$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: z2wJsZfEkBJcbXJZBv7IwkVW8wn+X2xIq4SInHc7JSg= Subject key identifier: 0C:40:9A:A2:21:14:22:02:2F:D4:CF:07:62:8E:21:C8:E8:1B:E3:F2 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0301 Signing time: Mon 03 Nov 2025 01:09:37 +0000 Manifest this update: Mon 03 Nov 2025 01:09:37 +0000 Manifest next update: Mon 10 Nov 2025 01:09:37 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: AUir8Mp2k/P2LJkICOVFnz1iVKa7A2Wrb724uKndhCo=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Nov 3 01:09:37 2025 GMT Not After : Nov 10 01:09:37 2025 GMT Subject: CN=690800d1-f95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:fe:0a:4b:aa:5f:49:82:6b:31:f9:32:c3: 5d:62:aa:1d:a7:95:6d:03:70:63:8a:69:1e:89:73: 33:99:bd:83:db:62:67:cd:27:a9:85:23:43:67:76: 8b:af:76:f3:cc:94:b7:59:b5:57:9e:7c:10:91:73: eb:1a:80:4e:8f:0d:a5:2b:10:9a:3d:e3:c3:b6:f1: 62:77:73:c0:cf:03:cd:d4:7d:25:3a:0e:ad:ad:60: aa:c6:66:40:19:1c:7c:6b:d2:90:76:5e:d9:4a:0d: 4c:dc:dd:23:14:29:0d:69:58:0f:fa:1b:6d:51:f2: 8f:84:1d:b2:8c:d3:d4:dc:4d:ca:f6:68:f0:1d:4c: 96:79:4c:61:f0:07:47:f9:2e:b0:56:6d:ef:0d:50: bc:28:3e:0c:42:f0:00:b6:e6:02:7d:ed:70:73:78: 69:e3:2a:69:86:49:2b:e2:31:9d:b4:a3:46:79:65: 03:57:45:3c:c0:33:07:69:58:65:da:0e:19:11:32: 9e:c3:f8:b4:9b:76:14:04:10:b5:16:3d:37:4e:20: b9:89:54:62:3e:ba:3b:da:05:22:b2:69:b9:2e:7a: 26:fb:af:3b:d5:b6:f9:20:71:86:17:34:b8:8f:28: 49:92:1c:71:23:bf:6f:91:90:5e:b4:97:8c:ce:3f: 68:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:9A:A2:21:14:22:02:2F:D4:CF:07:62:8E:21:C8:E8:1B:E3:F2 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:92:3f:52:df:f6:56:1b:eb:e1:ab:05:e9:2f:fb:12:1f:97: b5:70:d4:1e:4a:f5:03:a2:e6:19:5e:6b:aa:1a:74:84:0d:04: 44:41:45:fc:f0:ab:ca:c4:d0:68:6c:db:d9:5e:bc:58:0e:2d: 45:a7:96:bc:83:37:c9:61:37:5c:e6:ff:16:b8:fc:0b:f0:d3: f2:db:50:d4:26:01:21:aa:89:e6:8e:66:51:46:99:82:13:ee: 41:75:f4:a8:61:95:ae:5d:a9:d0:96:00:06:a9:af:46:4a:de: 05:29:24:36:19:ad:25:39:37:d8:62:97:cb:db:27:af:12:47: 37:4c:79:05:9e:2a:3c:a7:30:e8:4f:fa:05:4c:3b:4f:a9:ea: 9f:64:f2:fc:f2:32:b4:75:66:3f:91:ae:1d:3a:e8:6e:dc:e2: 4d:2f:66:b8:b9:9b:f5:8b:e3:69:64:a9:c2:1b:52:b7:20:87: ac:ed:4d:90:2a:83:4e:9a:25:12:ca:4f:62:fe:e9:40:83:9b: 93:00:77:1e:f5:e0:88:34:64:3f:42:21:28:a0:d9:57:a3:0f: 82:19:05:d6:9b:99:ee:fa:ac:93:4a:f2:47:3c:82:35:fb:f1: 69:8d:b0:42:52:00:48:fa:ce:ca:5e:df:58:55:c8:b8:e9:7e: 93:db:53:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUxMTAzMDEwOTM3WhcNMjUxMTEwMDEwOTM3WjAYMRYwFAYD VQQDEw02OTA4MDBkMS1mOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ/+CkuqX0mCazH5MsNdYqodp5VtA3BjimkeiXMzmb2D22JnzSephSNDZ3aL r3bzzJS3WbVXnnwQkXPrGoBOjw2lKxCaPePDtvFid3PAzwPN1H0lOg6trWCqxmZA GRx8a9KQdl7ZSg1M3N0jFCkNaVgP+httUfKPhB2yjNPU3E3K9mjwHUyWeUxh8AdH +S6wVm3vDVC8KD4MQvAAtuYCfe1wc3hp4ypphkkr4jGdtKNGeWUDV0U8wDMHaVhl 2g4ZETKew/i0m3YUBBC1Fj03TiC5iVRiPro72gUismm5Lnom+6871bb5IHGGFzS4 jyhJkhxxI79vkZBetJeMzj9obwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxAmqIh FCICL9TPB2KOIcjoG+PyMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0kj9S3/ZWG+vhqwXpL/sSH5e1cNQeSvUDouYZXmuqGnSEDQREQUX8 8KvKxNBobNvZXrxYDi1Fp5a8gzfJYTdc5v8WuPwL8NPy21DUJgEhqonmjmZRRpmC E+5BdfSoYZWuXanQlgAGqa9GSt4FKSQ2Ga0lOTfYYpfL2yevEkc3THkFnio8pzDo T/oFTDtPqeqfZPL88jK0dWY/ka4dOuhu3OJNL2a4uZv1i+NpZKnCG1K3IIes7U2Q KoNOmiUSyk9i/ulAg5uTAHce9eCINGQ/QiEooNlXow+CGQXWm5nu+qyTSvJHPII1 +/FpjbBCUgBI+s7KXt9YVci46X6T21NE -----END CERTIFICATE-----Generated at Tue Nov 4 12:40:44 2025 by rpki-client