$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: +a4E5fF4tUfkGrrK8seJf5fQrvDgglFB/4LVbqphaf8= Subject key identifier: F4:EE:FB:9F:32:5F:B3:0F:0F:3F:CE:3A:26:A5:EC:FB:00:E7:35:7A Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 169E Signing time: Fri 08 Aug 2025 16:51:06 +0000 Manifest this update: Fri 08 Aug 2025 16:51:06 +0000 Manifest next update: Fri 15 Aug 2025 16:51:06 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: qvgIrdS7zDmEQvUfhs+iX15KiBs69xO8UPJd3jV6ymQ=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5801 (0x16a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Aug 8 16:51:06 2025 GMT Not After : Aug 15 16:51:06 2025 GMT Subject: CN=68962afa-9b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e8:60:41:de:dc:2a:f5:6c:9f:37:29:86:77: 26:84:7c:81:97:89:98:de:9a:19:c3:39:e2:59:53: cd:59:b5:5d:fb:f3:fe:9c:0a:8c:05:c9:af:c6:16: 58:aa:94:14:5b:75:93:aa:db:55:65:e9:35:d8:7a: be:06:70:dd:c4:9a:42:93:aa:71:42:d1:f3:0a:41: 4b:e2:3d:88:13:c6:0d:3a:76:20:25:04:80:c2:25: 2b:b8:54:ff:c0:35:c1:a4:89:76:1e:07:01:63:2f: a9:0c:77:6a:9b:44:6f:12:f9:23:e4:63:81:b8:7a: e9:6a:15:71:d1:39:48:9a:4f:90:a1:c7:40:17:7e: 40:34:56:99:c4:39:56:3c:40:8f:16:e9:37:08:2e: c2:dd:82:e3:ce:9c:b9:d9:7b:ca:d9:e0:b8:49:bc: 8f:90:57:6e:c8:e3:a5:2f:b8:e1:54:7d:9e:a2:a2: 8a:80:6f:8c:88:f8:90:38:fc:18:cd:76:bd:bd:0a: ac:a4:be:ac:f3:d7:12:b8:e9:a5:cf:8e:60:44:86: f7:1d:21:ed:9f:de:55:c3:21:32:61:0b:24:71:27: a4:ba:98:e5:b4:37:d8:40:b4:7e:4e:53:61:76:d9: d9:c2:87:28:b0:36:a7:21:5d:20:10:e1:bd:14:a3: ae:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EE:FB:9F:32:5F:B3:0F:0F:3F:CE:3A:26:A5:EC:FB:00:E7:35:7A X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e9:37:78:63:73:2c:06:89:79:66:a1:11:7a:ae:f9:3b:d0: 2c:0d:fd:d7:60:64:17:b3:fd:a1:a1:71:02:eb:2b:22:56:5a: 88:df:67:65:4a:b5:6d:4c:e6:01:ee:1b:1b:4d:ff:07:c4:b0: a8:dd:64:44:dd:d0:02:94:bd:7a:6f:01:aa:1a:6a:03:a8:08: 98:4d:c7:98:da:59:73:c5:39:74:4e:5f:51:97:cd:32:95:fe: 8b:7b:a0:40:aa:b1:80:64:f2:4f:6c:33:1d:c4:ee:d1:e9:62: f8:54:e5:6a:d8:3b:c0:13:84:5e:c0:3e:2e:70:9a:d9:37:6d: 96:a0:08:af:7a:93:02:46:10:39:3f:da:e7:af:22:02:b8:36: 34:1c:9e:4c:a2:be:25:e9:6e:d5:81:a1:c7:47:fd:64:80:bd: f4:69:fb:f2:80:b6:8d:35:72:cf:3f:83:8d:49:1d:1f:8b:6f: fe:79:ff:1a:45:1c:e7:c8:d5:4b:72:9c:92:65:75:61:df:91: 91:04:cb:b0:b0:d4:91:6d:80:ae:ae:ec:5b:79:9f:b5:2e:95: ed:57:97:35:83:8d:1f:23:67:e9:bf:b6:c7:2d:7a:9e:64:77: 9d:f0:82:55:e5:89:d8:01:b3:a1:0a:48:b5:71:ad:74:d0:2c: f8:96:16:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwODA4MTY1MTA2WhcNMjUwODE1MTY1MTA2WjAYMRYwFAYD VQQDEw02ODk2MmFmYS05YjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OhgQd7cKvVsnzcphncmhHyBl4mY3poZwzniWVPNWbVd+/P+nAqMBcmvxhZY qpQUW3WTqttVZek12Hq+BnDdxJpCk6pxQtHzCkFL4j2IE8YNOnYgJQSAwiUruFT/ wDXBpIl2HgcBYy+pDHdqm0RvEvkj5GOBuHrpahVx0TlImk+QocdAF35ANFaZxDlW PECPFuk3CC7C3YLjzpy52XvK2eC4SbyPkFduyOOlL7jhVH2eoqKKgG+MiPiQOPwY zXa9vQqspL6s89cSuOmlz45gRIb3HSHtn95VwyEyYQskcSekupjltDfYQLR+TlNh dtnZwocosDanIV0gEOG9FKOuiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTu+58y X7MPDz/OOial7PsA5zV6MB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH6Td4Y3MsBol5ZqEReq75O9AsDf3XYGQXs/2hoXEC6ysiVlqI32dl SrVtTOYB7hsbTf8HxLCo3WRE3dAClL16bwGqGmoDqAiYTceY2llzxTl0Tl9Rl80y lf6Le6BAqrGAZPJPbDMdxO7R6WL4VOVq2DvAE4RewD4ucJrZN22WoAivepMCRhA5 P9rnryICuDY0HJ5Mor4l6W7VgaHHR/1kgL30afvygLaNNXLPP4ONSR0fi2/+ef8a RRznyNVLcpySZXVh35GRBMuwsNSRbYCuruxbeZ+1LpXtV5c1g40fI2fpv7bHLXqe ZHed8IJV5YnYAbOhCki1ca100Cz4lhZT -----END CERTIFICATE-----Generated at Sun Aug 10 05:51:40 2025 by rpki-client