$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: WQKG5YUpndmCvIxpc7pqZ7NkMRS7sFzwrl/HveG6H2g= Subject key identifier: 48:8D:FB:0B:86:E2:99:29:F0:4A:85:2E:BE:16:06:3C:07:D6:C9:C0 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E41 Signing time: Sun 02 Nov 2025 17:48:24 +0000 Manifest this update: Sun 02 Nov 2025 17:48:24 +0000 Manifest next update: Sun 09 Nov 2025 17:48:24 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: 2kLA6N7O+XuaCe4FOORz6lApBixkgNUkc6NCeN66tYE=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: cxpNUxvjjUcenOfHXLOefCP2oAgYFBDBd3CzBohvfz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3661 (0xe4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Nov 2 17:48:24 2025 GMT Not After : Nov 9 17:48:24 2025 GMT Subject: CN=69079968-574e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:74:1e:e4:f9:8b:24:36:8a:93:4d:41:00:54: e7:4b:8a:e2:3c:c5:cc:a3:d0:17:8f:5d:bb:30:4b: ae:d0:18:55:d5:59:6a:df:1e:cc:ef:f4:88:58:33: 6c:de:fc:89:ee:cd:be:f2:92:14:c1:c3:8e:9f:7f: 24:a5:eb:a9:62:f4:15:13:1b:09:81:f7:f5:09:32: 33:2a:43:7f:d8:d2:63:7b:d0:30:af:fb:ac:c6:42: 11:df:e4:c7:a6:07:46:93:bd:17:2c:45:d2:09:32: 47:b1:5d:0b:5a:d9:dc:ce:f1:56:ba:4b:65:7b:31: a1:d3:9d:f7:32:fc:20:8e:1e:46:15:52:0e:2f:3c: b7:2a:0b:fa:00:65:8f:99:7d:97:e4:a2:f1:58:35: af:8e:7a:11:aa:60:62:12:5f:b7:43:9e:df:ce:20: 73:41:9d:3b:26:80:54:e1:2d:40:75:0b:62:6e:5c: d0:25:6a:6c:b0:5b:57:42:d5:b3:c5:c7:47:b2:ee: be:7b:38:fe:47:9c:18:ff:c6:08:a3:d9:5d:df:99: e2:89:9f:41:7f:97:ab:92:0f:94:29:79:6f:de:c9: a6:9c:4d:e3:c9:b5:a7:23:74:ce:a2:ba:6c:29:0b: e3:eb:63:36:11:c6:01:85:d2:a2:cb:50:3a:8a:42: f5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:8D:FB:0B:86:E2:99:29:F0:4A:85:2E:BE:16:06:3C:07:D6:C9:C0 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:5f:70:17:ee:e3:e0:ae:f1:5e:35:87:b1:7f:87:74:79:66: 19:53:d2:a3:b6:2d:ba:a3:e6:f1:b6:c7:c4:9f:a0:03:ff:b9: 5c:e4:30:8d:7a:ea:d0:02:3e:97:f7:1f:6b:43:d8:ef:c2:2a: 29:c7:e3:27:a3:18:86:57:44:32:ea:9a:5e:67:cd:f1:ac:5b: c7:2b:8d:10:5f:c4:a6:02:9c:4b:84:17:3b:95:ee:99:72:e2: dd:5e:2f:30:bc:62:5d:cd:31:78:a7:c6:1c:68:b8:5f:85:b2: f4:18:53:92:1b:b4:da:da:a1:fa:b3:35:b6:3a:04:e0:91:2f: e5:f7:ef:3a:c8:98:91:63:98:04:89:06:bc:8c:e2:1e:3f:7e: bd:c1:83:5e:c2:39:f8:c8:05:1c:0e:fd:71:77:e9:e5:c0:44: 2a:bb:b9:56:e1:34:94:6d:46:e6:e8:03:ba:3f:b5:e9:5d:92: 90:b9:a7:03:7e:3f:64:8d:ae:07:77:a5:24:b2:dd:fe:2d:c0: e6:00:7c:18:14:29:27:a9:fa:9a:9d:a2:c5:0f:f3:c8:77:4f: 27:77:3c:a7:97:26:b9:5a:22:0d:bb:9a:c8:8b:1d:ee:0f:1f: f6:95:78:e5:a8:0f:02:22:bc:da:a8:fb:db:f4:14:a3:f1:c6: 3a:ee:20:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUxMTAyMTc0ODI0WhcNMjUxMTA5MTc0ODI0WjAYMRYwFAYD VQQDEw02OTA3OTk2OC01NzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XQe5PmLJDaKk01BAFTnS4riPMXMo9AXj127MEuu0BhV1Vlq3x7M7/SIWDNs 3vyJ7s2+8pIUwcOOn38kpeupYvQVExsJgff1CTIzKkN/2NJje9Awr/usxkIR3+TH pgdGk70XLEXSCTJHsV0LWtnczvFWuktlezGh0533Mvwgjh5GFVIOLzy3Kgv6AGWP mX2X5KLxWDWvjnoRqmBiEl+3Q57fziBzQZ07JoBU4S1AdQtiblzQJWpssFtXQtWz xcdHsu6+ezj+R5wY/8YIo9ld35niiZ9Bf5erkg+UKXlv3smmnE3jybWnI3TOorps KQvj62M2EcYBhdKiy1A6ikL1KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiN+wuG 4pkp8EqFLr4WBjwH1snAMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzX3AX7uPgrvFeNYexf4d0eWYZU9Kjti26o+bxtsfEn6AD/7lc5DCN eurQAj6X9x9rQ9jvwiopx+MnoxiGV0Qy6ppeZ83xrFvHK40QX8SmApxLhBc7le6Z cuLdXi8wvGJdzTF4p8YcaLhfhbL0GFOSG7Ta2qH6szW2OgTgkS/l9+86yJiRY5gE iQa8jOIeP369wYNewjn4yAUcDv1xd+nlwEQqu7lW4TSUbUbm6AO6P7XpXZKQuacD fj9kja4Hd6Ukst3+LcDmAHwYFCknqfqanaLFD/PId08ndzynlya5WiINu5rIix3u Dx/2lXjlqA8CIrzaqPvb9BSj8cY67iD+ -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:52 2025 by rpki-client