$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: GSPTARdUeVM64PPRahnbgncIZJAY/phq5S8BhG8ffMU= Subject key identifier: 58:18:DD:37:C7:A4:7A:3E:15:BE:00:1D:DD:A0:9A:F9:94:EE:F3:9C Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0108 Signing time: Tue 03 Jun 2025 04:49:29 +0000 Manifest this update: Tue 03 Jun 2025 04:49:29 +0000 Manifest next update: Tue 10 Jun 2025 04:49:29 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: rndFlyfc1sl9OpvPXXKP0TyidwIpSi60KCqd1RdTnkM=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Jun 3 04:49:29 2025 GMT Not After : Jun 10 04:49:29 2025 GMT Subject: CN=683e7ed9-b506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e3:62:ad:f6:f1:fc:21:5d:c1:ce:5d:a7:9e: a7:46:5a:94:d2:67:45:c8:12:46:4f:57:cc:bb:57: 91:3b:78:96:f7:4b:30:34:96:b9:96:eb:95:b9:6a: 42:38:1a:46:d5:a0:12:1e:2f:fc:b2:e1:65:09:56: ec:86:7f:61:23:93:84:ba:c4:95:51:92:4f:f8:89: e6:20:64:d4:ca:6d:da:c8:f9:6f:32:71:dc:88:31: 2e:de:fa:6d:63:cd:3e:e7:15:91:c7:27:44:2b:6c: f3:d7:97:c0:65:9b:84:59:03:f5:aa:c2:1e:41:84: 64:74:08:26:87:f0:59:e7:20:9a:aa:b3:db:af:11: e4:31:a6:e6:60:5c:a2:88:be:ba:9c:16:8b:86:b3: 05:fd:ca:f0:1d:7a:7a:50:18:e5:75:9e:b4:09:e5: 1b:57:e1:d2:d6:de:5d:0e:02:79:a1:eb:32:d5:93: 49:ac:c2:4b:af:bf:6c:1e:ed:8b:07:bb:72:58:83: 8a:94:73:06:2f:0c:13:86:17:a7:56:46:dd:d8:ac: 39:3d:9f:e2:14:27:7a:cb:f1:98:7a:b5:e1:42:e7: 95:79:5d:e8:14:04:37:02:55:0f:9e:10:b7:88:aa: 86:b7:a2:d1:7d:bb:37:25:54:b7:70:56:f5:05:08: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:18:DD:37:C7:A4:7A:3E:15:BE:00:1D:DD:A0:9A:F9:94:EE:F3:9C X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8a:4c:58:2a:a1:9e:ba:03:cf:48:f9:be:f0:5e:38:d1:2b: 6e:44:8c:1b:6f:9e:9d:a6:14:4c:45:4a:47:a7:26:c5:35:43: 7f:24:de:6d:65:96:9d:f9:43:f3:ea:05:2e:a1:33:dd:fa:ad: ef:51:fc:cc:d8:b0:30:b6:84:49:60:6a:7f:30:d3:16:4b:a4: fe:35:b1:aa:18:97:b8:8d:22:a5:49:bb:29:52:57:54:9c:67: 68:c9:d7:bb:33:7d:aa:4c:45:08:a4:32:6d:d0:7e:eb:93:59: c8:ef:6b:9a:16:9e:5f:3f:53:86:28:4d:8c:06:5f:32:a1:c5: 95:51:72:52:c1:18:65:cb:36:51:82:f3:b4:07:9c:38:8a:54: 0f:48:a7:7b:25:3b:90:c0:7b:24:e8:17:65:5f:2d:83:64:a5: eb:c3:e3:37:ee:c6:12:cb:18:94:74:61:d2:2c:9c:32:c6:73: a7:7f:b7:14:4c:5c:15:f8:ed:80:0a:df:43:32:05:39:d2:79: 18:7e:40:c9:bd:fc:cd:26:4b:d9:ca:89:3f:32:7e:4d:6a:47: e1:96:64:65:95:13:a5:2c:8b:b6:05:d1:ab:35:74:e7:42:ee: 22:63:cc:df:1b:49:58:e6:37:70:9e:4e:85:26:ad:f0:b8:8f: df:00:ea:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwNjAzMDQ0OTI5WhcNMjUwNjEwMDQ0OTI5WjAYMRYwFAYD VQQDEw02ODNlN2VkOS1iNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuNirfbx/CFdwc5dp56nRlqU0mdFyBJGT1fMu1eRO3iW90swNJa5luuVuWpC OBpG1aASHi/8suFlCVbshn9hI5OEusSVUZJP+InmIGTUym3ayPlvMnHciDEu3vpt Y80+5xWRxydEK2zz15fAZZuEWQP1qsIeQYRkdAgmh/BZ5yCaqrPbrxHkMabmYFyi iL66nBaLhrMF/crwHXp6UBjldZ60CeUbV+HS1t5dDgJ5oesy1ZNJrMJLr79sHu2L B7tyWIOKlHMGLwwThhenVkbd2Kw5PZ/iFCd6y/GYerXhQueVeV3oFAQ3AlUPnhC3 iKqGt6LRfbs3JVS3cFb1BQg/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgY3TfH pHo+Fb4AHd2gmvmU7vOcMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOikxYKqGeugPPSPm+8F440StuRIwbb56dphRMRUpHpybFNUN/JN5t ZZad+UPz6gUuoTPd+q3vUfzM2LAwtoRJYGp/MNMWS6T+NbGqGJe4jSKlSbspUldU nGdoyde7M32qTEUIpDJt0H7rk1nI72uaFp5fP1OGKE2MBl8yocWVUXJSwRhlyzZR gvO0B5w4ilQPSKd7JTuQwHsk6BdlXy2DZKXrw+M37sYSyxiUdGHSLJwyxnOnf7cU TFwV+O2ACt9DMgU50nkYfkDJvfzNJkvZyok/Mn5NakfhlmRllROlLIu2BdGrNXTn Qu4iY8zfG0lY5jdwnk6FJq3wuI/fAOpS -----END CERTIFICATE-----Generated at Tue Jun 3 23:19:21 2025 by rpki-client