$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: jW100LUZq/tB2A1IvHEIJF6GbnqDVX5Gi7lZBAd7oak= Subject key identifier: F1:1F:E9:69:2D:32:A7:85:5C:7A:29:AC:A1:C6:45:BB:0D:B6:5D:E1 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FC4 Signing time: Fri 24 Oct 2025 17:58:50 +0000 Manifest this update: Fri 24 Oct 2025 17:58:49 +0000 Manifest next update: Fri 31 Oct 2025 17:58:49 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: BBwHzCwEvJDb7nWa8VPdkR0T0cbslmCLEx0DQnJGCFM=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 17:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4077 (0xfed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Oct 24 17:58:49 2025 GMT Not After : Oct 31 17:58:49 2025 GMT Subject: CN=68fbbe5a-3b9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:32:ee:a4:a6:a1:5a:a1:9e:1e:b6:93:e7: 76:6b:cc:98:62:7c:99:c4:bc:1e:c2:18:5f:0b:be: fd:a9:3b:ee:f1:e0:39:d1:f1:15:cf:c2:7a:c3:10: 4a:c7:78:70:aa:f1:f9:b2:70:8e:32:bb:de:09:f8: 96:70:fe:c8:66:ca:d8:d9:15:35:11:98:6d:42:76: ca:38:16:6f:32:71:10:73:59:68:9a:b9:d8:7d:a7: 5b:2b:9d:60:a6:1a:b8:c3:cf:86:d5:49:4e:cc:56: 99:b1:4e:05:84:b2:96:88:2a:f2:0a:bf:5c:a2:e7: 46:07:84:87:3c:5f:b1:13:44:7c:23:30:62:b7:75: 11:3d:15:d5:5e:0c:4b:2a:f3:c6:0a:be:c8:33:21: 68:7c:7a:84:c8:b2:76:97:57:19:f6:12:b1:f3:58: 33:91:09:79:9f:6b:0c:bb:98:23:95:4f:b3:8c:87: 3a:7a:c2:91:3e:6d:96:c1:f6:da:e0:0d:3d:3a:e2: 8e:5a:cb:bf:85:4d:bd:01:22:d3:48:cb:e0:02:1f: c0:a6:16:df:36:84:7c:c1:62:87:04:33:fa:10:3d: b0:ac:46:24:87:99:db:99:f2:54:be:4b:99:80:16: df:00:27:d8:b5:57:50:a3:6f:2f:de:61:cd:df:dc: 95:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1F:E9:69:2D:32:A7:85:5C:7A:29:AC:A1:C6:45:BB:0D:B6:5D:E1 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ba:31:ed:24:98:be:e4:c9:39:95:f2:b9:75:86:c6:eb:54: 6f:ea:e0:b0:b6:c8:ed:11:09:ba:f5:93:2e:f3:4a:4b:de:d0: d3:cf:81:de:a4:6f:59:f0:2c:ee:38:03:b3:7e:a2:4f:ea:c9: b2:48:ed:bc:62:d8:ff:0f:1a:1f:8a:08:b8:4c:e5:75:73:41: 63:0c:d8:80:5c:6f:60:a7:c5:58:88:c2:97:93:14:cc:3e:88: 33:6a:dd:72:18:c2:97:f5:1f:6a:15:cb:1b:61:4d:cc:d8:34: 95:1a:d5:b1:49:67:51:40:92:e2:b7:c3:1c:18:9f:4b:0f:46: 45:cd:45:21:58:aa:31:a2:74:38:03:3e:33:de:37:4c:ac:7f: 9b:9f:a9:97:1d:39:2b:96:74:c1:46:0f:fb:08:bd:87:8c:fd: e7:47:4a:8e:60:28:5a:82:10:d5:f6:49:25:34:f1:1e:d7:df: 94:e8:cb:d5:90:46:5d:a6:b8:9b:2f:54:d7:71:78:90:26:b2: 12:46:bf:ad:e6:9b:6c:37:3d:28:0e:1c:b8:6e:fc:69:a1:74: 24:bb:69:7f:bb:bc:80:84:50:15:9b:7b:26:b5:65:6d:b2:c2: fa:b0:86:6c:20:83:44:75:38:f8:08:8d:2d:fc:b8:dc:13:0a: 88:1b:b5:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUxMDI0MTc1ODQ5WhcNMjUxMDMxMTc1ODQ5WjAYMRYwFAYD VQQDEw02OGZiYmU1YS0zYjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv90y7qSmoVqhnh62k+d2a8yYYnyZxLwewhhfC779qTvu8eA50fEVz8J6wxBK x3hwqvH5snCOMrveCfiWcP7IZsrY2RU1EZhtQnbKOBZvMnEQc1lomrnYfadbK51g phq4w8+G1UlOzFaZsU4FhLKWiCryCr9coudGB4SHPF+xE0R8IzBit3URPRXVXgxL KvPGCr7IMyFofHqEyLJ2l1cZ9hKx81gzkQl5n2sMu5gjlU+zjIc6esKRPm2Wwfba 4A09OuKOWsu/hU29ASLTSMvgAh/AphbfNoR8wWKHBDP6ED2wrEYkh5nbmfJUvkuZ gBbfACfYtVdQo28v3mHN39yV7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEf6Wkt MqeFXHoprKHGRbsNtl3hMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCujHtJJi+5Mk5lfK5dYbG61Rv6uCwtsjtEQm69ZMu80pL3tDTz4He pG9Z8CzuOAOzfqJP6smySO28Ytj/Dxofigi4TOV1c0FjDNiAXG9gp8VYiMKXkxTM Pogzat1yGMKX9R9qFcsbYU3M2DSVGtWxSWdRQJLit8McGJ9LD0ZFzUUhWKoxonQ4 Az4z3jdMrH+bn6mXHTkrlnTBRg/7CL2HjP3nR0qOYChaghDV9kklNPEe19+U6MvV kEZdpribL1TXcXiQJrISRr+t5ptsNz0oDhy4bvxpoXQku2l/u7yAhFAVm3smtWVt ssL6sIZsIINEdTj4CI0t/LjcEwqIG7Wu -----END CERTIFICATE-----Generated at Sun Oct 26 09:03:26 2025 by rpki-client