$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: 17zc8mleBGKczAGwuFbStjTkjDhN7a7PNSS1rxIDfh4= Subject key identifier: 02:9A:EF:09:DB:02:C9:1B:57:01:70:9E:F6:15:57:0A:A3:1F:03:5E Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 1682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 1678 Signing time: Fri 30 May 2025 16:52:53 +0000 Manifest this update: Fri 30 May 2025 16:52:52 +0000 Manifest next update: Fri 06 Jun 2025 16:52:52 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: n2k0sOZhL+Maup6Hn7dAfAJiR57QOYM7fpNGQl1bbfQ=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: l/QXhkP0PiImWOQFu3VwXh2hTS7h1F0aUkdMN0JWiZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5762 (0x1682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: May 30 16:52:52 2025 GMT Not After : Jun 6 16:52:52 2025 GMT Subject: CN=6839e264-e192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5b:0f:63:70:08:52:fb:0a:2a:2b:47:15:f8: dd:ab:a1:1d:eb:39:61:2e:a3:2e:79:f8:67:78:aa: c3:4b:33:84:aa:72:14:8c:54:fd:fb:e1:d9:3b:8f: 81:07:8e:dc:bd:43:2d:d7:55:13:97:98:a3:de:22: a4:47:38:ab:5d:ca:9e:a8:be:fe:46:1c:f4:68:e6: bd:e5:0b:51:b4:36:dc:e1:dc:42:41:e6:d9:e6:d9: 2f:84:e6:d3:2d:44:d1:98:a5:24:c4:9a:59:41:1f: 41:4b:29:05:5e:d9:a7:63:4b:ac:41:96:d4:14:60: 77:04:84:ad:50:e0:a7:76:8c:d1:40:2f:45:a0:20: 97:2d:91:04:4d:c9:5e:0c:84:05:da:a0:7f:55:59: 18:6b:4f:5a:3d:d0:03:3f:08:f4:78:dc:8f:ba:e4: be:0e:87:96:54:70:cd:6e:dc:b8:a1:40:4c:9c:9d: 2b:3e:21:a7:02:82:eb:11:f6:29:e5:72:9d:46:5c: 58:38:b0:85:64:16:c7:72:99:79:3e:80:db:78:5f: 25:1e:a6:58:7b:35:69:98:d8:68:b7:9b:c6:02:67: 45:a2:bf:f6:7f:4f:00:3e:84:3f:e6:c4:d5:94:e7: 53:ab:b4:3d:62:ae:0f:ed:68:2f:19:9f:6d:54:2f: c8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9A:EF:09:DB:02:C9:1B:57:01:70:9E:F6:15:57:0A:A3:1F:03:5E X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:7d:81:ac:ff:93:8b:15:84:18:23:31:64:45:3e:05:05:66: 9f:96:dd:f6:af:e1:dc:56:c2:ea:b9:ec:ee:10:71:b4:ef:4c: 94:39:f0:6b:43:11:b1:2c:85:83:a4:77:3b:e7:b1:f4:11:b0: e3:f0:e2:96:81:30:92:0d:77:99:e6:06:1c:01:e7:f3:7c:6d: 3d:a5:96:83:64:be:21:ea:2f:c8:89:6d:18:a7:78:25:16:83: 43:84:a6:87:50:ed:ed:96:43:6f:5e:95:ab:ae:9a:51:11:12: 6e:5a:f6:03:70:6d:1e:b5:a0:1a:48:8f:92:ef:5f:e1:c1:7b: 8c:ea:0b:c9:55:97:38:e1:e1:20:0f:68:e1:f4:e3:10:26:c1: f1:c3:bf:c4:9e:69:fe:2d:c4:17:0a:f7:13:50:7d:5c:50:f4: a8:0f:c3:c2:b3:88:0a:6a:39:2a:f3:7d:18:30:46:14:4b:7b: 86:75:0d:f9:17:b9:f8:85:5d:9a:77:ce:7c:f7:8e:f2:3d:34: 77:db:7f:89:84:84:0c:66:a3:e2:69:fb:d4:86:5e:9f:04:4f: 02:e8:da:9e:7c:06:28:0e:a8:78:a4:be:b4:d9:8b:20:ed:4a: d2:7e:4f:f0:2b:70:78:9c:d7:c9:0f:d5:e9:d5:b5:20:47:bc: 46:82:97:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNTMwMTY1MjUyWhcNMjUwNjA2MTY1MjUyWjAYMRYwFAYD VQQDEw02ODM5ZTI2NC1lMTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVsPY3AIUvsKKitHFfjdq6Ed6zlhLqMuefhneKrDSzOEqnIUjFT9++HZO4+B B47cvUMt11UTl5ij3iKkRzirXcqeqL7+Rhz0aOa95QtRtDbc4dxCQebZ5tkvhObT LUTRmKUkxJpZQR9BSykFXtmnY0usQZbUFGB3BIStUOCndozRQC9FoCCXLZEETcle DIQF2qB/VVkYa09aPdADPwj0eNyPuuS+DoeWVHDNbty4oUBMnJ0rPiGnAoLrEfYp 5XKdRlxYOLCFZBbHcpl5PoDbeF8lHqZYezVpmNhot5vGAmdFor/2f08APoQ/5sTV lOdTq7Q9Yq4P7WgvGZ9tVC/IywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKa7wnb AskbVwFwnvYVVwqjHwNeMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcfYGs/5OLFYQYIzFkRT4FBWaflt32r+HcVsLquezuEHG070yUOfBr QxGxLIWDpHc757H0EbDj8OKWgTCSDXeZ5gYcAefzfG09pZaDZL4h6i/IiW0Yp3gl FoNDhKaHUO3tlkNvXpWrrppRERJuWvYDcG0etaAaSI+S71/hwXuM6gvJVZc44eEg D2jh9OMQJsHxw7/Enmn+LcQXCvcTUH1cUPSoD8PCs4gKajkq830YMEYUS3uGdQ35 F7n4hV2ad858947yPTR323+JhIQMZqPiafvUhl6fBE8C6NqefAYoDqh4pL602Ysg 7UrSfk/wK3B4nNfJD9Xp1bUgR7xGgpdu -----END CERTIFICATE-----Generated at Sat May 31 17:34:26 2025 by rpki-client