d7:98:c1:63:ef:88:f7:b1:a0:9d: 28:36:57:4f:f3:eb:24:38:05:29:24:d6:84:87:4c:6e:d4:08: 71:af:d3:56:4f:39:83:30:2a:e0:78:4a:ac:0e:2b:44:7d:52: 3b:b4:3e:4f:ec:bc:c1:c5:af:70:c2:5d:48:1f:6e:01:d2:a6: 60:3d:9c:da:ab:05:04:1e:7d:87:7d:a9:f5:3d:bb:2b:52:82: 63:9f:d7:61:2b:55:f4:34:81:1e:40:55:14:ef:31:6d:3a:bd: 7d:b2:68:74:03:da:84:08:66:c5:de:67:db:da:64:10:9c:28: a1:e1:de:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA4MDkwNzQ3MTlaFw0yNTA4MTYwNzQ3MTlaMBgxFjAUBgNV BAMTDTY4OTZmZDA3LTI4YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpRpZmakO/zXrhyhycxdOgXkqxK5pRWrq9Wm3i/GeGzkEw4eWhpHJhU0Q33mLp XrlLz3UWnyMTLhqzA6Hu2eTY3pbZ2UPy5NjHqPKMG7BBxBkR/36Jybt6M2LSrYGv fq+9AERbmKO/fTouvYuvucZqyhyHGy6LQLOLc5nAgoPXHHYTUm9KC9i5WkzwQIHU zsowYjPwSa3KaCSL9dUhH8WcIJtgeP2MdF6ZcfaZ3rNBdULkoNrvvhlKkJrfIfVi i7yxx0VFWCMI1viS4BpJCTr6vS601QcbFaunvyWGYrKL3wsEeHTwJc08pihBae2L VMKKJv8/ILh+j/1zOv2djqwXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNzTJsf2/ BYI3V3C+W5FqFevSqm4wHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHFaV0aVmMKD365HbcvOf6Gg6xrMBbjn/X4/820c+YPpcH7C4x6B7usv rlVY2YajNGA6N/4QfT7AjQqlVYG0vGXj8rmklYa4HTtWG3vUMgMggVbMllSwqRIW ZRXx+bgQS9NVIRGdwZS8rf43CbSrs3PXn+5Dvb00mEktoxy/kUpkxQEYYIjL15jB Y++I97GgnSg2V0/z6yQ4BSkk1oSHTG7UCHGv01ZPOYMwKuB4SqwOK0R9Uju0Pk/s vMHFr3DCXUgfbgHSpmA9nNqrBQQefYd9qfU9uytSgmOf12ErVfQ0gR5AVRTvMW06 vX2yaHQD2oQIZsXeZ9vaZBCcKKHh3oA= -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:12 2025 by rpki-client