$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: GVGHAzZIAZaEHUBPdHwz2H3S8cvY47sbEhS0AfOvsrQ= Subject key identifier: D3:A1:E4:5A:B8:46:E7:15:CD:87:75:2C:1E:93:18:DD:50:AC:5D:33 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 370D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 3595 Signing time: Sun 20 Jul 2025 14:49:07 +0000 Manifest this update: Sun 20 Jul 2025 14:49:06 +0000 Manifest next update: Sun 27 Jul 2025 14:49:06 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: eknpluzDRClWF/ZENPO8fqKRDWx+ui6lbIvQRRencqM=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 15: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 16: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 17: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 22: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 27: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 28: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14093 (0x370d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Jul 20 14:49:06 2025 GMT Not After : Jul 27 14:49:06 2025 GMT Subject: CN=687d01e3-ca83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7c:13:f9:fc:cf:a5:00:a5:7c:db:e1:24:f1: 96:f8:15:b6:41:f0:cb:1a:43:c3:00:c2:c7:88:e3: 48:3c:16:91:36:df:ce:85:bb:07:70:63:a9:63:3b: e9:4b:65:d1:a2:c6:73:96:0f:29:73:14:d8:24:ad: 96:71:11:91:31:6c:8f:47:df:29:02:34:60:68:f4: 92:00:df:b4:88:56:e0:b2:67:4b:50:e6:59:2d:b5: 5d:1d:45:07:51:bb:fe:b2:40:dc:90:9d:62:c1:71: 36:5f:99:15:53:49:1c:e8:91:3b:4c:3b:91:ee:18: 16:f2:97:80:4d:b5:e3:e9:db:07:bb:52:c2:a8:ff: 71:d1:d4:6d:0f:40:73:18:34:1b:d3:c3:2a:49:17: 58:b7:bb:3f:03:ab:c7:eb:28:1d:f9:8b:bd:8b:46: 5b:00:af:50:cf:79:23:b9:3e:98:3a:7c:79:ad:b0: e7:97:9b:d8:6b:4a:fb:48:a6:fe:8b:2e:f0:ed:b4: 77:88:18:7a:ab:1c:3e:af:77:02:18:ae:8d:9d:d6: 58:59:fc:f8:91:05:fd:17:61:34:6d:6a:77:0d:04: f7:c6:3a:8f:0d:80:47:ad:b8:4e:16:dd:c4:53:1b: 50:71:d3:7a:19:49:85:f2:a9:d0:e6:25:fb:8a:e1: 00:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A1:E4:5A:B8:46:E7:15:CD:87:75:2C:1E:93:18:DD:50:AC:5D:33 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b3:ce:00:3e:cf:82:22:9b:61:52:fc:05:87:34:a4:29:2c: eb:ea:a8:58:45:2c:2b:6f:bd:60:fc:0c:2d:08:44:ea:67:59: bc:ce:33:cd:75:70:01:73:75:31:bd:aa:bf:f7:f7:e7:61:d5: 55:a0:f4:84:9c:ca:59:04:55:63:0f:10:67:9f:bf:7f:0e:8a: e0:a6:08:36:3c:e4:8e:4f:5d:ab:d1:56:87:af:43:d3:c4:84: 4b:9a:fd:aa:56:20:2e:0a:77:c6:c5:ce:80:67:c1:1a:96:e5: 53:fc:0c:f6:b0:8c:21:43:98:6f:d5:4f:95:48:f6:12:1b:12: 5b:3f:f8:f0:b8:e2:b9:24:da:be:09:cf:ea:d7:80:0d:c6:3a: d6:a4:57:76:db:5f:f8:90:3a:9e:f8:bc:17:36:07:67:83:bc: 30:7c:73:05:b2:7a:cf:ec:61:20:a4:cb:36:f3:fb:2f:dc:53: a4:99:be:2a:34:e2:aa:aa:e2:3f:23:c7:fc:2b:2f:ba:9d:ed: c8:8a:1f:ad:9e:40:70:58:d9:0c:36:b6:1f:b7:96:8e:2b:91: 3b:8b:0e:86:31:0c:ce:8a:26:b5:ad:8b:65:5b:4e:2f:20:7f: 71:f9:d0:a4:43:b9:6f:61:36:92:74:cd:09:8a:3d:cd:d7:4b: d3:ef:1c:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwNzIwMTQ0OTA2WhcNMjUwNzI3MTQ0OTA2WjAYMRYwFAYD VQQDEw02ODdkMDFlMy1jYTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33wT+fzPpQClfNvhJPGW+BW2QfDLGkPDAMLHiONIPBaRNt/OhbsHcGOpYzvp S2XRosZzlg8pcxTYJK2WcRGRMWyPR98pAjRgaPSSAN+0iFbgsmdLUOZZLbVdHUUH Ubv+skDckJ1iwXE2X5kVU0kc6JE7TDuR7hgW8peATbXj6dsHu1LCqP9x0dRtD0Bz GDQb08MqSRdYt7s/A6vH6ygd+Yu9i0ZbAK9Qz3kjuT6YOnx5rbDnl5vYa0r7SKb+ iy7w7bR3iBh6qxw+r3cCGK6NndZYWfz4kQX9F2E0bWp3DQT3xjqPDYBHrbhOFt3E UxtQcdN6GUmF8qnQ5iX7iuEAqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOh5Fq4 RucVzYd1LB6TGN1QrF0zMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJs84APs+CIpthUvwFhzSkKSzr6qhYRSwrb71g/AwtCETqZ1m8zjPN dXABc3Uxvaq/9/fnYdVVoPSEnMpZBFVjDxBnn79/Dorgpgg2POSOT12r0VaHr0PT xIRLmv2qViAuCnfGxc6AZ8EaluVT/Az2sIwhQ5hv1U+VSPYSGxJbP/jwuOK5JNq+ Cc/q14ANxjrWpFd221/4kDqe+LwXNgdng7wwfHMFsnrP7GEgpMs28/sv3FOkmb4q NOKqquI/I8f8Ky+6ne3Iih+tnkBwWNkMNrYft5aOK5E7iw6GMQzOiia1rYtlW04v IH9x+dCkQ7lvYTaSdM0Jij3N10vT7xzr -----END CERTIFICATE-----Generated at Sun Jul 20 16:34:57 2025 by rpki-client