$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: AWp0Un6bu9ufKRvzd4gd9cvpSg2+w3P4XwzM9ngN4yc= Subject key identifier: E6:41:BA:E1:07:39:A8:42:BB:C0:40:C0:D0:8B:1A:BD:12:6D:86:37 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 357C Signing time: Sat 31 May 2025 14:46:43 +0000 Manifest this update: Sat 31 May 2025 14:46:42 +0000 Manifest next update: Sat 07 Jun 2025 14:46:42 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: GLcluSrtNVFtz8mHIOgQ9kjlYQcytJoX+vQTW071d3E=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 14: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 15: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 27: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 28: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14068 (0x36f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: May 31 14:46:42 2025 GMT Not After : Jun 7 14:46:42 2025 GMT Subject: CN=683b1652-a7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:03:ca:6b:46:dc:ba:ab:0b:27:ef:c0:63: d6:2d:f4:e1:35:89:2c:1f:38:61:52:45:af:d7:58: c1:43:09:75:6c:bf:68:6c:b0:0c:ec:f1:63:d7:b6: 7c:d2:e0:fb:3c:33:97:c1:b7:cb:6c:28:de:92:77: e3:a8:bf:c2:6a:41:d8:54:85:97:cb:94:b2:38:7d: a3:7d:94:ec:d3:b0:c1:e8:63:29:5c:36:97:3c:44: 09:18:c3:8a:92:0d:a1:33:18:0f:96:05:a0:13:45: c3:0f:d5:e0:88:ae:cf:87:5e:1d:dc:b9:e9:f7:b7: 26:97:a2:4f:d2:fe:27:57:6e:7f:ed:8b:ae:63:12: 8b:24:b1:26:08:d0:d5:04:47:cf:13:1a:12:46:b6: 97:f4:54:d2:fe:89:55:8d:d4:17:ea:ea:54:8c:52: 14:d0:79:a2:8f:9b:6a:dc:10:f3:8f:d9:ab:f3:d1: a6:b1:38:7a:3b:dd:b9:da:99:8c:31:0c:d0:c9:53: c1:c9:49:b9:2d:66:b1:c7:32:c8:5b:51:fe:f8:2e: bf:d4:92:5e:d1:c0:f5:94:00:22:34:35:a7:b5:20: d3:09:0b:6f:f7:e2:84:22:15:dc:aa:bc:5a:d4:6e: 4f:a2:66:7e:3e:67:c6:d8:ca:f1:0a:6b:fa:4a:55: 0f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:41:BA:E1:07:39:A8:42:BB:C0:40:C0:D0:8B:1A:BD:12:6D:86:37 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:52:7e:d3:bb:0d:ef:3b:9c:a0:a7:20:22:f9:a7:d6:49:1e: ee:e7:15:e4:de:38:e0:e8:41:3a:3d:d7:fb:77:62:2e:e4:2c: 50:6b:25:da:32:3b:31:f8:50:16:2c:b1:73:8a:76:0d:5c:9b: 28:fb:ad:6e:8d:42:1b:b4:8f:86:f6:61:8c:ba:c1:51:40:7c: 9b:3f:95:20:cc:d2:de:e9:c6:98:09:aa:73:95:2f:45:cd:bf: 14:80:20:45:fb:f3:fc:97:7d:fb:b5:17:8f:50:d3:a1:14:62: b9:c5:78:22:e2:2b:20:da:13:f6:86:e2:df:35:55:23:e4:34: 5d:49:f0:1d:f9:90:35:41:84:05:a2:14:52:93:e8:e3:aa:fc: 2c:39:56:b8:73:6a:80:ac:79:d8:3c:62:2a:e4:ba:fa:c3:01: 08:4d:db:dd:1d:60:c1:65:06:c5:d6:05:b3:17:73:67:e7:19: dd:cb:5b:62:14:73:34:a7:f9:9c:fa:e1:ae:71:03:52:52:2d: 0b:91:a7:32:c6:8e:5d:d9:68:e5:ad:1c:c4:03:19:da:1f:fb: 09:b7:a0:c5:ae:c7:bb:86:90:60:46:7c:36:c4:39:f7:22:35: 50:7a:03:ab:71:5d:f6:c3:ce:18:bd:03:cf:37:62:35:15:a1: 0b:be:8d:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwNTMxMTQ0NjQyWhcNMjUwNjA3MTQ0NjQyWjAYMRYwFAYD VQQDEw02ODNiMTY1Mi1hN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTQDymtG3LqrCyfvwGPWLfThNYksHzhhUkWv11jBQwl1bL9obLAM7PFj17Z8 0uD7PDOXwbfLbCjeknfjqL/CakHYVIWXy5SyOH2jfZTs07DB6GMpXDaXPEQJGMOK kg2hMxgPlgWgE0XDD9XgiK7Ph14d3Lnp97cml6JP0v4nV25/7YuuYxKLJLEmCNDV BEfPExoSRraX9FTS/olVjdQX6upUjFIU0Hmij5tq3BDzj9mr89GmsTh6O9252pmM MQzQyVPByUm5LWaxxzLIW1H++C6/1JJe0cD1lAAiNDWntSDTCQtv9+KEIhXcqrxa 1G5PomZ+PmfG2MrxCmv6SlUPHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZBuuEH OahCu8BAwNCLGr0SbYY3MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOUn7Tuw3vO5ygpyAi+afWSR7u5xXk3jjg6EE6Pdf7d2Iu5CxQayXa Mjsx+FAWLLFzinYNXJso+61ujUIbtI+G9mGMusFRQHybP5UgzNLe6caYCapzlS9F zb8UgCBF+/P8l337tRePUNOhFGK5xXgi4isg2hP2huLfNVUj5DRdSfAd+ZA1QYQF ohRSk+jjqvwsOVa4c2qArHnYPGIq5Lr6wwEITdvdHWDBZQbF1gWzF3Nn5xndy1ti FHM0p/mc+uGucQNSUi0Lkacyxo5d2WjlrRzEAxnaH/sJt6DFrse7hpBgRnw2xDn3 IjVQegOrcV32w84YvQPPN2I1FaELvo1Y -----END CERTIFICATE-----Generated at Sat May 31 17:44:02 2025 by rpki-client