$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: MNWr95fD5pFmC2LVIil1wOGeQgWFPTeZqHVJnA3qPdU= Subject key identifier: B9:A8:40:69:26:0F:E2:76:B2:FC:36:9C:B8:70:FF:7B:9E:E3:A9:C3 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0DE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0DDE Signing time: Thu 24 Apr 2025 17:51:00 +0000 Manifest this update: Thu 24 Apr 2025 17:50:59 +0000 Manifest next update: Thu 01 May 2025 17:50:59 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: CGRX6EK7k0WmJP18TD3qPsPipzoin4jvtG535eGbeQk=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3561 (0xde9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Apr 24 17:50:59 2025 GMT Not After : May 1 17:50:59 2025 GMT Subject: CN=680a7a03-ae62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:36:77:06:30:0c:ec:a7:05:f3:fa:1f:56:ee: d8:f5:da:ed:be:47:e1:c3:51:b7:d5:8c:f2:67:a4: 42:36:ce:df:83:0f:01:e9:d9:8d:2a:8a:ba:be:f2: 10:e1:dd:14:c2:d6:23:51:ed:be:b5:38:67:96:cd: 04:ee:70:c6:51:03:b2:ea:1f:b4:a8:34:e7:8b:68: f7:90:ed:e8:bc:27:6f:9a:1b:ac:2a:32:20:8c:86: 44:39:3f:04:2c:27:3b:2d:b1:84:65:b9:16:63:d1: 43:d2:c5:ed:7d:7d:14:5a:ab:d3:55:73:ca:cc:70: e9:23:4b:01:e3:a8:3d:b0:4a:4b:58:f9:d9:96:aa: 73:7f:bd:a3:37:2c:8d:25:7c:d6:67:fb:99:eb:1c: 00:cb:c1:00:68:e8:69:4b:7d:dd:c8:50:c6:94:8a: 4f:e4:70:09:c1:76:1a:65:4d:2d:66:44:92:6c:13: 65:d4:f7:5c:b2:20:63:b8:7d:44:36:01:f0:41:9f: 91:31:bb:8e:5f:f7:f2:3b:01:87:04:ac:bc:bc:94: d2:0c:e4:1e:1e:6c:1a:74:9a:64:bc:65:5e:af:b0: 52:a7:1c:28:89:fb:5c:04:51:89:4e:d1:bb:db:0d: fe:65:54:98:51:4d:fc:9a:a6:53:ee:d9:cd:e5:61: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A8:40:69:26:0F:E2:76:B2:FC:36:9C:B8:70:FF:7B:9E:E3:A9:C3 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:0c:93:c3:d9:12:62:84:a0:6b:42:35:4e:85:42:c9:b3:0c: a7:03:35:34:52:c1:0d:02:16:37:e4:0e:6c:2e:37:32:32:ff: 50:ce:b8:bf:b7:5b:af:b1:d0:5b:11:07:6b:93:b6:f8:d8:72: a7:3d:e8:3e:d3:73:bc:2e:86:c8:dd:db:9b:4c:94:35:90:5d: b2:be:e5:4c:7c:15:f3:f8:51:00:ee:15:c8:63:25:eb:bf:b2: 1b:2c:7c:d6:31:17:a3:2b:b3:9c:b8:e3:75:5a:80:cf:6c:c8: f1:23:34:06:7a:ff:9c:c4:81:04:ab:25:ed:7e:8e:36:02:b6: d9:e1:a4:1f:6e:df:c6:e3:9b:ab:29:a5:c0:0c:2e:9e:8a:e2: 54:92:2b:69:c7:d0:21:76:5c:76:3b:a4:cb:02:e0:af:20:b0: 8e:ed:0c:ba:7c:8b:35:bf:0b:30:f8:10:c5:d7:45:cc:19:8b: be:1c:81:50:c0:93:1d:df:86:f6:57:02:ae:db:c3:83:a4:53: b1:ea:92:b4:b2:7c:95:4a:97:f7:ea:43:5c:d2:79:d6:88:da: ff:09:69:7e:72:8f:20:a2:85:11:86:39:ae:87:e3:53:9d:90: 81:41:b6:c2:f7:42:8b:7d:67:16:f8:a6:2b:14:cc:92:3b:81: b7:8c:45:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwNDI0MTc1MDU5WhcNMjUwNTAxMTc1MDU5WjAYMRYwFAYD VQQDEw02ODBhN2EwMy1hZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jZ3BjAM7KcF8/ofVu7Y9drtvkfhw1G31YzyZ6RCNs7fgw8B6dmNKoq6vvIQ 4d0UwtYjUe2+tThnls0E7nDGUQOy6h+0qDTni2j3kO3ovCdvmhusKjIgjIZEOT8E LCc7LbGEZbkWY9FD0sXtfX0UWqvTVXPKzHDpI0sB46g9sEpLWPnZlqpzf72jNyyN JXzWZ/uZ6xwAy8EAaOhpS33dyFDGlIpP5HAJwXYaZU0tZkSSbBNl1PdcsiBjuH1E NgHwQZ+RMbuOX/fyOwGHBKy8vJTSDOQeHmwadJpkvGVer7BSpxwoiftcBFGJTtG7 2w3+ZVSYUU38mqZT7tnN5WEobwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmoQGkm D+J2svw2nLhw/3ue46nDMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArDJPD2RJihKBrQjVOhULJswynAzU0UsENAhY35A5sLjcyMv9Qzri/ t1uvsdBbEQdrk7b42HKnPeg+03O8LobI3dubTJQ1kF2yvuVMfBXz+FEA7hXIYyXr v7IbLHzWMRejK7OcuON1WoDPbMjxIzQGev+cxIEEqyXtfo42ArbZ4aQfbt/G45ur KaXADC6eiuJUkitpx9Ahdlx2O6TLAuCvILCO7Qy6fIs1vwsw+BDF10XMGYu+HIFQ wJMd34b2VwKu28ODpFOx6pK0snyVSpf36kNc0nnWiNr/CWl+co8gooURhjmuh+NT nZCBQbbC90KLfWcW+KYrFMySO4G3jEWX -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:33 2025 by rpki-client