$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: EGmxjW3ZXzC2PpOqdUCZb1E/Cgd20Tr6JVjU2RyoEg0= Subject key identifier: 21:8E:49:DA:AF:56:42:E9:AD:2C:06:D4:70:CA:56:3E:42:3B:51:F4 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 02EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 02E6 Signing time: Tue 09 Sep 2025 01:24:54 +0000 Manifest this update: Tue 09 Sep 2025 01:24:54 +0000 Manifest next update: Tue 16 Sep 2025 01:24:54 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: f7MffocC45iHjQe3/h9k9omv+Q86n/AqGEi+xEGYAsw=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Sep 9 01:24:54 2025 GMT Not After : Sep 16 01:24:54 2025 GMT Subject: CN=68bf81e6-a2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:16:3d:92:86:40:99:d5:dd:d5:1d:f7:11: fe:3b:38:e8:82:98:68:b2:6f:1c:ff:0e:0d:6f:e0: 09:a3:44:27:98:b3:d9:71:96:d0:2e:d8:7d:ed:1f: 9a:3a:45:4e:99:13:4e:20:ef:bb:7d:a3:52:a8:2f: 6c:27:22:0e:c3:4f:ef:df:c0:c0:75:8c:95:f5:a6: 93:d8:75:00:db:7b:1b:e2:1d:71:57:63:b9:d4:44: c6:94:ce:c8:94:ae:fd:b1:8f:92:29:21:15:b3:46: d9:14:d5:79:67:12:a9:db:77:aa:9a:6b:f3:0a:ca: f8:97:2a:5b:b0:36:d9:58:cc:4b:4c:27:f0:bf:c8: 36:4c:71:25:25:93:96:93:22:f1:42:8f:b1:20:f2: 03:c8:30:9f:cb:21:d0:77:c9:39:89:fc:fe:c5:82: de:f1:17:c6:c6:ea:ea:72:7c:ee:44:b9:ed:72:d0: 36:6b:57:46:79:00:82:2a:50:4d:08:d7:a3:a7:0e: 85:86:d9:82:8f:22:1f:93:04:45:c0:f6:e3:96:60: b5:2d:d2:36:b7:44:7f:56:57:f2:14:13:11:e9:e9: 9a:d8:86:c2:ec:54:e2:7d:ca:31:af:18:f6:70:34: f6:a4:ad:a4:75:b9:d1:97:1c:ce:ee:c2:d8:4d:ac: f4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8E:49:DA:AF:56:42:E9:AD:2C:06:D4:70:CA:56:3E:42:3B:51:F4 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:26:68:b8:1e:3e:e6:45:e8:ee:67:1a:96:af:98:e2:80:7e: 5e:fc:46:ee:3a:49:c8:ce:50:0b:26:c0:63:00:3a:53:20:b1: fc:cb:9c:bb:8a:0a:da:a6:0f:ee:08:8e:df:8f:9f:0c:8d:42: 89:2b:3b:fc:09:d9:56:06:e1:21:07:c9:9b:8b:86:1f:82:f5: b8:73:b0:52:db:b9:43:79:6f:58:73:11:8f:91:08:39:fa:4b: 55:ff:8a:e1:df:49:11:db:b7:a6:d7:19:ea:a9:5c:27:f7:75: 34:2a:19:ee:a2:04:6b:66:06:e1:c3:0f:b9:24:73:ae:2c:62: 8f:fe:e7:39:0a:b1:9f:e6:b1:16:8f:5e:55:27:4b:a1:6f:2e: 9d:6a:67:23:6d:fe:4e:ab:47:e7:d8:00:fe:7c:c1:0f:e3:07: c0:c7:01:ca:3b:b8:69:9a:00:91:92:a7:90:d3:52:b5:9f:69: 44:44:ea:18:e7:96:88:ab:95:ed:23:80:8b:35:04:66:8f:a0: bf:9c:9e:10:67:60:89:5d:c5:de:8a:b8:bd:6c:4c:a6:d0:3c: 28:78:a1:76:f9:c9:88:0c:2f:c7:43:ff:c6:41:ca:09:81:89: 24:19:63:9d:61:16:d2:69:3a:5d:21:d9:95:e3:b9:e9:86:13: cc:46:df:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUwOTA5MDEyNDU0WhcNMjUwOTE2MDEyNDU0WjAYMRYwFAYD VQQDEw02OGJmODFlNi1hMmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NoWPZKGQJnV3dUd9xH+Ozjogphosm8c/w4Nb+AJo0QnmLPZcZbQLth97R+a OkVOmRNOIO+7faNSqC9sJyIOw0/v38DAdYyV9aaT2HUA23sb4h1xV2O51ETGlM7I lK79sY+SKSEVs0bZFNV5ZxKp23eqmmvzCsr4lypbsDbZWMxLTCfwv8g2THElJZOW kyLxQo+xIPIDyDCfyyHQd8k5ifz+xYLe8RfGxurqcnzuRLntctA2a1dGeQCCKlBN CNejpw6FhtmCjyIfkwRFwPbjlmC1LdI2t0R/VlfyFBMR6ema2IbC7FTifcoxrxj2 cDT2pK2kdbnRlxzO7sLYTaz0gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGOSdqv VkLprSwG1HDKVj5CO1H0MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmJmi4Hj7mRejuZxqWr5jigH5e/EbuOknIzlALJsBjADpTILH8y5y7 igrapg/uCI7fj58MjUKJKzv8CdlWBuEhB8mbi4YfgvW4c7BS27lDeW9YcxGPkQg5 +ktV/4rh30kR27em1xnqqVwn93U0KhnuogRrZgbhww+5JHOuLGKP/uc5CrGf5rEW j15VJ0uhby6damcjbf5Oq0fn2AD+fMEP4wfAxwHKO7hpmgCRkqeQ01K1n2lEROoY 55aIq5XtI4CLNQRmj6C/nJ4QZ2CJXcXeiri9bEym0DwoeKF2+cmIDC/HQ//GQcoJ gYkkGWOdYRbSaTpdIdmV47nphhPMRt9i -----END CERTIFICATE-----Generated at Tue Sep 9 13:36:54 2025 by rpki-client