$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: EQSft50ekFs3pF8QE+HpRQg6lktfX7FZ96eYt/D56mo= Subject key identifier: 5E:21:6C:51:73:D3:8C:E9:B3:6C:53:36:21:96:21:1D:DE:79:76:15 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0F79 Signing time: Fri 30 May 2025 17:44:29 +0000 Manifest this update: Fri 30 May 2025 17:44:29 +0000 Manifest next update: Fri 06 Jun 2025 17:44:29 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: TOnVFVWkMH6i/iJMyNV3P6CyyaBGKeSYYF7k44vJpwY=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4002 (0xfa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: May 30 17:44:29 2025 GMT Not After : Jun 6 17:44:29 2025 GMT Subject: CN=6839ee7d-e7e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ed:07:1d:fc:5d:e9:5d:fc:3a:5d:ac:ba:4c: eb:9f:bf:a9:52:1d:eb:dd:20:72:6c:34:bb:17:ea: f9:9e:d2:e7:28:76:10:98:39:f6:bd:0e:06:c3:34: 3d:7a:8e:f2:56:30:91:a5:3b:de:b3:d2:c3:e1:db: dc:42:75:93:6d:ed:02:6b:7d:64:2e:dd:14:ad:4a: 67:7f:cd:75:44:34:80:25:b6:9f:73:dc:97:a9:ba: 38:be:f5:9f:32:41:db:30:1b:ee:0d:fe:9c:a3:88: 72:36:a2:a0:de:42:ad:00:8b:0a:14:a9:0b:f5:83: 45:d0:2a:87:b0:1a:a1:32:7a:b4:48:5f:a1:a6:3b: f0:04:a1:a7:37:04:8f:84:86:b0:58:26:e0:47:7f: 1c:62:f0:f2:22:1b:38:b4:cd:a8:4b:30:1b:f9:98: 8a:f5:f1:ae:af:c5:b2:17:8b:95:3b:c7:2f:a8:fb: 07:02:25:ee:17:c9:be:02:13:99:d4:8f:f6:0b:4a: b2:6a:91:28:d3:e8:29:f4:f5:cf:88:88:19:75:7c: 17:62:84:32:79:9f:2f:40:70:69:ce:54:4d:45:de: 83:d7:6f:fe:f7:46:43:9f:3b:88:23:9d:47:eb:95: 39:08:90:ec:47:56:53:66:94:47:c2:bd:83:1f:fd: 0d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:21:6C:51:73:D3:8C:E9:B3:6C:53:36:21:96:21:1D:DE:79:76:15 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:15:12:2f:df:da:0c:3c:96:d3:08:2b:92:2d:3e:b4:aa:57: af:15:3b:75:6c:f1:e4:cc:45:76:4d:b6:cb:4b:9d:6a:26:48: 12:9c:09:df:72:5b:f5:52:90:fb:2b:51:4d:3e:d4:20:46:8a: 7a:c0:6c:b7:26:86:b7:57:f0:88:90:8a:4e:6f:c8:56:3a:3d: f5:ae:7a:65:8c:b4:a7:05:01:51:08:a3:43:04:8a:5c:0a:99: ce:8d:a9:6d:38:ef:5f:10:c5:1c:92:24:7c:72:b9:5d:01:4d: a0:3a:ec:5d:d4:fc:e9:e0:c3:55:e2:b7:37:b9:80:eb:8e:c6: c7:b0:1c:34:67:85:8e:37:80:ff:21:4e:21:62:31:df:88:2d: 17:69:46:09:3c:26:8a:67:62:5c:6c:f6:bf:55:69:96:62:76: e2:10:b7:84:56:14:45:0b:ba:d6:1a:67:dc:b3:b2:a2:c7:df: d9:81:0e:ab:79:57:4e:c0:f4:c2:9c:9d:65:c6:cf:42:d5:09: c0:d7:03:a3:1c:3c:da:57:77:55:9b:87:7c:de:38:23:a9:ab: af:2f:76:84:02:70:8b:a7:24:68:6a:09:e2:bd:a4:7b:24:f8: a4:9c:c7:03:25:47:6e:26:5e:40:a8:2d:fe:97:35:d9:1e:dd: 6f:e2:28:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUwNTMwMTc0NDI5WhcNMjUwNjA2MTc0NDI5WjAYMRYwFAYD VQQDEw02ODM5ZWU3ZC1lN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O0HHfxd6V38Ol2sukzrn7+pUh3r3SBybDS7F+r5ntLnKHYQmDn2vQ4GwzQ9 eo7yVjCRpTves9LD4dvcQnWTbe0Ca31kLt0UrUpnf811RDSAJbafc9yXqbo4vvWf MkHbMBvuDf6co4hyNqKg3kKtAIsKFKkL9YNF0CqHsBqhMnq0SF+hpjvwBKGnNwSP hIawWCbgR38cYvDyIhs4tM2oSzAb+ZiK9fGur8WyF4uVO8cvqPsHAiXuF8m+AhOZ 1I/2C0qyapEo0+gp9PXPiIgZdXwXYoQyeZ8vQHBpzlRNRd6D12/+90ZDnzuII51H 65U5CJDsR1ZTZpRHwr2DH/0NEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4hbFFz 04zps2xTNiGWIR3eeXYVMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4FRIv39oMPJbTCCuSLT60qlevFTt1bPHkzEV2TbbLS51qJkgSnAnf clv1UpD7K1FNPtQgRop6wGy3Joa3V/CIkIpOb8hWOj31rnpljLSnBQFRCKNDBIpc CpnOjaltOO9fEMUckiR8crldAU2gOuxd1Pzp4MNV4rc3uYDrjsbHsBw0Z4WON4D/ IU4hYjHfiC0XaUYJPCaKZ2JcbPa/VWmWYnbiELeEVhRFC7rWGmfcs7Kix9/ZgQ6r eVdOwPTCnJ1lxs9C1QnA1wOjHDzaV3dVm4d83jgjqauvL3aEAnCLpyRoagnivaR7 JPiknMcDJUduJl5AqC3+lzXZHt1v4ig7 -----END CERTIFICATE-----Generated at Sat May 31 17:27:56 2025 by rpki-client