$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: vELUkCX/XwMEngwNtbIUlY/QG2DgE13Yt5W9ozXe21g= Subject key identifier: 92:D0:E8:C5:9C:F1:1B:DD:35:41:9E:C2:69:B0:87:0B:21:44:E4:53 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0DF7 Signing time: Sat 14 Jun 2025 17:46:15 +0000 Manifest this update: Sat 14 Jun 2025 17:46:14 +0000 Manifest next update: Sat 21 Jun 2025 17:46:14 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: 2sntxPQ+gZwvWre4ndyK8x+Lw/WfwK+6SEXJ4TWoZVI=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3586 (0xe02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Jun 14 17:46:14 2025 GMT Not After : Jun 21 17:46:14 2025 GMT Subject: CN=684db566-e964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:00:2f:22:38:0f:1a:fb:b5:63:d4:08:a1: 5c:52:cb:92:58:77:6f:0f:28:98:84:96:d9:e7:23: 73:fe:e3:8c:81:98:00:35:74:50:c8:48:62:07:97: 3b:c2:ee:fa:68:8f:af:e7:c9:9e:eb:4e:9a:a0:2c: fd:05:37:34:f5:04:89:1c:c1:bc:65:ef:49:10:18: c8:00:7e:e5:9c:24:21:c7:67:93:c0:35:c1:f8:2e: a2:07:f0:e9:f9:b8:22:aa:32:25:ed:b2:30:8e:e5: 39:a7:76:47:f3:9e:47:ca:91:c6:33:eb:d1:3a:16: 00:08:5a:10:9f:68:bb:3d:db:cf:a5:06:c3:5e:4b: aa:11:6c:a9:af:e9:76:23:62:3f:d9:c0:c7:cb:32: 72:07:8b:7e:6e:59:98:10:84:5a:0d:a7:37:20:a9: b0:a0:f2:fd:7b:55:d8:ed:a5:9f:70:a7:6e:12:36: 4d:b6:ce:f3:1f:a3:dc:bd:99:52:0c:13:82:43:1a: 38:30:55:b0:1b:51:3b:a5:56:48:2d:88:69:79:76: bf:25:92:66:df:b1:3b:1b:73:40:06:90:79:92:b0: 63:79:b7:4b:d2:0a:c5:c7:ac:06:96:f9:3b:ef:e7: c4:a9:4b:c0:01:aa:a6:0a:2b:23:a0:3c:64:c7:36: d3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D0:E8:C5:9C:F1:1B:DD:35:41:9E:C2:69:B0:87:0B:21:44:E4:53 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:73:95:1a:17:b0:88:67:ff:7b:56:2e:f4:57:3f:fc:04:74: 65:e9:1a:3c:d4:8f:30:94:c0:a0:11:98:02:2c:71:2d:14:07: e2:0c:ac:17:34:4e:8e:20:29:49:90:87:86:58:fd:95:d9:d5: 1f:89:bc:f8:fc:f6:08:ac:be:ea:f4:94:0f:65:55:14:0e:c6: 8f:e0:55:ee:d8:86:52:16:1a:5c:c5:9a:2a:8c:26:fe:88:f0: eb:f4:01:56:93:03:cf:48:fa:25:85:d7:db:86:84:21:02:8d: e7:37:03:d2:8c:e4:90:b6:6f:f4:e3:09:b5:c7:18:b7:8c:d9: 5a:e5:bf:e7:c0:14:04:0b:c6:64:fa:aa:1f:83:bd:24:2f:4f: ac:02:4b:38:38:d5:25:b7:82:f2:d1:9b:52:a1:ac:b1:b3:fa: 91:8e:60:f4:81:84:0b:8a:5b:3f:10:82:bb:c3:62:a4:a3:dc: eb:e3:05:a9:45:f0:e6:41:c0:fc:f8:54:7d:e8:0f:5d:4e:17: ef:9c:6f:ce:30:2a:7c:68:46:ea:98:06:cc:db:54:b2:07:dc: 11:3f:82:61:ba:fc:03:f0:62:df:77:f1:98:6a:d6:1a:4a:16: 4e:19:77:e6:0e:fc:25:b0:d6:b5:66:9f:2e:91:5e:fa:e2:0d: 45:1b:7d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwNjE0MTc0NjE0WhcNMjUwNjIxMTc0NjE0WjAYMRYwFAYD VQQDEw02ODRkYjU2Ni1lOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9IALyI4Dxr7tWPUCKFcUsuSWHdvDyiYhJbZ5yNz/uOMgZgANXRQyEhiB5c7 wu76aI+v58me606aoCz9BTc09QSJHMG8Ze9JEBjIAH7lnCQhx2eTwDXB+C6iB/Dp +bgiqjIl7bIwjuU5p3ZH855HypHGM+vROhYACFoQn2i7PdvPpQbDXkuqEWypr+l2 I2I/2cDHyzJyB4t+blmYEIRaDac3IKmwoPL9e1XY7aWfcKduEjZNts7zH6PcvZlS DBOCQxo4MFWwG1E7pVZILYhpeXa/JZJm37E7G3NABpB5krBjebdL0grFx6wGlvk7 7+fEqUvAAaqmCisjoDxkxzbT8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLQ6MWc 8RvdNUGewmmwhwshRORTMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxc5UaF7CIZ/97Vi70Vz/8BHRl6Ro81I8wlMCgEZgCLHEtFAfiDKwX NE6OIClJkIeGWP2V2dUfibz4/PYIrL7q9JQPZVUUDsaP4FXu2IZSFhpcxZoqjCb+ iPDr9AFWkwPPSPolhdfbhoQhAo3nNwPSjOSQtm/04wm1xxi3jNla5b/nwBQEC8Zk +qofg70kL0+sAks4ONUlt4Ly0ZtSoayxs/qRjmD0gYQLils/EIK7w2Kko9zr4wWp RfDmQcD8+FR96A9dThfvnG/OMCp8aEbqmAbM21SyB9wRP4JhuvwD8GLfd/GYatYa ShZOGXfmDvwlsNa1Zp8ukV764g1FG30+ -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:01 2025 by rpki-client