$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: t/Gq/2KpwoBPIjkW2anMnlPdjzyOQ5uFkRFZN7f74+o= Subject key identifier: A3:6B:AF:8D:44:41:F9:9D:ED:22:88:7D:3C:6B:4B:A9:3E:E9:66:CC Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 373F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 35C6 Signing time: Wed 22 Oct 2025 14:52:00 +0000 Manifest this update: Wed 22 Oct 2025 14:51:59 +0000 Manifest next update: Wed 29 Oct 2025 14:51:59 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: St3bmXZt7ZArNhllNqSHfaj7sKP6JC7SOOXEg6utfsI=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 15: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 16: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 17: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 22: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: EF5779B09DD611F0BB1A500DC4F9AE02.roa (hash: 74RIIXCsVyk2LOqxXGG8myKMnT9xwaL2IEwmBulTtc4=) 26: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 27: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 28: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 29: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 30: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 31: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14143 (0x373f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Oct 22 14:51:59 2025 GMT Not After : Oct 29 14:51:59 2025 GMT Subject: CN=68f8ef8f-610f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:13:33:55:77:fc:58:57:88:f6:42:d5:3f:c4: 07:69:77:bf:6f:11:3a:06:c2:69:31:f4:29:65:bd: 24:1a:55:96:fe:77:19:e8:ac:0a:a7:cc:4e:b5:d8: 09:12:1d:ab:97:cd:a8:62:9b:70:f1:61:cf:68:6f: 06:aa:81:8b:c4:c1:dc:35:7a:82:fd:8f:d3:7c:f5: 2b:37:a7:9f:c1:e7:1f:ce:98:f5:de:58:d4:d3:1e: d9:fa:bc:6e:fa:a2:be:91:da:69:62:45:28:4d:f2: 65:01:42:41:a4:39:d5:65:97:38:95:b7:a3:75:09: 53:35:70:ff:dd:1d:c3:bc:e3:a2:73:e5:34:96:d0: 53:2b:01:86:58:42:0b:cc:57:ec:f2:b5:9d:4f:5a: be:b6:ec:76:37:53:4a:98:a2:fb:45:7c:4d:13:47: e8:71:d1:1d:5c:73:ea:f4:13:a3:74:34:11:b1:f9: 90:3c:85:18:2d:5f:39:85:d9:d2:e5:ee:03:85:df: 09:da:03:45:84:07:07:17:7f:63:05:f2:9d:8e:d0: c1:5b:e5:42:60:44:02:5a:11:c0:a6:d5:84:fe:7b: 13:c5:9a:f4:18:f1:9e:42:c3:a7:ad:5f:4a:aa:37: 1e:3e:25:4d:42:34:31:6d:77:a7:a3:76:d9:d9:6b: 8c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6B:AF:8D:44:41:F9:9D:ED:22:88:7D:3C:6B:4B:A9:3E:E9:66:CC X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:04:98:85:b2:eb:75:c8:09:b4:8d:a6:cf:83:a9:42:c5:3f: cc:2a:39:b5:a2:40:e6:d0:5b:31:a0:20:b7:eb:eb:c2:35:5f: 48:02:b3:fd:92:0a:82:91:10:d5:c6:70:8b:8c:04:d5:28:65: 7f:3e:eb:73:31:de:a2:93:ac:39:5f:73:d7:23:ee:7d:4b:cf: b8:ff:07:03:da:f6:22:33:23:f1:10:ff:40:39:1f:4e:fb:19: 2b:7d:62:77:38:eb:86:cf:e0:a1:2e:cd:62:a5:ff:24:04:91: 17:68:24:6f:99:d7:6e:f2:d0:bd:12:2c:c8:2d:0f:07:74:bf: 3a:a5:e7:dc:a5:9c:4b:42:f1:ae:0c:4e:5b:fb:f4:46:e6:ab: 13:12:2f:4a:25:03:a4:1b:72:14:e3:7b:be:35:ba:f0:40:19: c3:2d:97:31:80:0d:7d:ba:10:e8:8f:20:18:fe:9f:d9:d6:29: a2:0f:c0:2b:6c:64:4c:b2:ea:d3:92:51:91:90:e7:60:08:2b: 0f:27:ca:d3:f1:cf:2a:23:51:95:77:b6:f0:22:53:89:62:8f: ec:b9:13:7d:56:d4:44:dd:be:67:8b:be:7c:c5:c9:c4:ff:e5: 82:5e:63:58:df:30:84:ca:6a:74:2e:80:c5:08:6f:f1:ef:a6: 47:52:72:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUxMDIyMTQ1MTU5WhcNMjUxMDI5MTQ1MTU5WjAYMRYwFAYD VQQDEw02OGY4ZWY4Zi02MTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RMzVXf8WFeI9kLVP8QHaXe/bxE6BsJpMfQpZb0kGlWW/ncZ6KwKp8xOtdgJ Eh2rl82oYptw8WHPaG8GqoGLxMHcNXqC/Y/TfPUrN6efwecfzpj13ljU0x7Z+rxu +qK+kdppYkUoTfJlAUJBpDnVZZc4lbejdQlTNXD/3R3DvOOic+U0ltBTKwGGWEIL zFfs8rWdT1q+tux2N1NKmKL7RXxNE0focdEdXHPq9BOjdDQRsfmQPIUYLV85hdnS 5e4Dhd8J2gNFhAcHF39jBfKdjtDBW+VCYEQCWhHAptWE/nsTxZr0GPGeQsOnrV9K qjcePiVNQjQxbXeno3bZ2WuMYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNrr41E Qfmd7SKIfTxrS6k+6WbMMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBJiFsut1yAm0jabPg6lCxT/MKjm1okDm0FsxoCC36+vCNV9IArP9 kgqCkRDVxnCLjATVKGV/PutzMd6ik6w5X3PXI+59S8+4/wcD2vYiMyPxEP9AOR9O +xkrfWJ3OOuGz+ChLs1ipf8kBJEXaCRvmddu8tC9EizILQ8HdL86pefcpZxLQvGu DE5b+/RG5qsTEi9KJQOkG3IU43u+NbrwQBnDLZcxgA19uhDojyAY/p/Z1imiD8Ar bGRMsurTklGRkOdgCCsPJ8rT8c8qI1GVd7bwIlOJYo/suRN9VtRE3b5ni758xcnE /+WCXmNY3zCEymp0LoDFCG/x76ZHUnKf -----END CERTIFICATE-----Generated at Wed Oct 22 21:40:04 2025 by rpki-client