$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: 2YhHVl42jh0oL5MxSSTJumZ2T6FVQbzWQ8f2mXQmVp4= Subject key identifier: C0:6F:36:EA:91:A0:E5:1C:11:95:6E:A9:42:64:8D:74:9E:61:0B:33 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 66 Signing time: Wed 17 Sep 2025 07:46:15 +0000 Manifest this update: Wed 17 Sep 2025 07:46:15 +0000 Manifest next update: Wed 24 Sep 2025 07:46:15 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: KBxvnlAZBn7bEsnfZ2suaQ2QtgSIag7odm5xnD/jzCQ=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Sep 17 07:46:15 2025 GMT Not After : Sep 24 07:46:15 2025 GMT Subject: CN=68ca6747-b786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:e5:15:b3:af:bc:9f:1a:14:a4:4a:5f:12: 62:f7:5f:1c:f8:85:c0:f2:4d:16:7c:ae:6a:e9:0f: d8:8e:f5:82:83:79:26:be:14:6b:ea:f5:d6:a8:af: b6:17:4a:49:36:42:89:33:40:09:df:4a:32:05:82: 9f:44:8d:b5:2a:92:05:b4:08:c1:9f:48:10:8a:40: 81:17:15:71:9f:96:76:7c:79:6d:87:04:4e:e9:fd: e2:7e:8f:03:b7:d8:df:89:12:e3:36:d8:59:c2:ca: 94:59:05:db:03:67:03:e5:3d:12:a0:25:ff:ea:f2: 9d:72:e5:46:90:b4:a1:71:9c:00:2c:ef:89:36:5b: ae:dd:00:29:19:b4:39:ce:2f:72:fb:d7:30:b9:9a: c7:95:86:38:aa:4a:83:13:3e:6a:0f:53:9e:38:4b: 2d:cb:da:64:35:5c:d9:3d:ce:b6:85:6b:eb:21:22: c5:00:04:ce:e4:79:34:66:68:28:62:0a:84:d1:4a: c3:46:4e:6d:7d:a6:14:e6:0f:91:99:2c:40:05:85: fb:94:f3:08:55:5e:9b:c5:79:f5:39:8e:a3:04:f1: 48:bd:54:8a:29:3f:3b:b6:99:38:05:07:58:62:f0: 8d:fa:42:fc:d0:84:9a:f3:d8:58:ff:8c:24:a4:29: c8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6F:36:EA:91:A0:E5:1C:11:95:6E:A9:42:64:8D:74:9E:61:0B:33 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:00:9c:d9:e2:61:2d:09:3c:95:15:3c:74:98:62:2b:77:9c: 59:6e:4f:16:c1:9b:68:61:3e:08:fc:26:04:8e:8a:78:06:6b: 9f:66:17:87:6a:0d:e7:51:96:19:58:ea:1b:47:c8:8c:c4:09: 88:8a:37:59:f7:5c:b3:69:b8:62:ef:25:17:ab:90:db:b7:1f: 13:34:79:8c:af:76:a3:d4:55:00:a5:82:b6:c9:ac:62:f4:a5: 6b:ab:9b:a0:89:d1:c8:22:e7:5e:22:b5:f1:fd:28:75:6a:82: 9f:73:6b:94:72:c9:de:29:48:7c:f7:54:79:3f:24:a3:63:c3: db:be:de:f1:3e:90:1d:5e:6e:95:93:01:f6:9f:1a:02:12:5f: 43:19:05:48:3f:73:c2:bc:0e:50:4a:38:40:08:84:54:a9:82: a1:d4:e3:6a:58:11:19:01:8d:a7:26:07:a0:19:bd:c9:09:9a: ba:e6:23:46:29:38:5e:c8:22:32:60:2e:56:05:a2:98:90:0c: b0:50:7a:45:a5:d6:90:fb:f0:04:1a:31:98:34:9c:b7:55:2a: d4:df:d5:1a:d7:f3:56:55:6b:f9:6f:b7:c8:31:4a:db:e7:5b: 81:43:72:04:05:7b:c8:ba:ec:d0:f4:73:ca:a6:23:49:ff:90: 17:ac:64:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA5MTcwNzQ2MTVaFw0yNTA5MjQwNzQ2MTVaMBgxFjAUBgNV BAMTDTY4Y2E2NzQ3LWI3ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3juUVs6+8nxoUpEpfEmL3Xxz4hcDyTRZ8rmrpD9iO9YKDeSa+FGvq9daor7YX Skk2QokzQAnfSjIFgp9EjbUqkgW0CMGfSBCKQIEXFXGflnZ8eW2HBE7p/eJ+jwO3 2N+JEuM22FnCypRZBdsDZwPlPRKgJf/q8p1y5UaQtKFxnAAs74k2W67dACkZtDnO L3L71zC5mseVhjiqSoMTPmoPU544Sy3L2mQ1XNk9zraFa+shIsUABM7keTRmaChi CoTRSsNGTm19phTmD5GZLEAFhfuU8whVXpvFefU5jqME8Ui9VIopPzu2mTgFB1hi 8I36QvzQhJrz2Fj/jCSkKcgfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwG826pGg 5RwRlW6pQmSNdJ5hCzMwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGMAnNniYS0JPJUVPHSYYit3nFluTxbBm2hhPgj8JgSOingGa59mF4dq DedRlhlY6htHyIzECYiKN1n3XLNpuGLvJRerkNu3HxM0eYyvdqPUVQClgrbJrGL0 pWurm6CJ0cgi514itfH9KHVqgp9za5Ryyd4pSHz3VHk/JKNjw9u+3vE+kB1ebpWT AfafGgISX0MZBUg/c8K8DlBKOEAIhFSpgqHU42pYERkBjacmB6AZvckJmrrmI0Yp OF7IIjJgLlYFopiQDLBQekWl1pD78AQaMZg0nLdVKtTf1RrX81ZVa/lvt8gxStvn W4FDcgQFe8i67ND0c8qmI0n/kBesZAA= -----END CERTIFICATE-----Generated at Fri Sep 19 08:34:40 2025 by rpki-client