$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: wr+MlBwWl6MvcoQcWr5RJYGHL8ofF48RHRJv7rD59KY= Subject key identifier: 5F:B2:A9:3F:ED:EC:ED:B0:AF:08:03:72:BE:78:4A:7A:4B:6A:AD:BC Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 168D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 1682 Signing time: Sat 14 Jun 2025 17:07:41 +0000 Manifest this update: Sat 14 Jun 2025 17:07:41 +0000 Manifest next update: Sat 21 Jun 2025 17:07:41 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: WugEvBwp9gmA3727AYIuKigcUSC4tvCZuC/2wFePFzA=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5773 (0x168d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Jun 14 17:07:41 2025 GMT Not After : Jun 21 17:07:41 2025 GMT Subject: CN=684dac5d-c7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:9e:0b:62:9b:8c:1a:e7:29:7a:4f:66:65: af:d8:4f:79:93:79:42:9c:05:9f:97:c1:d6:c2:a4: cb:bf:cf:ef:71:2a:38:5e:af:2a:79:6e:67:0a:6f: 57:43:34:cb:d6:0d:9b:71:f6:06:b2:9c:81:72:b2: c8:7f:f9:8c:72:20:ff:55:c0:e8:4f:7b:35:56:0b: f0:06:1c:ae:07:e4:0b:75:fc:e9:53:aa:53:aa:1b: 28:c5:90:49:ce:e2:c5:cc:02:1d:a4:62:75:52:b5: ab:6d:0c:cd:25:46:51:eb:02:8c:23:63:f7:e8:11: be:5b:e0:db:00:db:0e:06:c9:cc:aa:4f:8d:c2:82: e8:8a:88:f1:67:34:f3:c5:96:cd:2b:4f:01:b0:52: a6:9c:f3:2b:a7:66:31:66:d7:91:74:26:23:b0:d2: c9:cf:a0:e2:df:5f:71:64:91:43:61:c5:c2:ba:05: 3b:93:95:d5:f5:d1:31:92:ad:36:1c:b7:0e:fb:51: a5:c8:36:44:50:bb:cc:87:1e:da:59:fe:f7:a4:e4: 5a:fc:b4:74:7e:83:74:25:cc:ac:ff:91:d7:2d:cb: be:1f:1d:85:9d:5b:79:9c:cf:af:c3:d3:ae:d8:dd: 3f:f6:4a:8a:6e:2c:c6:37:b8:1f:de:3b:47:49:61: d4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B2:A9:3F:ED:EC:ED:B0:AF:08:03:72:BE:78:4A:7A:4B:6A:AD:BC X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:f3:bc:90:18:9c:2c:24:7c:16:5c:75:7a:d2:26:ea:cf:09: e7:7b:ff:97:e6:07:76:e8:8c:3a:fc:bd:bb:ce:26:72:ab:ec: 98:96:c1:30:28:60:d6:f0:2f:d4:bd:94:78:a8:e7:95:7d:8f: a5:68:99:f3:03:02:68:e9:9b:38:07:da:52:1c:eb:33:82:5f: 8c:a3:df:11:73:53:f1:df:6c:07:30:43:0c:31:bf:76:9e:3d: 5b:41:d2:45:3d:c3:c7:a2:3e:da:ec:28:fb:60:34:41:3f:d3: 46:d6:ff:39:ff:dc:a5:d1:e9:06:92:6a:48:9e:be:40:64:f1: 45:9f:df:6b:f8:da:63:b2:e1:91:7b:bd:5c:ec:d3:14:5a:77: 8d:fe:c2:72:64:83:ef:48:d2:b5:d5:4a:c1:ae:d7:9e:19:ac: 87:bf:2b:7b:ea:0d:ef:1b:db:fa:09:56:86:52:02:1e:53:4f: b2:d9:3b:58:4a:b0:e9:d3:7f:c7:3c:ad:2d:ec:ac:75:ed:50: 4d:67:af:78:11:32:14:17:67:88:8a:25:42:a8:b0:af:2f:d6: 0f:c6:6e:a2:d5:2b:37:9f:06:51:d8:45:f5:7f:98:55:5b:50: 29:67:9c:48:ad:05:03:94:64:66:d2:d9:95:8f:5b:47:4b:54: eb:a0:7a:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNjE0MTcwNzQxWhcNMjUwNjIxMTcwNzQxWjAYMRYwFAYD VQQDEw02ODRkYWM1ZC1jN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfeeC2KbjBrnKXpPZmWv2E95k3lCnAWfl8HWwqTLv8/vcSo4Xq8qeW5nCm9X QzTL1g2bcfYGspyBcrLIf/mMciD/VcDoT3s1VgvwBhyuB+QLdfzpU6pTqhsoxZBJ zuLFzAIdpGJ1UrWrbQzNJUZR6wKMI2P36BG+W+DbANsOBsnMqk+NwoLoiojxZzTz xZbNK08BsFKmnPMrp2YxZteRdCYjsNLJz6Di319xZJFDYcXCugU7k5XV9dExkq02 HLcO+1GlyDZEULvMhx7aWf73pORa/LR0foN0Jcys/5HXLcu+Hx2FnVt5nM+vw9Ou 2N0/9kqKbizGN7gf3jtHSWHU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+yqT/t 7O2wrwgDcr54SnpLaq28MB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj87yQGJwsJHwWXHV60ibqzwnne/+X5gd26Iw6/L27ziZyq+yYlsEw KGDW8C/UvZR4qOeVfY+laJnzAwJo6Zs4B9pSHOszgl+Mo98Rc1Px32wHMEMMMb92 nj1bQdJFPcPHoj7a7Cj7YDRBP9NG1v85/9yl0ekGkmpInr5AZPFFn99r+NpjsuGR e71c7NMUWneN/sJyZIPvSNK11UrBrteeGayHvyt76g3vG9v6CVaGUgIeU0+y2TtY SrDp03/HPK0t7Kx17VBNZ694ETIUF2eIiiVCqLCvL9YPxm6i1Ss3nwZR2EX1f5hV W1ApZ5xIrQUDlGRm0tmVj1tHS1TroHql -----END CERTIFICATE-----Generated at Sun Jun 15 10:15:06 2025 by rpki-client