$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: PZjGHscKw2em6SfrEp6knGbwqXNNZdBbU/0LH36JzZY= Subject key identifier: FA:CC:B0:D3:F0:AA:99:4A:89:50:E5:9B:D3:87:48:82:5D:AD:03:1D Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 16B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 16A5 Signing time: Fri 22 Aug 2025 16:47:23 +0000 Manifest this update: Fri 22 Aug 2025 16:47:22 +0000 Manifest next update: Fri 29 Aug 2025 16:47:22 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: /a+UkH/qoA5hPomCZ6wMtf4vzkEepHCXVFI8Frap7hY=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5808 (0x16b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Aug 22 16:47:22 2025 GMT Not After : Aug 29 16:47:22 2025 GMT Subject: CN=68a89f1a-c975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5b:91:4d:c6:ec:52:e4:26:26:dc:87:e8:53: 20:8e:c8:e4:1d:b1:e2:5a:b4:13:16:cd:44:ac:65: 7a:5b:c3:90:65:32:4b:fe:10:fb:93:ac:f6:16:64: 72:59:f8:30:6f:2f:4a:f4:fe:30:b0:37:9f:de:55: 17:cd:ee:00:d7:45:9b:af:6f:e0:60:8e:14:79:d5: cd:1c:b4:84:f2:ba:c1:8f:9c:22:ab:48:6a:37:53: 04:4e:11:1a:b9:c9:d3:a2:4c:af:01:2b:a0:ef:c7: fd:77:03:d4:a1:7c:f3:8b:b5:ec:7c:0b:45:67:b6: 4a:08:4b:84:d9:3e:19:95:10:c0:68:87:a1:ce:87: 7d:a5:bb:a3:4d:b0:59:cb:1f:ae:22:8b:cc:c3:20: 10:42:f2:46:90:31:82:51:65:3d:ca:97:de:28:f0: 83:71:d7:13:20:84:82:18:e1:11:a1:e3:83:be:bc: 78:26:66:c7:31:34:91:7b:6c:5e:03:62:7c:4c:1d: a6:62:2b:d0:4c:62:17:0e:48:72:7b:29:b8:e7:07: 22:bc:57:e3:70:60:51:ca:4e:57:1d:c4:e8:71:24: c9:e8:05:69:1f:77:24:58:e9:4e:a5:41:a8:52:5a: c7:01:a1:64:dd:33:5a:54:18:e4:e3:45:8c:fc:e3: f2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CC:B0:D3:F0:AA:99:4A:89:50:E5:9B:D3:87:48:82:5D:AD:03:1D X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:73:90:1b:51:d9:52:37:9c:22:c6:ab:e5:9d:4c:b8:39:14: 8a:68:e4:e1:99:ae:45:6b:81:56:2e:07:be:48:31:aa:e0:f5: b1:63:0d:78:d6:f5:49:cf:61:b2:8b:de:51:5b:e5:02:b7:f3: 44:bd:59:5f:bd:5f:f5:55:b0:d7:05:7a:82:7d:51:e6:ce:69: d3:6c:c0:ea:8e:0f:ae:a2:e7:84:50:68:d8:48:6e:75:eb:e9: 3c:7c:98:7f:7a:0f:7f:35:c9:e2:8f:7d:5f:58:b4:ac:3c:8d: 07:0d:7a:00:cd:67:c6:ba:c4:52:f3:89:11:36:b7:d6:5d:df: cd:06:68:5c:35:64:25:c5:d6:36:b0:be:e1:19:bf:48:c1:42: a1:e3:c8:58:84:c2:44:04:4b:e3:a1:30:01:1c:58:e3:81:54: 84:04:66:66:08:d8:cb:9d:7a:d2:ec:0c:30:91:20:51:e7:24: 6a:43:c9:a0:78:b1:b1:5b:2a:b8:59:dd:d4:93:12:86:ae:23: d1:46:ac:00:a1:6e:a5:b1:6f:33:c6:7d:2e:ab:7a:bf:11:00: ad:ea:85:6c:19:67:8f:a1:a8:4c:37:9d:c0:0c:6f:f5:3d:a9: 8a:71:10:d1:2b:c8:3c:6f:89:99:14:38:1a:13:16:52:0d:a2: 24:3f:02:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwODIyMTY0NzIyWhcNMjUwODI5MTY0NzIyWjAYMRYwFAYD VQQDEw02OGE4OWYxYS1jOTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FuRTcbsUuQmJtyH6FMgjsjkHbHiWrQTFs1ErGV6W8OQZTJL/hD7k6z2FmRy Wfgwby9K9P4wsDef3lUXze4A10Wbr2/gYI4UedXNHLSE8rrBj5wiq0hqN1METhEa ucnTokyvASug78f9dwPUoXzzi7XsfAtFZ7ZKCEuE2T4ZlRDAaIehzod9pbujTbBZ yx+uIovMwyAQQvJGkDGCUWU9ypfeKPCDcdcTIISCGOERoeODvrx4JmbHMTSRe2xe A2J8TB2mYivQTGIXDkhyeym45wcivFfjcGBRyk5XHcTocSTJ6AVpH3ckWOlOpUGo UlrHAaFk3TNaVBjk40WM/OPypQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrMsNPw qplKiVDlm9OHSIJdrQMdMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGc5AbUdlSN5wixqvlnUy4ORSKaOThma5Fa4FWLge+SDGq4PWxYw14 1vVJz2Gyi95RW+UCt/NEvVlfvV/1VbDXBXqCfVHmzmnTbMDqjg+uoueEUGjYSG51 6+k8fJh/eg9/Ncnij31fWLSsPI0HDXoAzWfGusRS84kRNrfWXd/NBmhcNWQlxdY2 sL7hGb9IwUKh48hYhMJEBEvjoTABHFjjgVSEBGZmCNjLnXrS7AwwkSBR5yRqQ8mg eLGxWyq4Wd3UkxKGriPRRqwAoW6lsW8zxn0uq3q/EQCt6oVsGWePoahMN53ADG/1 PamKcRDRK8g8b4mZFDgaExZSDaIkPwLO -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:05 2025 by rpki-client