$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft File: HtdycKSBilV07-7Kyvt0g812iCE.mft (raw, json) Hash identifier: 68FCm6LTc6+tRQYVgH6GXyelQ8fgx4xGYMOBd6NO1+s= Subject key identifier: EA:6E:6A:F0:8F:89:A9:A9:A4:3C:AC:26:B3:22:6E:C7:11:E0:13:DB Authority key identifier: 1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 Certificate issuer: /CN=A91CFE58/serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Certificate serial: 0A75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft Manifest number: 0A6E Signing time: Thu 24 Jul 2025 19:47:23 +0000 Manifest this update: Thu 24 Jul 2025 19:47:23 +0000 Manifest next update: Thu 31 Jul 2025 19:47:23 +0000 Files and hashes: 1: HtdycKSBilV07-7Kyvt0g812iCE.crl (hash: u/lAsnt7Fgq8XSTmb0L3YJOAtZjPGThFNSxikypjYBk=) 2: 7C29A45A669A11EA9A11434FC4F9AE02.roa (hash: zKN4F2avq+xJ9yq6Og5mmKvaFyZB2rEl8x2OZ87RL7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2677 (0xa75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE58, serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Validity Not Before: Jul 24 19:47:23 2025 GMT Not After : Jul 31 19:47:23 2025 GMT Subject: CN=68828dcb-7191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:79:ab:96:ad:6f:4d:99:29:29:45:35:98: c5:36:f4:08:33:75:1e:fc:7c:99:e4:56:16:09:96: 20:80:c3:d2:e6:3f:8a:6a:7c:e6:51:04:9d:46:a0: e9:74:d5:26:6f:39:ff:fd:59:ee:1a:03:38:37:12: d2:3e:43:5c:9a:6c:c9:ed:59:46:e3:5c:ad:46:89: c5:b7:8d:9a:eb:11:94:62:3f:4f:33:bd:24:9a:55: 84:4c:cc:6f:13:5c:f7:58:e0:a3:e1:48:a4:06:5b: d5:11:14:1c:ab:71:26:91:d7:4f:32:f2:97:45:68: eb:dd:05:22:fb:10:61:c3:f1:7d:f0:91:1f:de:90: 9e:53:8a:7c:e6:87:5f:bc:c6:c1:43:d1:91:9c:1d: c9:0b:7b:01:24:7d:c2:be:38:70:0c:03:b7:24:b4: 7f:ff:11:d1:42:dd:74:0e:8b:dc:66:52:a4:4c:6b: 4f:5d:ff:65:37:d8:ce:bc:21:9d:35:a8:0c:75:14: 45:b4:03:97:a5:b7:6a:3f:22:c1:d8:2a:1e:44:9a: 9b:85:60:00:24:61:6e:b0:e2:85:7e:36:ae:54:6d: 4b:5f:64:6a:81:05:7d:cb:a4:98:98:3c:28:55:62: 13:a1:bc:ae:21:41:5d:b5:2d:e8:67:12:b3:b4:d6: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6E:6A:F0:8F:89:A9:A9:A4:3C:AC:26:B3:22:6E:C7:11:E0:13:DB X509v3 Authority Key Identifier: keyid:1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:21:66:88:93:ae:e1:fa:d9:db:6e:0a:f6:03:bf:b4:cd:30: 94:9e:24:30:cc:ef:83:fe:b1:d9:68:df:6a:b1:80:46:ef:51: 72:12:96:25:8e:5b:d2:84:d4:ae:92:16:db:1d:69:9d:7d:f5: b8:16:86:86:5b:77:a0:38:93:3c:c7:4c:c0:22:f2:1d:cb:de: d3:21:b6:96:5a:53:a7:d0:29:e6:85:37:18:95:cd:b3:f2:f4: 0c:e5:ef:29:5b:e3:ac:9e:20:3e:68:e8:83:ab:e9:b6:51:f2: d4:bd:48:b1:83:56:c6:5b:85:19:4e:d2:13:2e:bd:b1:ed:91: d5:3f:dd:a6:29:70:a7:cf:31:70:3b:1f:98:27:98:be:51:ca: fe:cf:9c:90:17:81:f6:0c:a4:83:7d:bf:ab:3c:fc:a3:02:0c: 8a:1e:3d:6e:92:dc:8f:79:f9:ab:4d:9b:41:62:f2:55:fd:0c: 76:6c:af:f2:0e:73:24:48:6f:93:a5:2e:d5:5b:c4:8b:19:7f: 0a:50:03:29:14:6c:46:e2:1f:1e:29:6c:b6:8a:dd:07:b9:05: a1:4c:11:80:ed:25:0f:2c:0b:ef:4d:a1:8e:63:b2:df:bf:7b: 95:67:92:36:2f:4a:43:e3:49:7e:4f:7f:4c:cb:63:53:b8:f4: 38:c1:ac:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFNTgxMTAvBgNVBAUTKDFFRDc3MjcwQTQ4MThBNTU3NEVGRUVDQUNBRkI3NDgz Q0Q3Njg4MjEwHhcNMjUwNzI0MTk0NzIzWhcNMjUwNzMxMTk0NzIzWjAYMRYwFAYD VQQDEw02ODgyOGRjYi03MTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5Z5q5atb02ZKSlFNZjFNvQIM3Ue/HyZ5FYWCZYggMPS5j+KanzmUQSdRqDp dNUmbzn//VnuGgM4NxLSPkNcmmzJ7VlG41ytRonFt42a6xGUYj9PM70kmlWETMxv E1z3WOCj4UikBlvVERQcq3EmkddPMvKXRWjr3QUi+xBhw/F98JEf3pCeU4p85odf vMbBQ9GRnB3JC3sBJH3CvjhwDAO3JLR//xHRQt10DovcZlKkTGtPXf9lN9jOvCGd NagMdRRFtAOXpbdqPyLB2CoeRJqbhWAAJGFusOKFfjauVG1LX2RqgQV9y6SYmDwo VWITobyuIUFdtS3oZxKztNZ4YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpuavCP iamppDysJrMibscR4BPbMB8GA1UdIwQYMBaAFB7XcnCkgYpVdO/uysr7dIPNdogh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkU1OC82MDMzQ0Y2QTY2 OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmlsVjA3LTdLeXZ0MGc4MTJp Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZHljS1NCaWxWMDctN0t5dnQwZzgxMmlDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkU1OC82MDMzQ0Y2QTY2OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmls VjA3LTdLeXZ0MGc4MTJpQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKIWaIk67h+tnbbgr2A7+0zTCUniQwzO+D/rHZaN9qsYBG71FyEpYl jlvShNSukhbbHWmdffW4FoaGW3egOJM8x0zAIvIdy97TIbaWWlOn0CnmhTcYlc2z 8vQM5e8pW+OsniA+aOiDq+m2UfLUvUixg1bGW4UZTtITLr2x7ZHVP92mKXCnzzFw Ox+YJ5i+Ucr+z5yQF4H2DKSDfb+rPPyjAgyKHj1uktyPefmrTZtBYvJV/Qx2bK/y DnMkSG+TpS7VW8SLGX8KUAMpFGxG4h8eKWy2it0HuQWhTBGA7SUPLAvvTaGOY7Lf v3uVZ5I2L0pD40l+T39My2NTuPQ4waxD -----END CERTIFICATE-----Generated at Sat Jul 26 10:18:04 2025 by rpki-client