$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft File: Ntd-kkOrui_VSWopGDC304sLy8Q.mft (raw, json) Hash identifier: 3FLeUbhr1g7luxaya/t4IPZEsXYI6pIfTcD4hyt6Q+c= Subject key identifier: 63:B8:FA:55:FC:43:C6:42:71:87:7C:54:18:A6:9F:E6:39:3A:13:DC Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft Manifest number: 08D9 Signing time: Fri 22 Aug 2025 20:34:43 +0000 Manifest this update: Fri 22 Aug 2025 20:34:42 +0000 Manifest next update: Fri 29 Aug 2025 20:34:42 +0000 Files and hashes: 1: Ntd-kkOrui_VSWopGDC304sLy8Q.crl (hash: eqBaMFqxttw+Yzd6LtzCBuAwJqRtd1zBEfQGr5Fjasc=) 2: B453EBC4BB4011EAAF70B028C4F9AE02.roa (hash: Nz/7xCUgKfmqkXApuxeo5myCUO+mgajFtNE4r7Ggzao=) 3: A58B9338AD4A11EBA6B48687C4F9AE02.roa (hash: 9S3WJERMTtwQwqkFdyQh2FAfBQXuWIoDgdAQjyhftzk=) 4: 72E60DEA3CC911EDA5EBD21DC4F9AE02.roa (hash: zq2Qkn/Tk6HTf9mmAUUEV4eovm/AM6TvEoGB/VFCywQ=) 5: 0F91DE9EAD4C11EB903C150DC4F9AE02.roa (hash: KYXdBuY8eVoROAmSDw7JnT54RB6WWf5lcCmMUouYwzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC, serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Aug 22 20:34:42 2025 GMT Not After : Aug 29 20:34:42 2025 GMT Subject: CN=68a8d462-9278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:79:13:bb:5f:a6:6d:48:d4:b0:cc:e4:ae:26: 9e:da:c9:6d:5a:31:ac:2d:38:0e:88:e6:39:43:da: e4:14:59:26:c4:c2:5d:70:96:41:d3:cb:bf:ee:5c: 46:06:76:eb:a5:94:33:68:8f:1c:7b:79:56:56:25: b9:92:95:d2:bb:bf:a7:f4:2c:d3:ed:d8:6b:65:b6: bf:0a:e8:0c:a6:0b:42:a2:c2:26:10:0d:e2:3a:ec: ba:96:95:3c:7b:41:61:80:bb:78:23:98:03:0f:ce: 6a:cd:70:72:9f:7e:e5:6c:12:af:1c:7b:7c:22:a4: 63:d0:45:4b:f5:33:20:70:99:2b:56:83:11:06:bc: ee:40:4c:e4:e5:3c:2d:fe:eb:0a:f0:b6:bc:e3:d4: f5:2c:d3:19:80:4f:1f:51:23:fe:b7:30:25:b1:93: 14:50:d9:c2:f6:87:67:1d:0a:ca:57:a6:4b:e1:6a: 3a:19:c3:c6:16:83:44:88:b9:9d:9f:62:a8:4d:db: ac:bc:8c:f6:5c:b8:f8:04:fc:ce:d5:48:2b:c3:a4: 41:b3:83:45:e3:e8:00:48:9b:f9:4c:c6:f2:52:96: 86:dc:68:98:e9:d1:db:ef:d7:a7:d8:d9:5a:83:5f: c4:72:3b:9a:4f:7c:a5:bf:9e:cc:be:63:1b:3e:c4: 54:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B8:FA:55:FC:43:C6:42:71:87:7C:54:18:A6:9F:E6:39:3A:13:DC X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:45:9e:3e:0a:fb:eb:a7:3f:49:9c:18:e1:fb:d4:ca:86:97: 9d:37:1a:dc:0b:1e:8f:3f:49:31:07:09:3c:71:16:0b:22:41: e7:9f:75:cc:f9:b4:af:a1:5c:4f:75:cc:e3:3d:84:53:f1:8b: f8:02:e3:0b:52:eb:bf:3e:df:4f:0f:98:c0:99:8e:5f:60:36: 59:41:1c:67:39:b8:c2:1c:c4:2e:19:05:91:2f:ed:96:3d:49: 84:0e:b4:ca:28:e5:19:67:a0:8d:f8:e9:12:aa:be:62:8d:18: 47:af:ad:43:52:2c:40:6b:62:bc:d4:d0:8a:4c:d5:fa:69:52: a2:71:b5:15:aa:f8:be:8f:66:60:8f:34:dc:4d:52:64:24:7a: 52:19:9f:bd:0e:02:ac:b9:f8:38:58:db:38:ab:70:91:e6:9e: fc:73:c3:c4:2b:56:4c:13:c3:a7:c3:50:c6:45:a2:77:81:27: d9:54:4c:c3:08:f4:a7:df:60:4a:68:ea:e7:7f:cb:00:f5:25: aa:ac:21:f0:8e:a9:45:c5:fb:a4:d2:18:bd:b1:a2:0f:72:13: 01:b8:8b:33:6f:2f:2b:74:24:c7:b5:f6:6e:d9:48:eb:17:ea: 3f:87:01:5f:71:62:71:fe:5d:71:f8:73:a9:57:40:8b:34:84: 86:a1:e0:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjUwODIyMjAzNDQyWhcNMjUwODI5MjAzNDQyWjAYMRYwFAYD VQQDEw02OGE4ZDQ2Mi05Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHkTu1+mbUjUsMzkriae2sltWjGsLTgOiOY5Q9rkFFkmxMJdcJZB08u/7lxG BnbrpZQzaI8ce3lWViW5kpXSu7+n9CzT7dhrZba/CugMpgtCosImEA3iOuy6lpU8 e0FhgLt4I5gDD85qzXByn37lbBKvHHt8IqRj0EVL9TMgcJkrVoMRBrzuQEzk5Twt /usK8La849T1LNMZgE8fUSP+tzAlsZMUUNnC9odnHQrKV6ZL4Wo6GcPGFoNEiLmd n2KoTdusvIz2XLj4BPzO1Ugrw6RBs4NF4+gASJv5TMbyUpaG3GiY6dHb79en2Nla g1/EcjuaT3ylv57MvmMbPsRUMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGO4+lX8 Q8ZCcYd8VBimn+Y5OhPcMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTJBQy9BNDhENTk2NkJCM0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVp X1ZTV29wR0RDMzA0c0x5OFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVRZ4+Cvvrpz9JnBjh+9TKhpedNxrcCx6PP0kxBwk8cRYLIkHnn3XM +bSvoVxPdczjPYRT8Yv4AuMLUuu/Pt9PD5jAmY5fYDZZQRxnObjCHMQuGQWRL+2W PUmEDrTKKOUZZ6CN+OkSqr5ijRhHr61DUixAa2K81NCKTNX6aVKicbUVqvi+j2Zg jzTcTVJkJHpSGZ+9DgKsufg4WNs4q3CR5p78c8PEK1ZME8Onw1DGRaJ3gSfZVEzD CPSn32BKaOrnf8sA9SWqrCHwjqlFxfuk0hi9saIPchMBuIszby8rdCTHtfZu2Ujr F+o/hwFfcWJx/l1x+HOpV0CLNISGoeDk -----END CERTIFICATE-----Generated at Sun Aug 24 05:01:42 2025 by rpki-client