$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: MZxdEno3GFR4X4szslozoa2hpjatK/NFfKz3DQRk+fc= Subject key identifier: F7:D3:A0:2B:71:CD:E0:19:A6:46:3C:59:9A:9A:FE:AC:FD:CD:29:FE Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 16B3 Signing time: Thu 18 Sep 2025 16:48:08 +0000 Manifest this update: Thu 18 Sep 2025 16:48:07 +0000 Manifest next update: Thu 25 Sep 2025 16:48:07 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: wsgGZGeYXgp7S2/VmUuRvACLO5JI1jWX4D0fAm3Sne8=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5822 (0x16be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Sep 18 16:48:07 2025 GMT Not After : Sep 25 16:48:07 2025 GMT Subject: CN=68cc37c8-91bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ac:33:e1:04:eb:c2:7d:56:ce:e1:cf:8d:9f: fb:5e:5a:c9:85:70:0b:bf:01:e8:44:95:cc:21:71: 64:d2:c7:b3:a4:86:07:b7:01:ab:39:cd:4b:06:07: 28:65:2c:c5:64:f3:80:d5:e9:05:88:a8:c5:a3:60: 9f:81:c7:c2:11:5c:ca:6e:67:65:2f:eb:17:c8:f0: 3c:5e:2a:f4:3c:70:28:97:ec:8b:0b:14:9a:9b:ad: b3:d8:26:fc:ae:01:cc:f3:69:28:8e:fc:05:18:6e: 84:ab:d0:aa:58:96:ed:91:15:a6:e0:4f:e0:63:46: 89:23:95:36:8c:a5:ff:cc:80:ac:d9:75:08:42:33: 34:f3:02:41:d0:93:bc:a7:33:a9:ed:fe:e3:c7:dd: cb:4a:c2:35:3d:a9:a0:f7:50:21:11:11:d2:46:02: 39:b7:cd:4a:de:a5:3d:a9:6b:a5:c2:5c:d2:d5:24: 24:6a:17:39:f6:34:e4:1d:43:75:db:1b:77:bb:9b: be:6f:b0:0e:b7:32:c9:38:f4:ae:8d:2d:38:61:82: 00:e1:0f:9d:41:90:00:c4:e0:97:75:08:3a:87:fa: 30:37:b5:d7:35:4c:73:04:87:e3:6c:46:29:0a:29: 5c:20:65:72:02:e4:3b:54:ad:be:6b:64:a1:f2:67: 91:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D3:A0:2B:71:CD:E0:19:A6:46:3C:59:9A:9A:FE:AC:FD:CD:29:FE X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:9e:23:e8:fb:42:ba:43:c6:05:ca:23:3e:cf:66:73:f1:11: 34:47:cb:06:b6:cd:33:c7:b4:f9:15:ee:d2:b9:19:f7:0a:36: 72:40:13:ac:22:0f:62:80:55:78:71:70:53:9e:04:1a:83:61: 36:55:47:4c:d4:6e:31:47:80:42:4e:5b:00:7a:2d:66:9f:73: 3b:a9:48:6a:2b:97:9c:83:74:4d:20:ae:21:13:6a:fe:2e:6f: 92:60:e7:52:ee:51:28:30:45:52:87:b6:a6:71:9d:6e:3c:7d: 05:53:6a:30:55:0c:5b:33:3e:21:71:d7:9c:c9:30:75:7a:df: 00:73:a2:ca:ee:fa:f4:5f:c9:af:e4:f2:29:d2:64:b4:09:57: 64:64:30:a2:cc:ab:96:73:6e:f9:a1:b2:dc:51:0c:c4:68:66: 96:b9:c9:1e:5d:c1:68:b9:81:ff:ca:c1:72:85:0a:61:c0:f5: fd:44:2e:bf:75:21:a6:47:f8:31:14:63:65:83:11:36:84:c3: 2d:0d:36:2d:ac:a2:cd:24:1c:af:47:65:14:14:b2:88:2c:fb: 41:7e:68:5d:ee:ec:45:97:14:b7:3c:70:4a:30:a7:69:dc:49: d5:4b:e3:34:a3:f6:10:cf:86:ab:4d:1d:53:96:b0:cb:a8:fe: 7b:24:4e:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwOTE4MTY0ODA3WhcNMjUwOTI1MTY0ODA3WjAYMRYwFAYD VQQDEw02OGNjMzdjOC05MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnawz4QTrwn1WzuHPjZ/7XlrJhXALvwHoRJXMIXFk0sezpIYHtwGrOc1LBgco ZSzFZPOA1ekFiKjFo2CfgcfCEVzKbmdlL+sXyPA8Xir0PHAol+yLCxSam62z2Cb8 rgHM82kojvwFGG6Eq9CqWJbtkRWm4E/gY0aJI5U2jKX/zICs2XUIQjM08wJB0JO8 pzOp7f7jx93LSsI1Pamg91AhERHSRgI5t81K3qU9qWulwlzS1SQkahc59jTkHUN1 2xt3u5u+b7AOtzLJOPSujS04YYIA4Q+dQZAAxOCXdQg6h/owN7XXNUxzBIfjbEYp CilcIGVyAuQ7VK2+a2Sh8meR5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfToCtx zeAZpkY8WZqa/qz9zSn+MB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkniPo+0K6Q8YFyiM+z2Zz8RE0R8sGts0zx7T5Fe7SuRn3CjZyQBOs Ig9igFV4cXBTngQag2E2VUdM1G4xR4BCTlsAei1mn3M7qUhqK5ecg3RNIK4hE2r+ Lm+SYOdS7lEoMEVSh7amcZ1uPH0FU2owVQxbMz4hcdecyTB1et8Ac6LK7vr0X8mv 5PIp0mS0CVdkZDCizKuWc275obLcUQzEaGaWuckeXcFouYH/ysFyhQphwPX9RC6/ dSGmR/gxFGNlgxE2hMMtDTYtrKLNJByvR2UUFLKILPtBfmhd7uxFlxS3PHBKMKdp 3EnVS+M0o/YQz4arTR1TlrDLqP57JE4q -----END CERTIFICATE-----Generated at Fri Sep 19 02:42:21 2025 by rpki-client