$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft File: HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json) Hash identifier: 3G2wW3O/mas5/kBbik78XmknRFHQyYqjQBnF3PyPhc0= Subject key identifier: B8:EA:8F:F7:FD:35:EE:A7:4D:EF:C6:D6:C9:E5:77:F7:BF:2D:BF:E8 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft Manifest number: 71 Signing time: Sat 09 Aug 2025 07:23:38 +0000 Manifest this update: Sat 09 Aug 2025 07:23:38 +0000 Manifest next update: Sat 16 Aug 2025 07:23:38 +0000 Files and hashes: 1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: LPJRvmHchPH99pjUwyRXlKhprsZ/Yb34ruAAhTls0CY=) 2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=) 3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Aug 9 07:23:38 2025 GMT Not After : Aug 16 07:23:38 2025 GMT Subject: CN=6896f77a-3d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4e:43:00:25:00:2c:57:21:f0:ef:52:d5:e7: 08:6b:43:1f:a6:62:ea:7d:13:eb:64:8c:35:61:55: 49:fa:30:78:93:1b:9c:ab:e6:82:ed:1c:f3:db:16: e9:32:5a:b1:25:25:9b:82:a3:8c:d7:c1:0c:d8:6b: ab:b7:63:9b:46:67:38:53:48:07:97:de:56:d8:93: 00:87:06:4d:d0:48:40:73:d7:fb:f2:1a:8b:29:61: 23:44:7f:12:90:81:59:c3:47:7e:38:61:4e:08:93: 60:15:4d:40:15:e5:bf:b4:27:26:f6:33:bd:d1:e4: 51:a8:b8:d7:1f:04:d3:96:5a:9c:a4:70:52:9f:a9: 4a:48:a0:1d:9b:01:f5:c6:5f:9a:45:b8:39:5e:60: 33:99:fb:e8:cd:bf:48:e3:4f:05:45:a4:04:23:9e: 2e:80:c6:0f:7a:06:0e:2e:1d:56:e2:f2:1b:b9:39: a6:98:09:90:cf:72:e8:c6:06:ef:be:73:a8:3f:24: 3b:90:1f:b8:01:b7:37:75:be:1c:7a:55:dd:f8:94: 20:58:76:84:90:2f:c2:64:5f:e8:cd:f3:fc:a5:d3: 0d:ba:c4:e1:0d:be:63:03:75:3c:d9:e3:e6:91:b7: 65:b8:18:e1:57:a2:a4:f8:ed:7b:2f:a1:1e:34:1f: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EA:8F:F7:FD:35:EE:A7:4D:EF:C6:D6:C9:E5:77:F7:BF:2D:BF:E8 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:59:67:42:93:62:0b:17:8f:ed:e6:3b:71:d3:f3:a0:6d:fc: 7a:b5:35:33:d6:a5:38:8c:f9:fd:02:6c:fe:c6:f7:96:7d:83: db:b6:3f:a7:2e:e6:fd:a5:bd:19:a0:7e:3d:be:e3:64:74:07: 08:af:88:95:ca:d5:ac:c2:53:a5:ce:eb:64:e7:3e:66:e7:a1: ae:ad:dc:1b:a4:1d:1e:1d:17:5e:96:8d:0a:01:42:c2:12:26: 9c:5c:94:ee:1e:d4:7f:97:77:04:ba:4f:e1:17:bd:c2:d4:26: 52:1e:39:a3:a1:5a:6a:73:ed:d5:a9:11:d4:0a:23:34:c8:93: 58:84:b1:2d:9b:80:ea:00:00:1d:d7:31:d4:1e:83:f5:f8:93: 6a:7d:b9:11:0d:2e:cf:a1:1f:7f:eb:1d:3b:1f:84:59:aa:1b: 0d:bf:f7:80:f0:68:cb:cd:16:0d:e3:df:9f:23:65:89:1a:ee: e0:dc:e2:20:dc:f5:6e:0c:8e:75:b9:d2:b9:d0:25:b7:b9:2e: 00:fd:82:d9:1c:1e:49:e7:fe:b5:ca:c0:68:8d:7a:c7:76:ee: d3:9b:bf:7d:4d:3e:81:85:d0:e9:81:3f:5a:9c:29:a7:08:d8: 6d:5c:4a:62:b3:0b:10:82:f1:22:da:2c:90:3e:58:28:d0:74: 32:62:b9:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDU3ODExMC8GA1UEBRMoMUQzREFFRjdEMjc4ODM3M0VEREZDQjFBRDVDNEMyMzU2 QzU3QURFRDAeFw0yNTA4MDkwNzIzMzhaFw0yNTA4MTYwNzIzMzhaMBgxFjAUBgNV BAMTDTY4OTZmNzdhLTNkOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsTkMAJQAsVyHw71LV5whrQx+mYup9E+tkjDVhVUn6MHiTG5yr5oLtHPPbFuky WrElJZuCo4zXwQzYa6u3Y5tGZzhTSAeX3lbYkwCHBk3QSEBz1/vyGospYSNEfxKQ gVnDR344YU4Ik2AVTUAV5b+0Jyb2M73R5FGouNcfBNOWWpykcFKfqUpIoB2bAfXG X5pFuDleYDOZ++jNv0jjTwVFpAQjni6Axg96Bg4uHVbi8hu5OaaYCZDPcujGBu++ c6g/JDuQH7gBtzd1vhx6Vd34lCBYdoSQL8JkX+jN8/yl0w26xOENvmMDdTzZ4+aR t2W4GOFXoqT47XsvoR40H9M/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuOqP9/01 7qdN78bWyeV3978tv+gwHwYDVR0jBBgwFoAUHT2u99J4g3Pt38sa1cTCNWxXre0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNTc4LzAwM0E3OURBQ0Yz RDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSFQydTk5SjRnM1B0MzhzYTFjVENOV3hYcmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw NTc4LzAwM0E3OURBQ0YzRDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQ dDM4c2ExY1RDTld4WHJlMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFlZZ0KTYgsXj+3mO3HT86Bt/Hq1NTPWpTiM+f0CbP7G95Z9g9u2P6cu 5v2lvRmgfj2+42R0BwiviJXK1azCU6XO62TnPmbnoa6t3BukHR4dF16WjQoBQsIS JpxclO4e1H+XdwS6T+EXvcLUJlIeOaOhWmpz7dWpEdQKIzTIk1iEsS2bgOoAAB3X MdQeg/X4k2p9uRENLs+hH3/rHTsfhFmqGw2/94DwaMvNFg3j358jZYka7uDc4iDc 9W4MjnW50rnQJbe5LgD9gtkcHknn/rXKwGiNesd27tObv31NPoGF0OmBP1qcKacI 2G1cSmKzCxCC8SLaLJA+WCjQdDJiuW4= -----END CERTIFICATE-----Generated at Sun Aug 10 16:09:00 2025 by rpki-client