$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: 2hBEazasPy6CK0t51KSGx8lNxoNFaf8OaSRSiOiqwfw= Subject key identifier: C5:ED:B1:FB:3F:F1:B6:59:60:59:16:69:98:60:03:EF:53:96:46:74 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FA4 Signing time: Fri 22 Aug 2025 17:38:54 +0000 Manifest this update: Fri 22 Aug 2025 17:38:54 +0000 Manifest next update: Fri 29 Aug 2025 17:38:54 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: IgH0WlpdjdBVPjp/U4GLNfVOqzolghIt/CjvFQpUcyI=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4045 (0xfcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Aug 22 17:38:54 2025 GMT Not After : Aug 29 17:38:54 2025 GMT Subject: CN=68a8ab2e-da4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:69:33:d7:76:02:17:a2:93:89:fa:07:9e: e0:56:ea:bb:ee:d7:ed:6c:ef:b0:e6:c4:cc:7a:4f: 3d:8f:ef:9d:ef:ee:7e:7f:e8:f2:9e:e7:79:38:85: 55:49:6d:26:2f:22:40:d2:a6:ca:92:a9:e4:56:35: 34:ef:31:c9:3a:b4:38:95:04:9c:f8:0e:b2:fa:6d: 2c:6c:ca:44:8e:1f:b9:6c:94:0c:89:18:a8:7e:31: b9:7d:16:70:57:9c:31:e5:d0:b0:a7:80:a0:17:a4: 70:bb:63:f2:ac:a8:6a:87:c3:d8:07:00:c0:b0:9e: a5:ee:52:20:71:8b:ff:b8:61:55:7c:72:d0:3f:d4: 8f:7e:05:8f:db:53:ad:4c:77:9c:72:9e:4d:16:41: eb:10:20:5c:25:aa:e1:ff:aa:b7:91:cb:61:cc:e6: 16:76:c3:79:73:33:24:f6:f2:b7:9d:14:4b:a2:2b: 60:8c:02:99:68:7d:0c:5e:72:b1:eb:c6:a5:02:f2: b3:e1:0f:82:d1:dd:8a:a3:b7:88:91:d6:62:a9:33: e3:68:b4:6d:92:6d:26:e1:4a:a6:6e:6d:6f:d1:e8: 96:35:82:b2:56:31:90:61:e8:d7:a8:a5:68:6a:62: aa:2d:17:47:6d:05:1d:b8:30:e8:66:98:62:0f:d5: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:ED:B1:FB:3F:F1:B6:59:60:59:16:69:98:60:03:EF:53:96:46:74 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:70:92:6e:6d:92:2e:63:e0:a0:24:76:4a:81:3a:86:bf:c3: 08:75:c3:73:a4:3c:65:9f:ba:00:bc:f8:a7:fb:df:8e:07:6e: a8:cb:52:08:34:9f:88:fb:1d:8a:f5:3c:b6:10:6e:63:63:6f: 9f:dc:24:5a:63:1c:7b:e5:c7:2b:16:9e:c6:8f:30:94:24:a0: 2a:c0:99:d1:39:4d:4d:aa:13:5a:b0:28:10:39:ab:32:a8:81: c5:c8:93:40:f1:2f:99:c5:00:c0:4f:e7:87:81:76:f7:5d:68: c4:76:11:f3:0a:0e:87:f5:e5:ee:10:f3:d2:e3:7f:23:80:11: d9:a7:4f:66:ba:48:e2:67:d7:17:c1:29:09:c9:e0:7f:29:f7: 46:e7:9b:38:ee:3f:b7:56:0f:4a:17:a1:d1:73:2b:45:9a:09: c7:e6:63:f8:f3:c6:ac:e8:3c:ec:e7:96:07:1d:dd:bb:5d:65: 53:38:d0:6d:3a:12:f2:d2:8e:f5:dc:60:7c:af:5e:64:3b:2c: 0e:6b:76:f6:c3:2a:e2:0b:58:49:4b:c0:07:4c:77:11:89:0d: f3:4c:cd:20:75:27:bc:4d:00:31:8e:78:95:7c:e5:0c:b4:cd: 77:66:e2:f8:c1:74:47:98:68:a2:21:78:b0:99:04:71:61:af: 1d:5c:7b:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUwODIyMTczODU0WhcNMjUwODI5MTczODU0WjAYMRYwFAYD VQQDEw02OGE4YWIyZS1kYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JNpM9d2Aheik4n6B57gVuq77tftbO+w5sTMek89j++d7+5+f+jynud5OIVV SW0mLyJA0qbKkqnkVjU07zHJOrQ4lQSc+A6y+m0sbMpEjh+5bJQMiRiofjG5fRZw V5wx5dCwp4CgF6Rwu2PyrKhqh8PYBwDAsJ6l7lIgcYv/uGFVfHLQP9SPfgWP21Ot THeccp5NFkHrECBcJarh/6q3kcthzOYWdsN5czMk9vK3nRRLoitgjAKZaH0MXnKx 68alAvKz4Q+C0d2Ko7eIkdZiqTPjaLRtkm0m4Uqmbm1v0eiWNYKyVjGQYejXqKVo amKqLRdHbQUduDDoZphiD9UKxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXtsfs/ 8bZZYFkWaZhgA+9TlkZ0MB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmcJJubZIuY+CgJHZKgTqGv8MIdcNzpDxln7oAvPin+9+OB26oy1II NJ+I+x2K9Ty2EG5jY2+f3CRaYxx75ccrFp7GjzCUJKAqwJnROU1NqhNasCgQOasy qIHFyJNA8S+ZxQDAT+eHgXb3XWjEdhHzCg6H9eXuEPPS438jgBHZp09mukjiZ9cX wSkJyeB/KfdG55s47j+3Vg9KF6HRcytFmgnH5mP488as6Dzs55YHHd27XWVTONBt OhLy0o713GB8r15kOywOa3b2wyriC1hJS8AHTHcRiQ3zTM0gdSe8TQAxjniVfOUM tM13ZuL4wXRHmGiiIXiwmQRxYa8dXHvK -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:10 2025 by rpki-client