$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: jsk9ovMRi7WLJ+D2aom8WcDhl4Qp2jVeCo82HbJUtZk= Subject key identifier: 88:10:F2:B7:1D:D3:0F:B1:40:B1:7A:71:73:B3:9E:1E:DF:CE:FD:A1 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0FB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0F8A Signing time: Wed 02 Jul 2025 17:45:05 +0000 Manifest this update: Wed 02 Jul 2025 17:45:03 +0000 Manifest next update: Wed 09 Jul 2025 17:45:03 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: 6wl/am/KQoRd4c0CJyq1eIepA3LIU9Ka2fO4jWvh9HM=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4019 (0xfb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Jul 2 17:45:03 2025 GMT Not After : Jul 9 17:45:03 2025 GMT Subject: CN=68657020-a303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:11:e8:e6:c2:f2:06:b3:8d:33:3d:35:a0: 3f:80:e6:39:80:e2:fb:7c:21:d2:ac:2b:16:28:61: 03:5b:a1:5d:6d:fb:20:c3:ad:c3:4d:c9:50:cb:38: 34:3b:5d:3c:fc:5f:7f:e8:8b:d1:e6:5e:c9:8b:88: f6:d1:4c:22:ae:18:7f:b6:e4:8e:2d:a1:eb:03:e9: fb:dd:d6:cc:ac:d8:22:90:f3:1d:40:75:0f:81:a4: 9c:80:37:be:87:ba:76:af:1f:0a:b3:37:14:e3:b5: 3a:dc:4f:7d:c0:d1:7f:91:d7:e3:99:89:19:93:20: 6e:aa:23:7c:c9:a6:02:42:29:a8:03:69:b6:c7:b8: 6b:f2:f2:53:7e:ff:73:f4:f8:cb:dd:78:06:e3:4f: 3b:10:30:10:e1:08:9d:86:72:2d:86:3c:0d:93:78: 59:da:c0:71:d5:30:19:f8:55:c1:83:03:15:be:25: 5c:a4:e7:3f:c0:9e:46:03:ad:a2:0a:38:7f:db:4c: c3:b2:76:fc:6c:08:da:94:c6:24:32:0d:58:cf:2b: 4c:63:08:0c:64:cb:b0:74:b6:27:5b:88:65:d9:18: f9:28:57:a7:34:7a:24:b7:80:d9:49:91:38:03:ac: 45:48:af:59:58:3a:e8:c8:47:2b:5e:0b:22:8e:17: 52:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:10:F2:B7:1D:D3:0F:B1:40:B1:7A:71:73:B3:9E:1E:DF:CE:FD:A1 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ce:73:2a:a2:ef:78:84:fb:d8:b8:03:84:00:45:09:29:05: 76:19:b2:35:eb:6a:53:9d:d0:0b:37:f3:d1:87:14:66:41:f3: 33:c7:a5:f5:36:af:66:f8:28:13:93:2d:9a:76:0b:3d:b6:a8: 57:00:f9:b7:0f:99:66:9b:a8:32:07:fe:46:47:a2:ce:43:73: a0:2a:e5:63:c0:36:56:1d:da:fa:e6:41:55:3e:9b:95:64:43: 74:3e:46:71:7b:1c:0b:57:67:80:1d:51:34:9b:9c:3a:fb:8f: c2:d3:f1:29:9d:43:06:6e:73:fd:da:97:7d:e7:04:5d:8d:2f: e7:81:8b:f1:ce:da:3b:f1:f8:e7:01:f9:16:b0:27:ee:bf:f8: 18:36:15:7b:d6:b7:dc:e4:b4:78:67:69:16:ae:12:9a:7a:15: 87:c8:bf:85:b5:d6:71:9d:7b:d5:4e:bb:e8:33:01:0c:19:e8: d0:03:d8:9b:13:cc:33:07:87:d9:68:91:a5:24:6c:08:7c:96: a6:12:05:b9:4d:f4:58:8c:05:33:d3:23:6f:b6:5f:e6:6c:22: 4b:25:61:ae:4d:ce:61:af:d9:76:1f:26:ab:74:0f:6f:1e:30: 5f:26:72:60:26:41:37:41:0a:9f:f9:20:45:b7:1e:70:ab:ef: fa:cf:aa:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUwNzAyMTc0NTAzWhcNMjUwNzA5MTc0NTAzWjAYMRYwFAYD VQQDEw02ODY1NzAyMC1hMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlkR6ObC8gazjTM9NaA/gOY5gOL7fCHSrCsWKGEDW6Fdbfsgw63DTclQyzg0 O108/F9/6IvR5l7Ji4j20Uwirhh/tuSOLaHrA+n73dbMrNgikPMdQHUPgaScgDe+ h7p2rx8KszcU47U63E99wNF/kdfjmYkZkyBuqiN8yaYCQimoA2m2x7hr8vJTfv9z 9PjL3XgG4087EDAQ4QidhnIthjwNk3hZ2sBx1TAZ+FXBgwMVviVcpOc/wJ5GA62i Cjh/20zDsnb8bAjalMYkMg1YzytMYwgMZMuwdLYnW4hl2Rj5KFenNHokt4DZSZE4 A6xFSK9ZWDroyEcrXgsijhdSuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgQ8rcd 0w+xQLF6cXOznh7fzv2hMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAznMqou94hPvYuAOEAEUJKQV2GbI162pTndALN/PRhxRmQfMzx6X1 Nq9m+CgTky2adgs9tqhXAPm3D5lmm6gyB/5GR6LOQ3OgKuVjwDZWHdr65kFVPpuV ZEN0PkZxexwLV2eAHVE0m5w6+4/C0/EpnUMGbnP92pd95wRdjS/ngYvxzto78fjn AfkWsCfuv/gYNhV71rfc5LR4Z2kWrhKaehWHyL+FtdZxnXvVTrvoMwEMGejQA9ib E8wzB4fZaJGlJGwIfJamEgW5TfRYjAUz0yNvtl/mbCJLJWGuTc5hr9l2HyardA9v HjBfJnJgJkE3QQqf+SBFtx5wq+/6z6o6 -----END CERTIFICATE-----Generated at Thu Jul 3 06:04:23 2025 by rpki-client