$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: jPlC47ppiAvBwBL6K6FG1Fp6VlDeXQe4b1HvwQTztwk= Subject key identifier: A2:0F:CB:20:88:28:BE:76:DE:12:FD:C8:ED:61:E1:9F:5F:01:CA:55 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 1695 Signing time: Tue 22 Jul 2025 16:49:39 +0000 Manifest this update: Tue 22 Jul 2025 16:49:38 +0000 Manifest next update: Tue 29 Jul 2025 16:49:38 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: 5OM0bvE5htHyUXWuRnLDmaGeRMJMrgp/dY+sLF2PVzA=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5792 (0x16a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Jul 22 16:49:38 2025 GMT Not After : Jul 29 16:49:38 2025 GMT Subject: CN=687fc123-e7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4e:3d:5c:53:ad:96:a6:41:ce:1f:ff:11:56: 74:3a:82:33:bf:78:0c:6c:37:f5:83:92:fd:6b:66: 5b:e2:df:9c:73:3e:10:e5:c9:65:ef:1a:a1:fd:d5: 05:6d:37:4e:ff:13:ff:a0:b3:cc:dd:82:29:45:a8: 25:3d:78:6f:3f:33:55:a1:70:ca:d2:18:09:ca:96: f6:91:4f:65:c2:8d:58:f2:50:12:f0:d5:07:55:88: d0:c2:ed:da:55:d2:97:a9:39:b8:66:74:25:10:0d: 7e:de:c9:e4:b7:5b:de:d0:63:fd:bb:ba:4b:34:f2: 42:a6:83:29:83:11:9a:42:b4:91:23:dc:92:fd:a1: 82:51:58:22:7d:fe:11:d7:22:ad:06:11:77:e2:d1: f3:29:5e:18:ed:db:ec:72:70:5c:11:7f:37:a5:e6: 4b:21:85:06:8e:9f:9a:89:1f:51:5d:4b:57:a9:5b: 6f:92:33:ad:fe:cf:12:79:fe:07:f6:db:90:e3:c5: 73:eb:86:4b:4a:a0:e6:26:8a:6e:3a:f5:ce:fa:fd: 2c:37:db:b2:1b:a2:5a:37:51:c0:46:e5:08:76:f6: 9c:e8:31:af:47:ef:f4:2c:2b:aa:90:6f:8c:3c:8b: 2b:a4:56:de:63:32:1a:7b:5e:d0:fa:38:4c:c1:90: 6e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0F:CB:20:88:28:BE:76:DE:12:FD:C8:ED:61:E1:9F:5F:01:CA:55 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5e:c8:46:68:39:2a:de:6c:c6:9c:34:31:49:fb:e3:1a:92: 51:cb:e0:bd:2d:e1:d4:36:d4:7e:57:94:c9:a7:2a:ee:30:c5: 44:f5:30:00:65:d6:42:14:f6:aa:1a:d9:cf:77:c5:6e:e7:f6: e3:a8:a0:9e:7d:89:92:55:4f:0b:99:94:89:d6:7d:33:8b:0d: ff:29:36:28:d4:57:c4:b5:e5:fe:9a:ed:1b:ac:3b:16:20:ef: 16:59:8a:f5:fd:19:d6:12:66:86:ed:4a:b4:43:4e:e0:8d:4f: a8:2a:f0:e2:25:6c:ae:6a:07:19:02:32:47:d9:ff:d5:a9:96: 52:0c:0e:c2:bb:f9:7f:a7:d3:df:c7:d5:25:7c:a2:68:94:b0: ae:0f:7b:d4:07:06:39:1c:43:f2:16:98:0a:f5:f2:3b:3c:30: 67:d2:83:68:1a:73:d1:dd:65:9d:ff:36:b3:70:c0:18:8f:a9: b7:35:32:7a:4c:e9:da:19:fc:80:e2:4b:c0:87:59:4e:3f:0e: 7e:e3:6b:e5:10:c8:da:2e:39:23:63:eb:20:5e:23:a7:fd:16: d6:a8:3f:36:5c:92:97:ef:31:c6:b0:58:ce:e0:8a:8a:8f:65: a7:d8:f4:f6:db:51:41:a8:15:a8:e7:3d:e8:7f:33:e6:d6:fa: f0:c0:81:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNzIyMTY0OTM4WhcNMjUwNzI5MTY0OTM4WjAYMRYwFAYD VQQDEw02ODdmYzEyMy1lN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7k49XFOtlqZBzh//EVZ0OoIzv3gMbDf1g5L9a2Zb4t+ccz4Q5cll7xqh/dUF bTdO/xP/oLPM3YIpRaglPXhvPzNVoXDK0hgJypb2kU9lwo1Y8lAS8NUHVYjQwu3a VdKXqTm4ZnQlEA1+3snkt1ve0GP9u7pLNPJCpoMpgxGaQrSRI9yS/aGCUVgiff4R 1yKtBhF34tHzKV4Y7dvscnBcEX83peZLIYUGjp+aiR9RXUtXqVtvkjOt/s8Sef4H 9tuQ48Vz64ZLSqDmJopuOvXO+v0sN9uyG6JaN1HARuUIdvac6DGvR+/0LCuqkG+M PIsrpFbeYzIae17Q+jhMwZBuaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIPyyCI KL523hL9yO1h4Z9fAcpVMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvXshGaDkq3mzGnDQxSfvjGpJRy+C9LeHUNtR+V5TJpyruMMVE9TAA ZdZCFPaqGtnPd8Vu5/bjqKCefYmSVU8LmZSJ1n0ziw3/KTYo1FfEteX+mu0brDsW IO8WWYr1/RnWEmaG7Uq0Q07gjU+oKvDiJWyuagcZAjJH2f/VqZZSDA7Cu/l/p9Pf x9UlfKJolLCuD3vUBwY5HEPyFpgK9fI7PDBn0oNoGnPR3WWd/zazcMAYj6m3NTJ6 TOnaGfyA4kvAh1lOPw5+42vlEMjaLjkjY+sgXiOn/RbWqD82XJKX7zHGsFjO4IqK j2Wn2PT221FBqBWo5z3ofzPm1vrwwIG0 -----END CERTIFICATE-----Generated at Thu Jul 24 05:02:44 2025 by rpki-client