$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: FBr4fZbTtKDkDc+52LeC6dsVxVQ0Jtpz1H5MBxnqEf0= Subject key identifier: 45:68:F1:3D:A4:7B:B0:ED:DE:F1:C9:AA:49:46:A6:A0:B7:1B:B0:3B Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0127 Signing time: Sun 03 Aug 2025 05:04:30 +0000 Manifest this update: Sun 03 Aug 2025 05:04:29 +0000 Manifest next update: Sun 10 Aug 2025 05:04:29 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: Ugr45D5h6nXTDWGPf4iOHmT0T/gOVjx0bSrugT+Jt+0=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 05:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Aug 3 05:04:29 2025 GMT Not After : Aug 10 05:04:29 2025 GMT Subject: CN=688eeddd-6efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:e8:2a:83:df:36:90:ba:43:e4:58:24:2e: 04:58:46:e7:56:07:cc:34:e0:aa:fb:d9:37:72:cd: 09:af:7a:de:74:ac:5b:06:9a:30:4a:a3:48:4c:46: 56:94:5f:14:1d:33:f6:95:ce:fd:10:cf:62:20:94: b5:36:a2:d6:a3:50:dc:9b:23:3b:d4:10:67:ad:ca: 39:01:19:ce:68:8c:42:21:71:45:f7:f2:47:69:0c: c8:26:25:3a:d2:cf:fd:a7:f5:b9:2f:f7:df:60:5e: bd:61:60:d7:b7:3b:77:2f:13:6c:6d:f0:b8:4a:6a: e0:bc:ac:19:35:43:4d:5f:ad:89:b5:92:13:90:9b: a5:20:65:4c:d8:c4:b0:5a:de:0a:a8:f0:46:56:05: 0d:74:c3:55:5d:c4:67:4b:09:4d:73:97:f6:cf:c6: 62:eb:f0:2f:da:1e:75:dd:14:da:7b:eb:7e:33:b2: f6:f6:17:5d:a8:1d:a4:e5:86:5a:19:62:2f:85:29: a5:70:86:98:ce:c5:ec:7f:cb:2c:d1:b5:ad:f5:d6: 6e:ba:c9:4e:bc:60:cf:97:82:3d:33:7d:e2:2d:5b: 5a:c5:fd:2a:e4:21:1e:cb:fc:13:9b:2b:4e:38:11: f7:bf:a3:14:90:d6:77:a9:67:f0:04:d0:88:6a:fd: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:68:F1:3D:A4:7B:B0:ED:DE:F1:C9:AA:49:46:A6:A0:B7:1B:B0:3B X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6f:93:f0:4e:ab:36:6a:36:8f:69:9b:8a:f6:9e:53:7a:c7: 6e:a1:9e:3a:be:d3:de:92:89:56:2a:75:cc:4a:8c:17:1c:3f: 12:87:4e:0a:f3:6d:4c:d5:70:11:eb:7f:d0:08:6c:fc:80:3d: 16:96:c4:04:3e:44:80:6d:a0:cc:45:97:1d:7d:fe:59:d6:ee: 60:f3:f1:83:e5:24:49:78:91:a4:66:1a:e2:21:df:79:cf:08: db:7e:eb:61:20:6e:6a:a7:0e:fd:0c:27:63:09:81:9b:46:31: 57:a6:17:a9:f4:87:89:d9:1d:dd:57:d1:5e:d9:92:55:7a:2a: 56:06:7c:c4:db:19:f2:2e:6d:92:7f:8c:5e:88:7f:ce:5c:fd: 48:fb:22:a8:a5:20:c0:9f:95:f3:8c:5f:c0:f4:cc:24:8a:3c: 4f:db:de:7b:25:23:de:ba:da:2b:66:f9:89:37:38:fd:3a:92: 57:51:0b:0f:b7:54:0d:6d:14:6d:fc:a6:d4:29:5e:4f:ee:26: c0:50:af:36:0f:90:b9:d9:79:cc:6d:ce:75:fd:00:b2:97:0f: 4d:f4:1b:57:db:1f:c9:78:b1:5f:42:86:a7:72:3d:50:78:f2: 73:57:3a:c5:75:67:f1:99:28:c4:09:6f:9e:02:11:80:c8:07: 05:5d:f4:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwODAzMDUwNDI5WhcNMjUwODEwMDUwNDI5WjAYMRYwFAYD VQQDEw02ODhlZWRkZC02ZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4foKoPfNpC6Q+RYJC4EWEbnVgfMNOCq+9k3cs0Jr3redKxbBpowSqNITEZW lF8UHTP2lc79EM9iIJS1NqLWo1DcmyM71BBnrco5ARnOaIxCIXFF9/JHaQzIJiU6 0s/9p/W5L/ffYF69YWDXtzt3LxNsbfC4SmrgvKwZNUNNX62JtZITkJulIGVM2MSw Wt4KqPBGVgUNdMNVXcRnSwlNc5f2z8Zi6/Av2h513RTae+t+M7L29hddqB2k5YZa GWIvhSmlcIaYzsXsf8ss0bWt9dZuuslOvGDPl4I9M33iLVtaxf0q5CEey/wTmytO OBH3v6MUkNZ3qWfwBNCIav2p5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVo8T2k e7Dt3vHJqklGpqC3G7A7MB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJb5PwTqs2ajaPaZuK9p5TesduoZ46vtPekolWKnXMSowXHD8Sh04K 821M1XAR63/QCGz8gD0WlsQEPkSAbaDMRZcdff5Z1u5g8/GD5SRJeJGkZhriId95 zwjbfuthIG5qpw79DCdjCYGbRjFXphep9IeJ2R3dV9Fe2ZJVeipWBnzE2xnyLm2S f4xeiH/OXP1I+yKopSDAn5XzjF/A9MwkijxP2957JSPeutorZvmJNzj9OpJXUQsP t1QNbRRt/KbUKV5P7ibAUK82D5C52XnMbc51/QCylw9N9BtX2x/JeLFfQoancj1Q ePJzVzrFdWfxmSjECW+eAhGAyAcFXfQe -----END CERTIFICATE-----Generated at Mon Aug 4 18:57:42 2025 by rpki-client