$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: 4XfeFNmIMIu+BEUHAZJ4qTwSF4dsWVPR+0ZLov7HY7M= Subject key identifier: 1D:D4:96:70:A6:5E:73:09:A7:F6:EE:2B:09:C9:8E:3F:35:B3:DB:CB Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E00 Signing time: Wed 02 Jul 2025 18:04:03 +0000 Manifest this update: Wed 02 Jul 2025 18:04:02 +0000 Manifest next update: Wed 09 Jul 2025 18:04:02 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: UCpFcfP1OHV7sXFHsHFVVczSK/OcnV7Qahv/IEpwZPk=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3595 (0xe0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Jul 2 18:04:02 2025 GMT Not After : Jul 9 18:04:02 2025 GMT Subject: CN=68657493-9d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:48:ac:91:4a:e0:92:30:07:ec:e1:3e:4e: 92:42:6c:7d:c3:7c:75:b7:a9:d2:0e:c3:90:20:98: 64:d5:62:0b:f4:23:a9:7e:98:de:5e:45:f4:bf:6e: c2:ec:0e:57:0a:f5:d0:e2:96:20:46:0f:63:79:61: 03:f1:42:0f:9c:8f:26:51:36:d1:d3:10:04:8f:14: df:68:cc:44:61:8e:5a:f2:46:3b:74:00:f7:e6:3b: 62:95:70:a1:a6:df:72:51:e6:2c:5a:a9:e3:3d:9e: 30:f7:31:36:3f:59:eb:c0:e2:67:21:e4:c6:d2:4b: d8:35:73:24:cd:30:e6:1e:fa:d8:0a:26:ee:e7:3b: b0:3e:38:6e:3a:01:aa:7b:3f:cf:3e:67:3d:55:c1: 7b:3e:10:48:62:63:af:be:38:90:64:18:99:19:f2: f9:b1:b9:dc:47:cf:13:d2:4f:7b:fc:bc:90:76:ed: 7b:f1:fe:d1:6d:07:12:56:46:a8:96:f0:d7:84:d4: 68:f7:31:0e:6d:ab:52:7f:19:ff:67:eb:2f:e3:58: 3c:88:25:0e:bf:cb:d6:d5:f9:6a:00:24:bc:c5:ae: 5d:ce:d4:8f:fc:1d:5b:9d:43:ae:5c:fc:72:0f:8c: e4:e2:0b:6b:90:93:5b:de:bd:0b:60:22:05:82:ca: 4f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D4:96:70:A6:5E:73:09:A7:F6:EE:2B:09:C9:8E:3F:35:B3:DB:CB X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:8b:90:61:36:00:18:f7:33:5a:f5:e1:d6:b6:6e:b9:10:d0: 0c:b1:b8:ca:20:09:c7:7c:b1:e7:c1:23:54:c8:c1:66:19:5b: 97:32:29:36:3a:b7:45:04:76:d3:e0:4f:da:f6:10:4c:20:42: 39:d0:a8:f6:b8:65:b4:ce:8c:33:68:5f:11:15:78:d0:0c:cf: 35:48:a3:e7:12:99:00:7a:d1:1b:5a:df:ca:e3:9b:25:25:b4: 24:7b:b9:64:c3:e6:07:3e:eb:bb:f4:a2:07:4b:b7:a3:22:34: cf:fd:b0:28:46:3a:de:d4:b7:6a:5e:b9:2e:a4:2f:b8:76:f9: d5:43:34:72:f9:98:26:1e:50:88:93:f5:10:b1:cf:04:7a:b6: d0:79:95:31:84:4b:15:9b:ce:4e:96:83:d4:74:e5:c3:2b:c3: f4:75:11:07:9b:ed:f1:39:55:ba:f5:4d:3a:75:1c:82:4a:24: 65:d9:db:5e:56:d5:b2:22:8b:74:9c:26:e0:87:cb:e8:2f:84: 2b:f7:7a:c8:5f:49:40:80:d7:1e:20:ac:c6:cd:d6:97:f7:62: ab:65:df:e0:79:1e:8b:f8:a4:61:6d:ae:66:73:bf:d6:5a:be: d2:a0:b1:ec:49:c5:9a:be:6a:88:9c:84:0e:de:45:68:82:16: dc:c5:e0:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwNzAyMTgwNDAyWhcNMjUwNzA5MTgwNDAyWjAYMRYwFAYD VQQDEw02ODY1NzQ5My05ZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhNIrJFK4JIwB+zhPk6SQmx9w3x1t6nSDsOQIJhk1WIL9COpfpjeXkX0v27C 7A5XCvXQ4pYgRg9jeWED8UIPnI8mUTbR0xAEjxTfaMxEYY5a8kY7dAD35jtilXCh pt9yUeYsWqnjPZ4w9zE2P1nrwOJnIeTG0kvYNXMkzTDmHvrYCibu5zuwPjhuOgGq ez/PPmc9VcF7PhBIYmOvvjiQZBiZGfL5sbncR88T0k97/LyQdu178f7RbQcSVkao lvDXhNRo9zEObatSfxn/Z+sv41g8iCUOv8vW1flqACS8xa5dztSP/B1bnUOuXPxy D4zk4gtrkJNb3r0LYCIFgspP1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3UlnCm XnMJp/buKwnJjj81s9vLMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBki5BhNgAY9zNa9eHWtm65ENAMsbjKIAnHfLHnwSNUyMFmGVuXMik2 OrdFBHbT4E/a9hBMIEI50Kj2uGW0zowzaF8RFXjQDM81SKPnEpkAetEbWt/K45sl JbQke7lkw+YHPuu79KIHS7ejIjTP/bAoRjre1LdqXrkupC+4dvnVQzRy+ZgmHlCI k/UQsc8EerbQeZUxhEsVm85OloPUdOXDK8P0dREHm+3xOVW69U06dRyCSiRl2dte VtWyIot0nCbgh8voL4Qr93rIX0lAgNceIKzGzdaX92KrZd/geR6L+KRhba5mc7/W Wr7SoLHsScWavmqInIQO3kVoghbcxeDE -----END CERTIFICATE-----Generated at Thu Jul 3 02:05:18 2025 by rpki-client