$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: Fm8RIC84jj/ahxn/9mClD6gCDEMppKIaL804xSfqFYk= Subject key identifier: CA:6F:F5:2A:D6:B9:C5:FE:1E:B0:23:07:67:26:B5:B4:96:C0:29:6A Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 1696 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 168B Signing time: Wed 02 Jul 2025 16:49:26 +0000 Manifest this update: Wed 02 Jul 2025 16:49:25 +0000 Manifest next update: Wed 09 Jul 2025 16:49:25 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: CSDBMHQu4XYiiDUAkclq8NhR79UA1rrfTSk2UvKIwSE=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5782 (0x1696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Jul 2 16:49:25 2025 GMT Not After : Jul 9 16:49:25 2025 GMT Subject: CN=68656315-2ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b7:7e:92:53:75:c2:58:4f:e1:44:4f:64:18: f2:db:09:00:d1:ec:ab:b1:25:40:f2:8d:e6:49:3f: cb:0a:b9:23:84:e3:73:98:ef:d7:d6:ef:48:12:52: b7:80:5f:b1:79:3f:44:96:28:f1:86:79:bf:dd:9e: 77:2a:04:a9:52:65:d1:1a:e8:bd:27:4f:80:1e:ba: 5c:62:77:3b:5b:f1:ae:ac:91:7a:fa:29:65:70:60: 25:c6:e1:b2:a4:4c:dc:85:d0:01:35:12:82:03:af: 1a:ed:21:e1:6a:45:81:6d:f8:31:42:3a:d7:50:2e: 06:7f:e9:f1:f9:f5:88:55:24:d6:f3:a9:df:93:e2: f2:bf:26:49:eb:ed:4b:04:db:b8:d5:b1:ac:5c:b2: b6:7e:41:7e:c6:49:4c:e0:6b:21:40:de:b2:2e:31: b8:ea:92:12:3a:e8:d1:f9:35:34:15:8b:7b:eb:92: 4f:6f:0d:9a:ea:14:12:33:be:52:4d:70:5e:c6:dc: 7e:19:e3:e7:b7:f9:14:f3:96:6d:95:13:f5:c0:02: 0b:ea:b8:d6:54:6a:51:64:58:50:25:d3:1e:86:89: ee:36:64:4e:14:16:0a:ce:60:d0:22:eb:ef:df:c3: 1a:59:b8:a1:4a:b6:79:e3:97:b2:84:58:28:c2:d3: 11:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6F:F5:2A:D6:B9:C5:FE:1E:B0:23:07:67:26:B5:B4:96:C0:29:6A X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:40:df:ec:89:05:7e:cb:40:db:ac:1c:d3:10:5f:a3:75:86: 5c:7e:42:3b:5f:f4:01:36:1b:42:36:a6:44:17:c4:9b:6c:73: 13:0c:11:37:cb:fa:ce:fe:a2:af:38:35:77:bf:15:03:db:83: 02:59:ec:a0:98:1d:19:4d:e1:69:96:14:17:4a:55:ac:f0:55: fb:d1:ac:06:28:25:91:f4:1e:f9:98:7a:7f:31:90:f0:9e:93: 55:0d:1f:2c:be:87:2c:7f:7a:7b:0d:f2:da:9b:e6:8f:6e:b5: f2:7d:15:0a:14:19:43:3e:47:83:ed:e8:39:d9:38:30:37:90: e6:e1:21:7b:f8:1f:8a:5c:53:7a:56:fe:64:07:59:67:9f:6e: 29:27:57:5a:c4:ea:f0:c2:51:97:cc:95:8f:fa:ef:51:1e:6d: 40:76:4e:18:50:fa:9a:27:dd:3b:18:38:c6:9d:01:b4:74:9d: 05:00:42:d8:89:7f:59:2f:00:f6:24:47:82:42:c6:60:f2:b0: 44:7b:56:b4:70:3b:7d:66:8c:f7:a0:f8:a1:4b:1f:86:50:60: 58:a2:70:87:f7:30:26:c0:b1:ea:64:aa:27:29:b2:20:09:ea: 69:79:4d:ac:a4:11:06:e1:53:23:81:3a:49:2c:2e:e8:b3:d9: 38:db:1a:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNzAyMTY0OTI1WhcNMjUwNzA5MTY0OTI1WjAYMRYwFAYD VQQDEw02ODY1NjMxNS0yZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rd+klN1wlhP4URPZBjy2wkA0eyrsSVA8o3mST/LCrkjhONzmO/X1u9IElK3 gF+xeT9Elijxhnm/3Z53KgSpUmXRGui9J0+AHrpcYnc7W/GurJF6+illcGAlxuGy pEzchdABNRKCA68a7SHhakWBbfgxQjrXUC4Gf+nx+fWIVSTW86nfk+LyvyZJ6+1L BNu41bGsXLK2fkF+xklM4GshQN6yLjG46pISOujR+TU0FYt765JPbw2a6hQSM75S TXBextx+GePnt/kU85ZtlRP1wAIL6rjWVGpRZFhQJdMehonuNmROFBYKzmDQIuvv 38MaWbihSrZ545eyhFgowtMR/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpv9SrW ucX+HrAjB2cmtbSWwClqMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8QN/siQV+y0DbrBzTEF+jdYZcfkI7X/QBNhtCNqZEF8SbbHMTDBE3 y/rO/qKvODV3vxUD24MCWeygmB0ZTeFplhQXSlWs8FX70awGKCWR9B75mHp/MZDw npNVDR8svocsf3p7DfLam+aPbrXyfRUKFBlDPkeD7eg52TgwN5Dm4SF7+B+KXFN6 Vv5kB1lnn24pJ1daxOrwwlGXzJWP+u9RHm1Adk4YUPqaJ907GDjGnQG0dJ0FAELY iX9ZLwD2JEeCQsZg8rBEe1a0cDt9Zoz3oPihSx+GUGBYonCH9zAmwLHqZKonKbIg CeppeU2spBEG4VMjgTpJLC7os9k42xqa -----END CERTIFICATE-----Generated at Thu Jul 3 02:55:15 2025 by rpki-client