$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: IBRfo1jMLwpWgK/BxbPQh6wpapkAWlJ3ZDKKyVX2O1c= Subject key identifier: 49:ED:8F:90:30:74:CC:B7:C8:EC:43:F8:72:3F:09:E4:77:01:18:92 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 16C2 Signing time: Sat 18 Oct 2025 17:05:09 +0000 Manifest this update: Sat 18 Oct 2025 17:05:08 +0000 Manifest next update: Sat 25 Oct 2025 17:05:08 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: /gCykURtXELTacwZY33CyJnk7r5czmXQTwx3OUXNLBw=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5837 (0x16cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Oct 18 17:05:08 2025 GMT Not After : Oct 25 17:05:08 2025 GMT Subject: CN=68f3c8c4-30ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:d3:9e:fb:83:31:cf:5b:60:ae:53:a1:98: 96:8c:9c:d2:c5:03:3d:81:5c:f7:0b:89:18:48:88: d4:4b:8c:cf:0f:98:79:31:f6:77:db:68:ea:c6:89: 97:37:73:18:cb:da:e7:61:71:bf:3b:b0:69:90:fa: 4d:6e:1d:83:5f:6a:52:65:40:03:bb:23:f1:6f:29: 6a:88:f4:ba:14:0a:82:86:fe:00:43:79:df:24:95: ad:40:18:bc:91:a0:a0:fd:65:0e:43:07:93:92:24: 4d:61:ae:4a:d3:9a:b5:db:57:b9:9b:6f:bc:3e:fb: f2:d1:2e:b5:79:d3:75:14:47:7b:bc:97:d6:74:85: fa:9a:9b:ba:2e:bf:bf:53:5e:35:70:a6:37:a9:01: 39:87:64:f9:38:ca:fd:e4:51:c8:6b:b3:92:b2:82: 2a:a1:1b:94:29:15:4e:cf:b1:a8:86:0c:50:d7:b8: 4e:61:8e:e7:4c:49:96:f6:0c:4e:a0:4c:78:ad:22: e7:b5:33:9c:17:51:72:ce:fc:04:ab:14:51:02:5e: 90:8e:0e:e8:ea:c2:d8:78:2a:b1:da:86:57:31:c8: 24:14:3a:60:d9:47:dc:20:27:a2:cf:99:4e:fc:3d: d9:d7:b6:d9:92:08:b3:1e:e6:a5:26:32:58:ba:06: c8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:ED:8F:90:30:74:CC:B7:C8:EC:43:F8:72:3F:09:E4:77:01:18:92 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:d0:47:6f:ec:16:ec:71:0b:00:36:8f:d8:27:5b:87:58:87: 12:17:41:af:24:d3:b0:ef:51:8e:21:33:0d:7a:79:19:75:a0: e5:eb:75:3e:5e:db:cb:03:7f:fa:6f:8e:59:ac:b6:3b:78:b7: 6b:7b:b5:3a:ac:27:b4:ae:5e:00:3d:1e:6e:ba:09:97:96:d7: 8b:6e:ee:1b:1b:5d:c4:ad:c3:93:e0:6c:e1:86:3c:bd:0a:37: e5:ed:aa:ff:e6:ff:7c:d9:11:6c:29:7b:2b:8f:22:5f:93:4e: 2e:b6:db:47:7c:b7:9d:6d:03:72:77:47:32:d1:3e:9f:05:52: 56:2c:d5:ab:7a:f6:25:17:bf:12:37:c3:8d:6f:52:d5:21:81: 01:96:5a:f8:11:e9:99:21:74:80:02:4f:96:f8:7c:b5:e4:e7: f3:e1:84:a7:38:2b:bc:c0:63:42:83:30:63:61:08:af:08:22: 5b:6b:48:8c:7f:43:d4:ad:69:71:ed:08:64:c5:11:07:50:03: 15:11:89:5a:fe:03:35:70:7b:33:8b:09:b9:14:19:ed:0b:bb: 15:c3:fe:29:9a:7e:84:46:8d:95:49:bd:27:53:47:04:33:7a: 02:db:24:be:ac:84:08:da:88:a5:cb:28:03:27:84:81:6d:0d: d6:ca:10:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUxMDE4MTcwNTA4WhcNMjUxMDI1MTcwNTA4WjAYMRYwFAYD VQQDEw02OGYzYzhjNC0zMGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtLTnvuDMc9bYK5ToZiWjJzSxQM9gVz3C4kYSIjUS4zPD5h5MfZ322jqxomX N3MYy9rnYXG/O7BpkPpNbh2DX2pSZUADuyPxbylqiPS6FAqChv4AQ3nfJJWtQBi8 kaCg/WUOQweTkiRNYa5K05q121e5m2+8Pvvy0S61edN1FEd7vJfWdIX6mpu6Lr+/ U141cKY3qQE5h2T5OMr95FHIa7OSsoIqoRuUKRVOz7GohgxQ17hOYY7nTEmW9gxO oEx4rSLntTOcF1FyzvwEqxRRAl6Qjg7o6sLYeCqx2oZXMcgkFDpg2UfcICeiz5lO /D3Z17bZkgizHualJjJYugbIrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEntj5Aw dMy3yOxD+HI/CeR3ARiSMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC70Edv7BbscQsANo/YJ1uHWIcSF0GvJNOw71GOITMNenkZdaDl63U+ XtvLA3/6b45ZrLY7eLdre7U6rCe0rl4APR5uugmXlteLbu4bG13ErcOT4Gzhhjy9 Cjfl7ar/5v982RFsKXsrjyJfk04utttHfLedbQNyd0cy0T6fBVJWLNWrevYlF78S N8ONb1LVIYEBllr4EemZIXSAAk+W+Hy15Ofz4YSnOCu8wGNCgzBjYQivCCJba0iM f0PUrWlx7QhkxREHUAMVEYla/gM1cHsziwm5FBntC7sVw/4pmn6ERo2VSb0nU0cE M3oC2yS+rIQI2oilyygDJ4SBbQ3WyhDe -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:47 2025 by rpki-client