$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: ZRFLi9P99RbyivQkFlkTqwZFWy7brW8aTkXvWM8fr0k= Subject key identifier: DD:83:C9:8D:74:4E:FE:DE:7E:83:D3:FE:C9:AF:2F:FF:E5:D0:53:8D Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FAC Signing time: Sat 06 Sep 2025 17:38:00 +0000 Manifest this update: Sat 06 Sep 2025 17:37:59 +0000 Manifest next update: Sat 13 Sep 2025 17:37:59 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: pgio98wIhn+sZidpb1wbmp1Zdexr3FmJka79MYqujNc=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4053 (0xfd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Sep 6 17:37:59 2025 GMT Not After : Sep 13 17:37:59 2025 GMT Subject: CN=68bc7177-7790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:4c:b5:36:f6:4b:30:a4:1d:b9:ca:50:5b: 19:f9:2c:4f:d0:63:a3:21:b1:f5:96:f0:7f:57:84: b0:63:fb:cc:a1:95:4d:28:69:c4:8c:35:9b:b7:d0: ab:ae:6c:15:3c:54:0c:63:f5:f6:89:d5:1e:cc:2f: b9:14:f6:69:a8:d5:96:1d:5d:3b:c5:47:9a:68:63: 05:68:9b:db:54:9a:f5:0e:b1:70:16:fe:90:3e:71: 75:5e:2f:18:f7:9f:e5:99:e2:00:2e:cc:f3:25:bd: 75:51:a0:49:fe:bf:61:2f:95:e2:be:bb:34:91:bc: 65:01:b9:94:f6:50:3d:26:3b:b5:a7:52:26:7a:99: 00:54:ab:cc:e6:ac:10:2b:2e:c8:1e:2e:31:c3:6f: 69:cc:ed:f6:8b:62:84:63:4b:fd:5d:87:a6:b8:d0: 71:44:25:9e:e2:bc:11:4b:d2:a6:84:8d:a3:bb:a7: ae:f1:5f:82:36:1b:7d:d6:dc:4a:c2:30:60:19:2e: a4:7f:c2:a4:bb:37:04:fc:76:6c:11:31:2d:f9:b6: eb:14:b9:2d:bd:41:82:cd:8c:6c:9a:31:63:8f:b1: 50:8f:0f:49:fd:8d:4a:ce:64:9e:62:4e:fc:59:f9: 98:ff:bb:27:9c:db:d3:f8:38:32:45:0a:c1:8e:7c: 81:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:83:C9:8D:74:4E:FE:DE:7E:83:D3:FE:C9:AF:2F:FF:E5:D0:53:8D X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:99:19:dc:66:ce:5c:6f:62:e1:cf:bc:bc:4e:29:d6:95:80: b6:5d:99:c4:e7:c8:90:8b:a2:72:f7:f3:14:df:9a:13:5b:50: 38:5f:d1:5f:59:32:4f:b5:b8:cc:e9:3b:e6:43:dc:30:e1:8a: 2f:83:da:8c:4e:c1:04:5a:8f:d6:0b:21:22:41:8f:ef:d0:2d: 3a:4f:2f:7f:e0:ce:e0:89:1f:73:fe:49:33:33:58:7e:41:74: d1:9d:2c:b8:d6:7c:d1:13:23:c7:45:2e:b1:b5:a9:ab:ab:f0: 1c:fc:2a:98:0f:d6:f8:2e:51:3c:d2:4a:3e:cb:9a:63:a2:b9: 1d:4c:cb:b9:90:e3:2c:b7:c4:c9:41:b7:68:cf:0d:33:2e:4b: 99:56:67:b1:80:21:91:85:56:aa:29:ed:b4:4f:3d:54:6e:8c: 67:af:db:97:92:12:df:66:8e:a9:33:78:db:eb:07:f2:20:56: 89:67:14:b6:2a:aa:5b:55:b0:94:76:96:64:e6:b4:eb:c8:cf: f8:25:bd:d0:e0:12:9f:63:10:41:d5:ea:c7:ca:84:55:a4:3c: cb:8d:d8:5e:86:ef:19:c8:42:18:eb:33:ba:e1:76:3d:3f:77: 31:ed:90:90:6e:d9:d8:fc:86:a0:46:0a:27:e4:7a:32:c7:fe: 95:8f:b5:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUwOTA2MTczNzU5WhcNMjUwOTEzMTczNzU5WjAYMRYwFAYD VQQDEw02OGJjNzE3Ny03NzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyZMtTb2SzCkHbnKUFsZ+SxP0GOjIbH1lvB/V4SwY/vMoZVNKGnEjDWbt9Cr rmwVPFQMY/X2idUezC+5FPZpqNWWHV07xUeaaGMFaJvbVJr1DrFwFv6QPnF1Xi8Y 95/lmeIALszzJb11UaBJ/r9hL5Xivrs0kbxlAbmU9lA9Jju1p1ImepkAVKvM5qwQ Ky7IHi4xw29pzO32i2KEY0v9XYemuNBxRCWe4rwRS9KmhI2ju6eu8V+CNht91txK wjBgGS6kf8KkuzcE/HZsETEt+bbrFLktvUGCzYxsmjFjj7FQjw9J/Y1KzmSeYk78 WfmY/7snnNvT+DgyRQrBjnyBiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2DyY10 Tv7efoPT/smvL//l0FONMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsmRncZs5cb2Lhz7y8TinWlYC2XZnE58iQi6Jy9/MU35oTW1A4X9Ff WTJPtbjM6TvmQ9ww4Yovg9qMTsEEWo/WCyEiQY/v0C06Ty9/4M7giR9z/kkzM1h+ QXTRnSy41nzREyPHRS6xtamrq/Ac/CqYD9b4LlE80ko+y5pjorkdTMu5kOMst8TJ Qbdozw0zLkuZVmexgCGRhVaqKe20Tz1Uboxnr9uXkhLfZo6pM3jb6wfyIFaJZxS2 KqpbVbCUdpZk5rTryM/4Jb3Q4BKfYxBB1erHyoRVpDzLjdhehu8ZyEIY6zO64XY9 P3cx7ZCQbtnY/IagRgon5Hoyx/6Vj7Wm -----END CERTIFICATE-----Generated at Sun Sep 7 14:25:41 2025 by rpki-client