$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: Hu5JtKJYAoKp4PksxHJik1Pq01S9bwYSmDwEEBenkkA= Subject key identifier: CD:D3:C3:4A:2D:34:2D:35:C1:E0:79:06:91:F8:49:98:D6:F6:75:76 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 02E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 02DD Signing time: Sat 23 Aug 2025 01:35:55 +0000 Manifest this update: Sat 23 Aug 2025 01:35:54 +0000 Manifest next update: Sat 30 Aug 2025 01:35:54 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: cVQfes2cxRJlz5LNneFam9tpuKpzK3O2dgb224NeCZI=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 738 (0x2e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Aug 23 01:35:54 2025 GMT Not After : Aug 30 01:35:54 2025 GMT Subject: CN=68a91afb-6904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:c0:13:29:0d:ec:ea:18:a6:7c:1b:ff:94:af: 53:b8:a5:a1:9b:a3:c8:e5:6c:e1:e1:ef:e4:21:5a: 2f:61:0c:3a:d5:de:2c:32:17:5d:db:bf:86:78:6d: cb:bf:81:3d:72:d6:f6:ad:9f:a1:04:3d:2b:ba:a6: 2f:c4:61:bd:9c:07:16:83:ed:52:35:97:4a:6c:74: c2:fa:7a:fd:05:16:5a:49:0f:1d:a1:54:ca:02:68: 73:f6:41:cd:f9:b6:0c:92:44:a5:be:e6:ad:0e:0b: 30:83:58:7b:2d:9c:c7:f0:d2:88:b0:9b:76:14:7a: 4c:97:d3:77:86:7a:b3:7f:49:cb:2f:b0:4a:83:ca: 8d:60:bf:92:48:82:a9:2b:5e:6f:36:9d:33:37:17: 7e:22:7b:dc:78:80:c7:78:bb:71:80:a2:8a:08:75: 51:fa:82:24:d2:7d:24:ff:43:77:8a:42:13:ba:0f: 9c:85:ef:2f:fe:28:35:39:49:56:fe:e9:bd:db:98: 4e:4c:12:47:7d:6b:f2:d9:bc:4f:ff:79:ec:1b:1e: 0b:84:6e:24:cc:28:fa:f0:5b:18:cc:5b:c6:c5:a9: 1b:f9:c4:87:14:7e:3e:9e:12:78:5c:67:c8:d7:9c: 33:9f:7d:4a:82:e7:a7:38:58:6c:d6:e4:2a:41:79: 66:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D3:C3:4A:2D:34:2D:35:C1:E0:79:06:91:F8:49:98:D6:F6:75:76 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:39:5f:57:ba:19:99:b4:63:c9:2e:fb:66:d9:82:a6:14:9a: 7b:5e:91:68:af:48:3e:df:ad:7f:79:50:a3:4a:bb:e9:33:3b: 04:02:5f:a0:fb:bd:b2:02:67:f8:98:28:1a:32:c8:1c:b5:dd: 66:76:e0:b7:15:71:85:af:af:d3:e6:36:fb:a7:ce:97:99:dc: 6e:98:5c:c0:09:b1:43:5d:29:ad:ff:5b:6b:9f:15:b5:39:4d: 6b:2b:04:b9:e2:a9:3a:9b:a0:3c:83:b2:e3:71:21:3b:18:91: 27:a1:fe:c6:94:07:a4:e7:18:97:2d:7b:59:dd:7f:ad:e4:95: a9:f8:74:bd:c5:84:5d:41:c5:1c:39:53:54:5c:ff:3f:b7:37: 17:82:6f:f5:60:e3:72:9a:c4:66:f7:52:23:76:cf:e4:d1:d8: cb:af:83:9a:0a:70:fe:34:49:fb:23:3d:e3:84:98:1a:ea:78: e5:4f:76:86:7a:3d:01:b5:f0:46:c1:31:4a:be:ea:82:a3:78: 89:67:b3:9c:51:9f:e7:17:48:d0:03:49:7e:44:71:72:1a:89: 08:dc:ea:02:21:35:e0:7c:4f:04:88:63:c8:0f:f3:20:b7:3e: 90:a0:45:36:e1:eb:8d:52:aa:54:dc:79:eb:c3:2f:03:c0:88: 80:39:3d:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUwODIzMDEzNTU0WhcNMjUwODMwMDEzNTU0WjAYMRYwFAYD VQQDEw02OGE5MWFmYi02OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/MATKQ3s6himfBv/lK9TuKWhm6PI5Wzh4e/kIVovYQw61d4sMhdd27+GeG3L v4E9ctb2rZ+hBD0ruqYvxGG9nAcWg+1SNZdKbHTC+nr9BRZaSQ8doVTKAmhz9kHN +bYMkkSlvuatDgswg1h7LZzH8NKIsJt2FHpMl9N3hnqzf0nLL7BKg8qNYL+SSIKp K15vNp0zNxd+InvceIDHeLtxgKKKCHVR+oIk0n0k/0N3ikITug+che8v/ig1OUlW /um925hOTBJHfWvy2bxP/3nsGx4LhG4kzCj68FsYzFvGxakb+cSHFH4+nhJ4XGfI 15wzn31KguenOFhs1uQqQXlmLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3Tw0ot NC01weB5BpH4SZjW9nV2MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyOV9XuhmZtGPJLvtm2YKmFJp7XpFor0g+361/eVCjSrvpMzsEAl+g +72yAmf4mCgaMsgctd1mduC3FXGFr6/T5jb7p86XmdxumFzACbFDXSmt/1trnxW1 OU1rKwS54qk6m6A8g7LjcSE7GJEnof7GlAek5xiXLXtZ3X+t5JWp+HS9xYRdQcUc OVNUXP8/tzcXgm/1YONymsRm91Ijds/k0djLr4OaCnD+NEn7Iz3jhJga6njlT3aG ej0BtfBGwTFKvuqCo3iJZ7OcUZ/nF0jQA0l+RHFyGokI3OoCITXgfE8EiGPID/Mg tz6QoEU24euNUqpU3Hnrwy8DwIiAOT2s -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:20 2025 by rpki-client