$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: pzf57u7dsJmEBoiPuMkaM5SBzPlsC6R4Tqcnmgteml4= Subject key identifier: 30:9F:97:D8:6D:38:41:CB:8C:B8:50:02:3B:A6:1B:E7:86:4C:F3:F1 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0138 Signing time: Fri 05 Sep 2025 04:55:06 +0000 Manifest this update: Fri 05 Sep 2025 04:55:06 +0000 Manifest next update: Fri 12 Sep 2025 04:55:06 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: Y4wGG1IX6QYfqVrrJfUCkXPW4lErjsVnJmG91kZhtCY=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Sep 5 04:55:06 2025 GMT Not After : Sep 12 04:55:06 2025 GMT Subject: CN=68ba6d2a-104f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e6:87:06:87:d8:cf:67:30:3b:91:00:c9:36: dc:70:10:57:ec:89:07:da:8c:ac:0e:4e:b4:ef:9e: b1:c5:a5:4a:a9:94:9e:51:70:af:40:8c:d6:48:cf: 95:0b:db:6e:b8:03:a2:41:44:a7:35:b0:5f:f9:b4: 08:a2:25:bc:61:b7:2f:2a:2e:8e:be:f4:59:ba:a0: 59:5a:f0:62:01:4c:1a:58:ce:d8:07:d7:24:98:ed: 7e:9d:74:8f:8e:c0:66:a2:e8:c0:09:df:e6:34:03: 5a:88:a6:b2:d1:9a:78:2d:ac:d2:39:75:2a:e2:67: d9:d4:31:8f:ba:f3:bb:47:85:e5:cc:b4:33:ed:ac: 9b:80:e4:6d:58:e3:90:bd:6d:73:1b:a7:00:38:81: 04:92:a7:14:50:1e:6e:7a:ae:21:16:dd:d4:1a:97: c9:42:ba:1c:55:b0:96:97:ca:d4:08:02:7b:4f:e0: 61:ff:72:5b:ac:85:13:84:c4:0f:31:c2:7b:f0:2a: d9:27:0d:62:e0:8d:aa:88:5f:62:0b:65:8e:ed:72: 48:bf:23:62:e1:f5:54:21:7e:94:1a:0b:27:44:09: 3d:42:95:11:af:8c:fc:51:94:f6:43:68:ff:80:61: 39:61:87:26:8b:26:85:63:ed:7a:44:da:32:64:21: ad:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9F:97:D8:6D:38:41:CB:8C:B8:50:02:3B:A6:1B:E7:86:4C:F3:F1 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e2:ba:cb:97:e9:9e:17:42:52:1b:4b:d2:90:b3:eb:46:8f: 44:52:35:4d:82:8b:7e:a1:be:ee:42:07:37:9f:42:c5:96:97: 82:1e:15:ae:1d:f7:fc:bd:57:d0:b3:2e:4b:dd:a0:37:49:23: ff:1f:01:e3:e8:1e:d3:32:b7:a7:35:20:b8:28:c2:4e:dd:1e: 8e:82:d9:25:f0:3d:e2:a8:4a:54:c5:7c:9b:25:97:cf:b1:4e: ca:2e:d2:66:50:de:25:cc:85:94:6d:f8:41:f1:cd:ab:eb:50: 33:fc:ab:23:e8:76:0f:aa:12:8f:4e:3b:4b:8e:d2:77:2a:73: a9:09:4f:53:21:0c:95:34:c3:44:5b:30:65:2f:e8:fb:85:aa: ed:e5:08:49:73:1c:9a:21:25:5a:de:a4:ed:fa:7f:7b:2f:a2: 85:8a:23:7b:55:08:56:70:1b:23:8e:b3:26:72:ec:11:58:82: 60:5f:8b:11:16:03:21:58:39:27:90:22:9e:67:f4:d6:e8:18: 4b:2a:88:86:eb:d7:42:94:5f:c1:ba:e9:d5:92:37:cc:f8:87: 9e:bf:41:d5:14:77:0a:9d:ad:7a:b7:27:7e:0a:e4:1f:f6:36: 97:62:23:4c:f8:68:c8:a3:eb:57:a4:34:a8:69:57:4d:c5:74: 4d:a0:01:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwOTA1MDQ1NTA2WhcNMjUwOTEyMDQ1NTA2WjAYMRYwFAYD VQQDEw02OGJhNmQyYS0xMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweaHBofYz2cwO5EAyTbccBBX7IkH2oysDk60756xxaVKqZSeUXCvQIzWSM+V C9tuuAOiQUSnNbBf+bQIoiW8YbcvKi6OvvRZuqBZWvBiAUwaWM7YB9ckmO1+nXSP jsBmoujACd/mNANaiKay0Zp4LazSOXUq4mfZ1DGPuvO7R4XlzLQz7aybgORtWOOQ vW1zG6cAOIEEkqcUUB5ueq4hFt3UGpfJQrocVbCWl8rUCAJ7T+Bh/3JbrIUThMQP McJ78CrZJw1i4I2qiF9iC2WO7XJIvyNi4fVUIX6UGgsnRAk9QpURr4z8UZT2Q2j/ gGE5YYcmiyaFY+16RNoyZCGtMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCfl9ht OEHLjLhQAjumG+eGTPPxMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp4rrLl+meF0JSG0vSkLPrRo9EUjVNgot+ob7uQgc3n0LFlpeCHhWu Hff8vVfQsy5L3aA3SSP/HwHj6B7TMrenNSC4KMJO3R6Ogtkl8D3iqEpUxXybJZfP sU7KLtJmUN4lzIWUbfhB8c2r61Az/Ksj6HYPqhKPTjtLjtJ3KnOpCU9TIQyVNMNE WzBlL+j7hart5QhJcxyaISVa3qTt+n97L6KFiiN7VQhWcBsjjrMmcuwRWIJgX4sR FgMhWDknkCKeZ/TW6BhLKoiG69dClF/BuunVkjfM+Ieev0HVFHcKna16tyd+CuQf 9jaXYiNM+GjIo+tXpDSoaVdNxXRNoAE7 -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:25 2025 by rpki-client