$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: PxwOo5JINlnkFarel9slxJrxFIz16r5NRjhS8QmNNZk= Subject key identifier: BC:48:50:E4:C4:B2:91:39:2C:6C:52:14:D2:9B:9D:AD:59:A2:66:E1 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 011F Signing time: Sat 19 Jul 2025 05:02:18 +0000 Manifest this update: Sat 19 Jul 2025 05:02:18 +0000 Manifest next update: Sat 26 Jul 2025 05:02:18 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: jZrLWuAT+Zk+D01GGteK3dOvLStB0988HgtptI2PlO0=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Jul 19 05:02:18 2025 GMT Not After : Jul 26 05:02:18 2025 GMT Subject: CN=687b26da-5ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:5d:9e:6e:8d:41:9b:fa:19:80:cc:33:04: 11:0b:7e:0d:22:9e:7f:c1:f8:26:82:b5:88:f2:80: 1a:12:7d:fb:e5:f2:e9:0f:f3:7d:83:a0:1c:26:39: 80:d5:5f:3b:20:58:d8:b0:13:46:2b:8c:d2:5d:01: cc:0d:a7:91:7a:c2:e8:31:f9:2e:34:7a:9b:40:8a: 9d:b0:64:db:6e:12:92:33:7d:63:fb:a6:ce:25:7e: 70:f8:cb:6f:9f:07:a7:8d:b6:bf:9a:8d:68:bc:ce: 8c:3f:3b:9d:5a:63:73:dc:2c:b3:f9:f0:95:66:49: ee:d5:ef:78:ed:87:5d:d6:76:cd:cd:5e:a6:e6:98: a2:bc:a9:a9:02:0c:05:9e:13:8d:d5:92:96:b0:a2: bb:73:a6:33:e4:36:7a:ae:46:06:28:4d:ea:5d:63: 28:9b:2d:a5:36:03:9d:3c:37:6c:49:33:e7:9d:0f: cf:ca:76:0e:1d:b8:b3:bf:d1:f2:8a:e7:38:4a:cc: b8:ba:ee:5f:06:21:be:81:a0:45:af:a7:05:cb:b3: 13:44:79:d1:fd:bc:dc:15:7c:1b:54:10:40:ae:15: a8:96:8b:b6:a5:3b:50:89:70:f3:49:01:d1:71:a8: 32:02:1b:bf:75:d7:f1:f3:21:a7:a2:fe:b0:99:0c: 28:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:48:50:E4:C4:B2:91:39:2C:6C:52:14:D2:9B:9D:AD:59:A2:66:E1 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:53:f4:1e:45:f3:cb:f9:cb:4d:4f:70:04:e7:8d:f6:48:06: 33:0a:32:a2:a4:d0:1d:ac:3d:3a:62:80:6b:bd:ca:10:7c:a1: 10:35:1c:d7:83:82:70:f1:46:f6:0d:6a:42:91:76:60:e7:f2: 19:26:5b:c2:f0:ad:86:1e:52:bf:04:e2:8c:00:ab:03:60:6f: 27:e7:4f:fc:a8:9e:ee:5b:61:fe:89:3b:7c:f8:88:34:71:cf: c0:7e:b6:34:9c:c4:8d:59:46:54:f6:0f:78:e6:fe:31:2b:b5: b9:0f:6c:4b:b3:1d:d4:b7:65:7f:e3:64:df:20:e1:bb:fe:a1: 32:b4:e6:e2:18:56:09:95:1c:43:97:09:ff:5d:de:58:6d:00: 54:64:fb:d9:1e:6a:85:81:c5:f7:ed:94:34:73:ea:57:bd:13: 61:3d:fe:9c:d4:21:84:8f:00:74:95:40:38:13:24:72:f8:62: 69:c7:4b:32:f1:ff:ec:b2:d1:8e:db:d1:61:59:d3:9a:ab:ac: 9b:ba:8d:e9:3c:42:2c:62:1b:fc:0f:24:da:dd:70:4f:78:9f: 9e:1e:4a:f1:3c:a9:fb:fb:83:ea:fd:58:56:32:79:ca:c2:00: 46:26:62:17:c0:4a:0f:44:5e:82:e1:32:c8:b1:a1:26:48:da: c7:59:43:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwNzE5MDUwMjE4WhcNMjUwNzI2MDUwMjE4WjAYMRYwFAYD VQQDEw02ODdiMjZkYS01Y2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dtdnm6NQZv6GYDMMwQRC34NIp5/wfgmgrWI8oAaEn375fLpD/N9g6AcJjmA 1V87IFjYsBNGK4zSXQHMDaeResLoMfkuNHqbQIqdsGTbbhKSM31j+6bOJX5w+Mtv nwenjba/mo1ovM6MPzudWmNz3Cyz+fCVZknu1e947Ydd1nbNzV6m5piivKmpAgwF nhON1ZKWsKK7c6Yz5DZ6rkYGKE3qXWMomy2lNgOdPDdsSTPnnQ/PynYOHbizv9Hy iuc4Ssy4uu5fBiG+gaBFr6cFy7MTRHnR/bzcFXwbVBBArhWolou2pTtQiXDzSQHR cagyAhu/ddfx8yGnov6wmQwoIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxIUOTE spE5LGxSFNKbna1ZombhMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFU/QeRfPL+ctNT3AE5432SAYzCjKipNAdrD06YoBrvcoQfKEQNRzX g4Jw8Ub2DWpCkXZg5/IZJlvC8K2GHlK/BOKMAKsDYG8n50/8qJ7uW2H+iTt8+Ig0 cc/AfrY0nMSNWUZU9g945v4xK7W5D2xLsx3Ut2V/42TfIOG7/qEytObiGFYJlRxD lwn/Xd5YbQBUZPvZHmqFgcX37ZQ0c+pXvRNhPf6c1CGEjwB0lUA4EyRy+GJpx0sy 8f/sstGO29FhWdOaq6ybuo3pPEIsYhv8DyTa3XBPeJ+eHkrxPKn7+4Pq/VhWMnnK wgBGJmIXwEoPRF6C4TLIsaEmSNrHWUNa -----END CERTIFICATE-----Generated at Sun Jul 20 21:56:46 2025 by rpki-client