$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: ldJFbl+j5EHsq4mLJY8qJuBVKVZGDRwooqybNhVJNMc= Subject key identifier: 89:87:92:20:4A:BC:44:3D:47:73:75:04:04:88:99:42:3C:DB:1D:BB Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E1A Signing time: Fri 22 Aug 2025 17:56:40 +0000 Manifest this update: Fri 22 Aug 2025 17:56:39 +0000 Manifest next update: Fri 29 Aug 2025 17:56:39 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: FGF1qA20byZAbvD7cBXYY6G9CAMWw0ajCM9++okTfqU=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3621 (0xe25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Aug 22 17:56:39 2025 GMT Not After : Aug 29 17:56:39 2025 GMT Subject: CN=68a8af57-29a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b1:3b:96:be:54:27:f6:08:68:9f:2f:af:d8: 92:ba:18:b1:a7:ec:1c:85:ab:15:d6:62:31:c9:80: e3:fc:aa:86:54:e9:24:0f:8a:46:fa:e9:3d:b9:4f: 5b:5c:15:6e:9f:a3:ff:f8:3b:83:e8:41:4a:f8:b8: eb:d9:72:48:b4:f5:43:45:82:a8:ac:85:c3:93:74: e4:b0:f7:29:7e:45:39:cf:ba:51:7d:61:c8:20:09: 7d:0e:45:64:2f:23:eb:1a:c3:6a:41:02:07:49:e5: 91:2e:2e:a7:b7:79:69:f9:58:d9:50:d3:8b:f7:22: 41:5f:2b:6d:ce:53:a7:b6:3e:df:f4:18:46:07:3d: 00:46:36:1b:5d:14:f4:ae:58:93:a3:01:35:06:22: a4:9f:42:df:14:2a:bb:28:e7:45:2c:18:09:e3:65: 63:48:73:cd:d5:84:a0:71:78:46:0d:ba:be:e2:ea: 8d:a2:a5:4f:e5:bd:4b:48:b3:7f:7e:8b:f1:c7:ff: 15:f2:2e:c2:66:be:fc:0e:76:4c:c3:f9:67:71:ba: 23:13:56:bb:75:c3:dc:cc:49:ce:13:dd:b0:2c:d9: fa:1c:f5:77:5d:2d:ce:40:e0:62:48:82:42:92:50: 5b:42:53:ba:a5:6c:96:6d:a1:fb:f8:90:0a:5b:f5: b1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:87:92:20:4A:BC:44:3D:47:73:75:04:04:88:99:42:3C:DB:1D:BB X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c7:e9:65:5a:3e:f3:3d:7f:d7:38:99:93:07:15:a1:bf:0c: 71:e2:20:5f:25:3f:3a:4d:ce:6b:53:8a:f5:6d:06:6d:93:7c: ff:31:81:e3:48:ec:05:f6:27:e2:51:5f:05:3f:dc:1a:03:43: a9:69:ba:c0:ed:19:47:b5:71:73:da:cb:23:c0:46:29:40:b6: 4e:92:d8:80:4a:b4:bf:1a:e0:16:ce:3d:f9:8e:b0:4f:1b:21: f3:49:db:ea:99:e4:44:a2:a0:ac:23:9e:3e:0e:d1:e5:5b:91: f0:56:4f:48:e3:e0:62:10:aa:dd:d4:61:14:63:05:3a:e0:46: d5:c8:1f:d2:2d:df:85:a5:5e:93:cd:0f:f8:2e:4b:81:9f:f3: de:98:31:11:b1:ae:fc:55:00:00:d3:e4:cd:d4:52:a5:c6:f1: 32:b9:ab:84:a8:37:d9:22:2b:cf:c0:e4:c9:7b:56:7a:12:0f: bb:56:67:54:47:a4:dd:5b:32:9d:49:22:ac:f0:4c:42:3e:92: b7:4b:90:36:53:a8:8c:1b:37:e1:96:40:01:61:57:57:eb:44: 4f:0a:9d:34:9e:d2:a8:08:8d:ee:46:ba:1e:f3:06:05:97:d0: 64:7b:70:85:dc:10:cd:3a:5b:60:94:32:d6:50:d0:92:63:ff: de:d3:68:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwODIyMTc1NjM5WhcNMjUwODI5MTc1NjM5WjAYMRYwFAYD VQQDEw02OGE4YWY1Ny0yOWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rE7lr5UJ/YIaJ8vr9iSuhixp+wchasV1mIxyYDj/KqGVOkkD4pG+uk9uU9b XBVun6P/+DuD6EFK+Ljr2XJItPVDRYKorIXDk3TksPcpfkU5z7pRfWHIIAl9DkVk LyPrGsNqQQIHSeWRLi6nt3lp+VjZUNOL9yJBXyttzlOntj7f9BhGBz0ARjYbXRT0 rliTowE1BiKkn0LfFCq7KOdFLBgJ42VjSHPN1YSgcXhGDbq+4uqNoqVP5b1LSLN/ fovxx/8V8i7CZr78DnZMw/lncbojE1a7dcPczEnOE92wLNn6HPV3XS3OQOBiSIJC klBbQlO6pWyWbaH7+JAKW/WxLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImHkiBK vEQ9R3N1BASImUI82x27MB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbx+llWj7zPX/XOJmTBxWhvwxx4iBfJT86Tc5rU4r1bQZtk3z/MYHj SOwF9ifiUV8FP9waA0OpabrA7RlHtXFz2ssjwEYpQLZOktiASrS/GuAWzj35jrBP GyHzSdvqmeREoqCsI54+DtHlW5HwVk9I4+BiEKrd1GEUYwU64EbVyB/SLd+FpV6T zQ/4LkuBn/PemDERsa78VQAA0+TN1FKlxvEyuauEqDfZIivPwOTJe1Z6Eg+7VmdU R6TdWzKdSSKs8ExCPpK3S5A2U6iMGzfhlkABYVdX60RPCp00ntKoCI3uRroe8wYF l9Bke3CF3BDNOltglDLWUNCSY//e02jr -----END CERTIFICATE-----Generated at Sat Aug 23 19:36:39 2025 by rpki-client