$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: Pt+kdA5+sPMbvW/4FqTZnX0rkzBv89zBcF4ambysic8= Subject key identifier: B2:0A:CB:1C:F4:3A:01:1B:32:32:E9:F1:4F:54:E1:93:C5:2F:81:58 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 355B Signing time: Fri 28 Mar 2025 14:50:13 +0000 Manifest this update: Fri 28 Mar 2025 14:50:12 +0000 Manifest next update: Fri 04 Apr 2025 14:50:12 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: fr16yMMwupIToWFKQaMjyf+MdeFLQe8iwLPwZscoRPU=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 14: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 15: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 27: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 28: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14035 (0x36d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Mar 28 14:50:12 2025 GMT Not After : Apr 4 14:50:12 2025 GMT Subject: CN=67e6b725-b47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a1:37:4e:41:fb:fc:82:9d:cc:c2:8c:86:8c: c3:ab:ed:74:bf:b5:c4:53:c8:8f:b1:b0:91:52:3e: 51:a8:92:82:ec:38:ea:41:fe:09:06:de:09:b5:fb: 72:ee:42:35:e6:2d:7e:9e:95:0b:74:99:c0:4c:11: c4:d4:e0:fa:a5:1a:5c:b3:64:f8:86:24:4d:b2:2c: e9:b3:c0:fe:f4:d2:e9:8d:ff:92:5b:03:b6:1e:86: f6:b9:83:ef:2b:81:d3:c3:25:6e:a7:14:d0:ae:49: b4:28:47:3f:b6:03:50:5d:2d:bc:f1:3c:1a:19:b3: d0:d4:c3:78:0c:40:1d:7a:a4:33:8a:fc:d0:36:87: 90:5a:49:47:ac:60:69:c5:e8:12:65:4e:24:02:6b: 95:e6:52:e7:bf:24:dc:a7:25:84:87:72:47:bd:5b: fa:34:1c:d9:58:e2:03:dc:e2:63:b7:82:ea:1e:24: c5:57:4d:c3:f7:92:14:52:37:7e:6b:03:39:2a:c5: 29:8a:e1:23:d1:f2:12:87:a8:93:22:68:d4:6a:17: 4c:5c:5f:b2:30:1f:8a:7e:22:c6:2d:93:dd:0d:7e: f8:3f:e8:ee:e3:e2:80:60:98:f4:d8:74:f8:e7:66: d0:0d:54:57:e0:2e:cf:75:4a:6e:15:38:fc:0a:3d: 8e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0A:CB:1C:F4:3A:01:1B:32:32:E9:F1:4F:54:E1:93:C5:2F:81:58 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a4:5f:ff:32:6f:0d:ea:33:a6:9f:1c:6e:f6:07:8c:84:e2: 77:f1:73:b7:35:08:ff:f3:ca:e0:31:81:bf:05:7e:73:33:ae: ac:01:8e:c6:89:97:f2:10:6d:35:df:a7:9f:aa:94:8b:cf:3e: 25:d7:99:34:5e:6b:01:5e:01:b4:bf:b3:3f:ef:26:3e:c5:1d: 1f:ec:a4:e6:0a:89:15:4c:2f:8c:67:e2:0d:4f:55:e0:a9:bc: d1:6e:c1:03:6a:b2:73:6f:3f:eb:e3:c4:f1:f6:13:8d:26:6e: 1e:ad:d4:a4:e3:c0:b0:c8:a7:0f:81:72:6b:73:43:5f:b4:a9: e7:d5:47:a8:6d:b7:53:54:08:c5:8f:7a:51:98:fd:3d:91:a1: 8e:87:31:02:17:01:22:e5:e6:32:c5:b5:dd:cd:57:ba:f8:84: 0e:08:3a:2a:59:10:fc:4e:fd:03:c5:59:32:a9:b2:79:6e:6e: 48:ee:64:83:ad:48:b6:bf:65:5f:e1:b1:d9:a3:b8:e8:0f:4a: 62:cf:e5:57:6a:0d:b5:ff:ee:35:88:1b:02:a8:7d:aa:04:4e: 22:04:ab:4a:c9:24:b3:ab:f6:73:f1:d4:6c:87:2f:bf:51:a7: ab:ba:b4:cc:28:db:3a:55:e2:1c:3c:f6:9c:16:d6:f4:b3:ab: 28:af:62:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzI4MTQ1MDEyWhcNMjUwNDA0MTQ1MDEyWjAYMRYwFAYD VQQDEw02N2U2YjcyNS1iNDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6E3TkH7/IKdzMKMhozDq+10v7XEU8iPsbCRUj5RqJKC7DjqQf4JBt4Jtfty 7kI15i1+npULdJnATBHE1OD6pRpcs2T4hiRNsizps8D+9NLpjf+SWwO2Hob2uYPv K4HTwyVupxTQrkm0KEc/tgNQXS288TwaGbPQ1MN4DEAdeqQzivzQNoeQWklHrGBp xegSZU4kAmuV5lLnvyTcpyWEh3JHvVv6NBzZWOID3OJjt4LqHiTFV03D95IUUjd+ awM5KsUpiuEj0fISh6iTImjUahdMXF+yMB+KfiLGLZPdDX74P+ju4+KAYJj02HT4 52bQDVRX4C7PdUpuFTj8Cj2O7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIKyxz0 OgEbMjLp8U9U4ZPFL4FYMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACpF//Mm8N6jOmnxxu9geMhOJ38XO3NQj/88rgMYG/BX5zM66sAY7G iZfyEG0136efqpSLzz4l15k0XmsBXgG0v7M/7yY+xR0f7KTmCokVTC+MZ+INT1Xg qbzRbsEDarJzbz/r48Tx9hONJm4erdSk48CwyKcPgXJrc0NftKnn1UeobbdTVAjF j3pRmP09kaGOhzECFwEi5eYyxbXdzVe6+IQOCDoqWRD8Tv0DxVkyqbJ5bm5I7mSD rUi2v2Vf4bHZo7joD0piz+VXag21/+41iBsCqH2qBE4iBKtKySSzq/Zz8dRshy+/ UaerurTMKNs6VeIcPPacFtb0s6sor2KH -----END CERTIFICATE-----Generated at Fri Apr 4 08:06:13 2025 by rpki-client