$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: EfeeR8nsGc04D+J4q4YUK/kOn2o7hUHDZM7uPAwqzfQ= Subject key identifier: 5E:2C:1F:3F:6A:E5:89:78:AB:5F:E6:82:CB:8E:8B:42:03:9C:72:D4 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 16CB Signing time: Tue 04 Nov 2025 16:45:28 +0000 Manifest this update: Tue 04 Nov 2025 16:45:27 +0000 Manifest next update: Tue 11 Nov 2025 16:45:27 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: iR4GXXoVgppTf7nG41yjJeA7c6kkTO3AK0dU2pF3OwY=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5846 (0x16d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Nov 4 16:45:27 2025 GMT Not After : Nov 11 16:45:27 2025 GMT Subject: CN=690a2da7-7af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:f5:b9:6d:4c:1d:21:3d:90:1c:03:01:ef: 51:22:aa:b2:84:f5:1a:c8:8c:ee:a0:5a:ed:c4:03: 07:17:51:1d:5c:ae:2b:ad:a3:f2:1b:1f:0f:5d:16: 8b:8d:b3:6b:fb:cb:16:1f:f3:14:61:39:c3:3c:1a: b8:61:06:67:48:fb:09:cd:2f:dd:e7:62:fc:62:47: 8c:d4:73:a3:b1:5b:1d:b6:92:8d:70:b8:49:42:75: 47:f9:1a:7d:3c:68:0e:8b:2c:f8:55:79:e7:5f:2a: 6c:a0:1c:fa:c8:bc:62:32:7d:0b:5d:1d:19:64:10: 9c:37:1c:51:08:dd:a1:31:1b:13:59:37:64:5e:f5: dc:56:5c:20:5c:d3:8a:82:9f:3c:5e:61:b9:24:72: c0:fb:25:c7:8a:b6:76:b8:95:3e:00:e4:ef:e2:ed: 8a:2d:d3:b9:10:17:f1:b0:16:4f:bf:b2:ad:33:c2: 40:d0:d6:4c:4b:71:8d:72:c3:2d:52:54:25:01:a7: 3d:eb:2f:a4:75:54:2f:68:e8:31:b3:c9:21:32:45: b5:49:11:a2:2b:9c:f9:0d:ff:f6:e2:04:60:31:9e: 4a:3e:aa:18:f4:42:99:33:eb:ec:db:39:0e:eb:98: 87:9e:ab:a6:97:d4:b1:88:c2:5a:89:f1:cb:2a:9f: b8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2C:1F:3F:6A:E5:89:78:AB:5F:E6:82:CB:8E:8B:42:03:9C:72:D4 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:bb:97:d2:2f:81:79:1a:bb:e5:31:88:63:6d:e9:44:09:0c: 67:d6:8e:97:90:a9:25:45:d9:4d:1a:9e:45:14:ba:77:4e:e1: 76:76:e1:23:b7:37:ad:f4:f8:6b:a4:f8:ba:17:50:4d:25:bb: 42:d5:cd:28:9a:ee:fd:ee:04:45:d2:08:b2:a8:ad:f0:1a:da: d5:6a:ca:df:83:41:4c:ca:ae:64:a5:65:9c:01:db:e2:ca:23: c4:3d:43:4c:5c:a2:0b:2b:4d:76:85:3f:11:07:d3:cd:61:13: d2:00:30:51:12:45:3e:13:41:fa:de:33:a9:de:b1:dc:7a:b9: c0:62:64:fd:48:bd:42:cb:e5:f9:13:fd:c3:79:8d:df:07:81: 70:79:81:23:90:50:47:ab:ad:33:4e:e7:a4:b1:65:87:ad:77: ea:9f:e2:c8:ec:3a:dc:5a:87:18:1e:ad:17:4e:b8:04:04:ae: 73:d6:1f:77:41:5c:88:bf:d3:5b:ca:1d:c5:55:44:46:bd:82: 92:e4:ef:21:97:3f:40:33:93:46:a3:e7:b9:08:46:b2:5b:db: 0d:48:d9:96:ad:4b:75:02:a3:81:72:16:cb:94:6c:86:62:11: ee:a7:91:4f:d3:7a:1a:93:94:0b:93:05:55:3f:4d:52:00:af: 27:d1:48:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUxMTA0MTY0NTI3WhcNMjUxMTExMTY0NTI3WjAYMRYwFAYD VQQDEw02OTBhMmRhNy03YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6b1uW1MHSE9kBwDAe9RIqqyhPUayIzuoFrtxAMHF1EdXK4rraPyGx8PXRaL jbNr+8sWH/MUYTnDPBq4YQZnSPsJzS/d52L8YkeM1HOjsVsdtpKNcLhJQnVH+Rp9 PGgOiyz4VXnnXypsoBz6yLxiMn0LXR0ZZBCcNxxRCN2hMRsTWTdkXvXcVlwgXNOK gp88XmG5JHLA+yXHirZ2uJU+AOTv4u2KLdO5EBfxsBZPv7KtM8JA0NZMS3GNcsMt UlQlAac96y+kdVQvaOgxs8khMkW1SRGiK5z5Df/24gRgMZ5KPqoY9EKZM+vs2zkO 65iHnquml9SxiMJaifHLKp+4iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4sHz9q 5Yl4q1/mgsuOi0IDnHLUMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEu5fSL4F5GrvlMYhjbelECQxn1o6XkKklRdlNGp5FFLp3TuF2duEj tzet9PhrpPi6F1BNJbtC1c0omu797gRF0giyqK3wGtrVasrfg0FMyq5kpWWcAdvi yiPEPUNMXKILK012hT8RB9PNYRPSADBREkU+E0H63jOp3rHcernAYmT9SL1Cy+X5 E/3DeY3fB4FweYEjkFBHq60zTueksWWHrXfqn+LI7DrcWocYHq0XTrgEBK5z1h93 QVyIv9Nbyh3FVURGvYKS5O8hlz9AM5NGo+e5CEayW9sNSNmWrUt1AqOBchbLlGyG YhHup5FP03oak5QLkwVVP01SAK8n0UjT -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:58 2025 by rpki-client