$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: OXw+I+cpbFlOuatYAmxWcCYsZdj5anGyOXE8gAzeJTA= Subject key identifier: 18:41:B3:B3:0B:CE:4C:28:6A:E3:EC:73:1F:AF:CD:6B:93:37:F8:48 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 3725 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 35AD Signing time: Thu 04 Sep 2025 14:49:33 +0000 Manifest this update: Thu 04 Sep 2025 14:49:33 +0000 Manifest next update: Thu 11 Sep 2025 14:49:33 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: VxUJ7ETLC22GUtJfQZM3PFSvqoY6xt/4OhbDKCgIfN4=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 15: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 16: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 17: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 22: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 27: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 28: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14117 (0x3725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Sep 4 14:49:33 2025 GMT Not After : Sep 11 14:49:33 2025 GMT Subject: CN=68b9a6fd-0d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:1f:71:c9:54:86:51:70:ff:24:a1:cb:81: 57:72:58:d6:10:1c:d8:db:36:9d:d6:4c:c4:54:b9: 7f:be:9f:13:19:fe:12:c9:72:2c:9e:a2:c0:cb:c8: 87:5a:64:e2:1c:d0:08:4c:64:08:bd:6f:66:19:6b: 95:fe:34:14:6d:53:6a:94:c3:9a:af:70:5d:51:3f: 95:0d:ab:b3:33:3d:78:c9:52:a8:59:aa:f0:72:1a: 02:bf:4d:e8:a4:e8:b9:42:4f:48:be:c4:6e:1a:75: b0:c1:5d:ea:5b:52:c3:6b:3d:47:02:3e:78:6f:d5: 33:c1:f6:aa:dd:67:b3:4b:2e:f6:80:47:1b:73:4d: 6b:98:0f:07:4e:21:5d:91:99:28:ff:c6:75:79:07: 0d:48:bf:30:6d:5c:db:c3:6e:2d:b5:f2:d8:bc:ed: 08:98:3e:77:67:3c:0a:72:bd:f3:2a:1a:c9:5a:1a: ee:ab:b3:c8:41:3f:6f:48:47:a4:a7:bb:a1:dc:fa: aa:53:2a:d9:05:f7:01:18:4a:04:a8:c0:2c:02:fd: 5f:f0:cc:37:06:df:a5:91:cf:d9:2e:8b:a1:5b:dd: 85:3c:6b:a4:19:78:eb:4d:56:b2:c1:6f:62:53:eb: 71:4c:d2:b4:35:74:49:b3:28:2a:80:a7:88:34:15: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:41:B3:B3:0B:CE:4C:28:6A:E3:EC:73:1F:AF:CD:6B:93:37:F8:48 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a3:cb:b7:1c:f8:d6:80:27:db:7c:fe:45:b6:c3:da:2e:6a: 42:99:91:ad:51:ab:88:0d:5f:b7:f4:23:f7:dd:8b:83:94:ba: 5e:c0:74:c9:b7:89:cd:2e:8a:7d:c5:27:b0:18:ae:b2:ff:ba: 1c:b4:c5:f1:64:4d:7c:2d:25:10:dc:12:a1:37:57:98:5e:59: b6:14:dd:8a:25:ab:32:ce:1a:9c:10:e4:7f:c7:2d:56:bf:6e: cf:fa:66:9b:76:66:0f:04:56:79:a2:18:b8:1f:f3:a9:2e:1e: e4:53:4d:cd:d7:95:ee:42:eb:44:84:61:e0:81:dc:b8:76:27: e2:e1:ea:1d:2e:73:ef:25:02:34:87:30:30:84:29:f1:7c:b2: bf:bf:6b:ac:21:69:95:06:db:19:90:75:af:bd:39:43:38:bf: 47:f2:dc:6e:8e:a9:9d:62:98:a5:67:e7:40:63:43:e9:db:fa: be:b4:de:a2:95:a7:e4:e2:4c:ea:42:51:75:c7:9f:7f:0c:0c: 05:c5:8a:5b:11:aa:6c:3f:72:cd:ef:74:3d:8c:bf:ca:82:6d: 24:d9:34:bf:94:ba:7a:db:f8:d3:fe:4c:ff:68:23:89:7b:70: 2e:d1:c2:bb:da:d5:6c:25:f4:2d:99:85:2a:35:5a:8d:55:07: 82:c2:da:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwOTA0MTQ0OTMzWhcNMjUwOTExMTQ0OTMzWjAYMRYwFAYD VQQDEw02OGI5YTZmZC0wZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkYfcclUhlFw/yShy4FXcljWEBzY2zad1kzEVLl/vp8TGf4SyXIsnqLAy8iH WmTiHNAITGQIvW9mGWuV/jQUbVNqlMOar3BdUT+VDauzMz14yVKoWarwchoCv03o pOi5Qk9IvsRuGnWwwV3qW1LDaz1HAj54b9Uzwfaq3WezSy72gEcbc01rmA8HTiFd kZko/8Z1eQcNSL8wbVzbw24ttfLYvO0ImD53ZzwKcr3zKhrJWhruq7PIQT9vSEek p7uh3PqqUyrZBfcBGEoEqMAsAv1f8Mw3Bt+lkc/ZLouhW92FPGukGXjrTVaywW9i U+txTNK0NXRJsygqgKeINBUOFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhBs7ML zkwoauPscx+vzWuTN/hIMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCto8u3HPjWgCfbfP5FtsPaLmpCmZGtUauIDV+39CP33YuDlLpewHTJ t4nNLop9xSewGK6y/7octMXxZE18LSUQ3BKhN1eYXlm2FN2KJasyzhqcEOR/xy1W v27P+mabdmYPBFZ5ohi4H/OpLh7kU03N15XuQutEhGHggdy4difi4eodLnPvJQI0 hzAwhCnxfLK/v2usIWmVBtsZkHWvvTlDOL9H8txujqmdYpilZ+dAY0Pp2/q+tN6i lafk4kzqQlF1x59/DAwFxYpbEapsP3LN73Q9jL/Kgm0k2TS/lLp62/jT/kz/aCOJ e3Au0cK72tVsJfQtmYUqNVqNVQeCwtri -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:10 2025 by rpki-client