$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: Pvz8GEnhBwRN9oobcUkPZbclKpGl+ss4vodUMdyLj8o= Subject key identifier: 6F:43:EC:5F:F6:FB:A5:96:C4:FB:2F:E5:B8:EB:B2:D2:05:8D:47:FD Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FC1 Signing time: Sat 18 Oct 2025 18:05:43 +0000 Manifest this update: Sat 18 Oct 2025 18:05:42 +0000 Manifest next update: Sat 25 Oct 2025 18:05:42 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: riCR5DwGEmgj98UY4vp0esLxTSilj6VuOU5NGH34fGY=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4074 (0xfea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Oct 18 18:05:42 2025 GMT Not After : Oct 25 18:05:42 2025 GMT Subject: CN=68f3d6f7-b9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:d8:1f:fc:b5:fa:5f:65:9a:82:89:66:ae: 55:40:8a:30:ed:96:b1:22:a5:e4:fd:bc:d4:0b:0f: 88:12:bf:5c:d6:bf:c5:aa:07:43:56:22:c7:07:eb: 25:72:7e:51:cb:42:12:e4:08:03:04:20:c8:a2:70: 29:51:9b:ea:c9:c1:ca:f6:51:e9:cf:76:94:8e:88: 7e:92:3b:2b:8e:0b:ba:b7:5a:3b:04:98:ed:f4:5b: bc:6d:7f:0d:65:22:eb:fa:39:bc:68:8d:8b:19:b9: c5:4b:33:a7:1b:44:a2:a0:bc:16:aa:a7:60:41:e8: 68:e9:28:8c:7a:c3:6a:67:aa:a1:2a:72:5b:06:89: 8b:8f:9d:77:57:b9:c7:26:3b:e5:6e:1a:c4:68:ac: 43:37:b1:51:33:0a:80:64:02:a7:17:45:07:4d:4a: 3b:12:ba:9f:d2:64:19:7f:92:1a:85:e2:6b:80:0c: e0:ca:0b:d3:27:8d:e0:72:e4:8d:a5:80:ee:ea:e7: 02:f2:c9:83:8d:25:94:c2:f9:5e:81:1a:9b:2d:c3: 1a:63:ed:85:1f:83:56:e6:9d:dd:77:61:47:4b:68: 20:76:b2:65:a5:5b:39:71:d0:f0:35:3a:51:9b:ac: ab:4f:c1:57:a8:45:93:f1:47:08:9b:13:29:8e:fd: 8b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:43:EC:5F:F6:FB:A5:96:C4:FB:2F:E5:B8:EB:B2:D2:05:8D:47:FD X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e8:a9:79:b4:9e:f9:50:3b:96:0c:0c:e3:d2:06:e6:b8:2c: 56:81:b8:ec:77:31:11:dd:b2:36:24:3c:5a:dd:cb:46:19:02: 95:3b:d4:d8:bc:2d:3d:73:eb:2e:6e:8f:f7:65:88:3a:ee:4c: ae:19:db:ff:c0:ae:dc:21:7a:f4:9d:80:ac:34:c6:ca:ac:9f: 17:51:e3:a1:fa:83:fc:ad:c8:22:92:cf:74:9c:76:79:34:36: 96:ca:af:5f:6a:c8:41:3c:cf:b0:6d:43:ec:8f:91:f4:8a:74: 3e:e9:ff:88:e6:c6:c4:cf:26:f5:e5:69:d3:28:19:28:70:9c: 63:54:6e:a8:7a:ae:a5:4e:f3:42:c7:99:bd:e4:78:3e:03:81: c5:b2:aa:d2:60:45:f9:cd:14:6c:f9:cf:c6:e3:06:ab:34:70: f2:cc:56:90:b2:ed:0c:54:e2:26:ee:36:81:c5:7f:47:8a:fc: ff:ef:07:3e:30:20:e2:f6:73:10:e4:0a:37:51:77:c8:9b:0a: 00:08:cd:70:09:26:5e:d5:db:3c:47:99:5b:9a:fd:3b:91:07: b7:f3:cc:98:88:22:cb:9f:29:5d:60:ce:46:71:79:55:53:0d: 50:1d:fa:92:b9:a7:bd:1c:fe:3e:22:9e:7e:8f:57:94:f5:d1: ef:fd:e5:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUxMDE4MTgwNTQyWhcNMjUxMDI1MTgwNTQyWjAYMRYwFAYD VQQDEw02OGYzZDZmNy1iOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2y3YH/y1+l9lmoKJZq5VQIow7ZaxIqXk/bzUCw+IEr9c1r/FqgdDViLHB+sl cn5Ry0IS5AgDBCDIonApUZvqycHK9lHpz3aUjoh+kjsrjgu6t1o7BJjt9Fu8bX8N ZSLr+jm8aI2LGbnFSzOnG0SioLwWqqdgQeho6SiMesNqZ6qhKnJbBomLj513V7nH JjvlbhrEaKxDN7FRMwqAZAKnF0UHTUo7Erqf0mQZf5IaheJrgAzgygvTJ43gcuSN pYDu6ucC8smDjSWUwvlegRqbLcMaY+2FH4NW5p3dd2FHS2ggdrJlpVs5cdDwNTpR m6yrT8FXqEWT8UcImxMpjv2L3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9D7F/2 +6WWxPsv5bjrstIFjUf9MB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA76Kl5tJ75UDuWDAzj0gbmuCxWgbjsdzER3bI2JDxa3ctGGQKVO9TY vC09c+subo/3ZYg67kyuGdv/wK7cIXr0nYCsNMbKrJ8XUeOh+oP8rcgiks90nHZ5 NDaWyq9fashBPM+wbUPsj5H0inQ+6f+I5sbEzyb15WnTKBkocJxjVG6oeq6lTvNC x5m95Hg+A4HFsqrSYEX5zRRs+c/G4warNHDyzFaQsu0MVOIm7jaBxX9Hivz/7wc+ MCDi9nMQ5Ao3UXfImwoACM1wCSZe1ds8R5lbmv07kQe388yYiCLLnyldYM5GcXlV Uw1QHfqSuae9HP4+Ip5+j1eU9dHv/eWu -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:36 2025 by rpki-client