$ rpki-client -vvf rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft File: HMTgP8GsieF7GYJHtuZFSrunG4w.mft (raw, json) Hash identifier: 5o4LgHzAyG6GIG3cY2MRMAjYmmQf24Dl5pDYwbQK5QM= Subject key identifier: 38:38:76:2F:92:53:F7:33:A6:17:BA:7B:0A:2E:77:43:98:44:88:2F Authority key identifier: 1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C Certificate issuer: /CN=A9174BB4/serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Certificate serial: 176F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft Manifest number: 176F Signing time: Fri 18 Jul 2025 16:42:48 +0000 Manifest this update: Fri 18 Jul 2025 16:42:48 +0000 Manifest next update: Fri 25 Jul 2025 16:42:48 +0000 Files and hashes: 1: HMTgP8GsieF7GYJHtuZFSrunG4w.crl (hash: PLs7gBDp7MpCM8DOb1W+FD3mHJDcDy5iBbL3NBST4VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5999 (0x176f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174BB4, serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Validity Not Before: Jul 18 16:42:48 2025 GMT Not After : Jul 25 16:42:48 2025 GMT Subject: CN=687a7988-3cca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b9:45:85:f1:a9:7a:f0:58:e3:88:c6:70:cd: 2b:f4:94:13:19:5a:33:1e:fb:ed:4f:e5:4b:67:a8: bb:06:d2:a0:3a:91:a7:07:55:0b:c2:33:3a:e9:d1: 85:58:6b:61:8e:64:3c:46:bb:d8:e7:b7:29:48:d7: c8:0b:29:77:57:04:08:f0:e4:2f:a7:bd:ad:4b:26: d9:89:20:33:4f:8e:d8:d4:2b:f2:2d:ce:7e:4c:72: 56:6f:32:96:ca:98:54:c1:61:cc:d1:f3:49:92:05: c8:e7:54:be:18:95:de:7a:c6:4a:2b:cd:95:9f:ac: 17:5c:2a:5d:43:b7:7b:de:89:fa:f9:b3:f1:2c:44: 37:65:24:3a:04:30:9c:56:a0:31:44:ef:58:72:8b: 7c:d6:d6:eb:06:be:dd:a1:b0:62:45:78:3f:26:96: 18:1d:b7:71:a0:3b:ab:00:dc:77:92:23:9c:1c:38: 0f:b2:68:65:40:88:0e:66:07:68:31:91:09:de:44: ef:bc:c9:88:f8:38:d4:54:eb:0c:a1:e7:b1:ab:8d: 1c:b2:c3:7d:5d:39:85:e5:5f:76:74:b8:9b:b1:47: 73:1e:ed:e2:a8:f0:aa:cc:0a:49:0c:30:5d:ac:f9: 59:19:69:82:63:7c:72:90:c2:25:8e:76:fb:4f:a9: 4b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:38:76:2F:92:53:F7:33:A6:17:BA:7B:0A:2E:77:43:98:44:88:2F X509v3 Authority Key Identifier: keyid:1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:56:ef:e4:1a:a8:f0:1c:7e:c7:7d:b6:b8:1c:89:4c:27:01: 84:5d:05:8a:8f:6f:46:46:5a:60:6a:51:ba:fa:20:43:bc:e7: 37:c4:aa:bd:04:c6:28:e9:3e:ca:d1:b1:c2:c7:9b:04:2a:d5: d8:74:54:e7:27:38:19:53:ed:91:23:cc:9a:11:52:87:8a:1f: 9e:eb:ee:6c:1c:6b:12:08:0b:c1:00:5c:22:3c:49:69:f9:5c: bd:c3:3f:46:10:c8:e7:ae:13:af:54:fd:cb:9e:d9:b1:2e:69: ca:b7:14:70:d8:3d:aa:13:cf:78:ce:d5:94:96:da:85:ed:c3: 19:a5:83:e1:aa:b7:c1:f2:8c:46:f6:fe:03:81:67:bd:99:d1: 46:b5:df:b5:f4:ca:d4:c9:17:f3:d8:13:74:db:7f:3d:02:db: 77:4b:ea:89:d3:da:1a:a2:77:f6:82:5a:19:05:fe:1f:1c:cc: b6:35:da:57:cb:4d:25:90:c7:11:9c:04:c9:9c:8e:f3:40:d9: cd:65:d5:6d:ac:bc:f6:48:ef:dd:4d:f2:eb:cb:a1:46:00:e2: f4:73:6f:ba:46:94:d4:7c:a3:bd:37:25:76:db:c2:e1:7a:28: e1:5e:4f:36:15:c1:02:0a:b2:a1:41:01:34:e4:6d:6b:88:1e: 21:ab:11:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCQjQxMTAvBgNVBAUTKDFDQzRFMDNGQzFBQzg5RTE3QjE5ODI0N0I2RTY0NTRB QkJBNzFCOEMwHhcNMjUwNzE4MTY0MjQ4WhcNMjUwNzI1MTY0MjQ4WjAYMRYwFAYD VQQDEw02ODdhNzk4OC0zY2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLlFhfGpevBY44jGcM0r9JQTGVozHvvtT+VLZ6i7BtKgOpGnB1ULwjM66dGF WGthjmQ8RrvY57cpSNfICyl3VwQI8OQvp72tSybZiSAzT47Y1CvyLc5+THJWbzKW yphUwWHM0fNJkgXI51S+GJXeesZKK82Vn6wXXCpdQ7d73on6+bPxLEQ3ZSQ6BDCc VqAxRO9Ycot81tbrBr7dobBiRXg/JpYYHbdxoDurANx3kiOcHDgPsmhlQIgOZgdo MZEJ3kTvvMmI+DjUVOsMoeexq40cssN9XTmF5V92dLibsUdzHu3iqPCqzApJDDBd rPlZGWmCY3xykMIljnb7T6lL8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg4di+S U/czphe6ewoud0OYRIgvMB8GA1UdIwQYMBaAFBzE4D/BrInhexmCR7bmRUq7pxuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEJCNC85RDEwNUJGQ0Q2 NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2llRjdHWUpIdHVaRlNydW5H NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hNVGdQOEdzaWVGN0dZSkh0dVpGU3J1bkc0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEJCNC85RDEwNUJGQ0Q2NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2ll RjdHWUpIdHVaRlNydW5HNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3Vu/kGqjwHH7Hfba4HIlMJwGEXQWKj29GRlpgalG6+iBDvOc3xKq9 BMYo6T7K0bHCx5sEKtXYdFTnJzgZU+2RI8yaEVKHih+e6+5sHGsSCAvBAFwiPElp +Vy9wz9GEMjnrhOvVP3LntmxLmnKtxRw2D2qE894ztWUltqF7cMZpYPhqrfB8oxG 9v4DgWe9mdFGtd+19MrUyRfz2BN02389Att3S+qJ09oaonf2gloZBf4fHMy2NdpX y00lkMcRnATJnI7zQNnNZdVtrLz2SO/dTfLry6FGAOL0c2+6RpTUfKO9NyV228Lh eijhXk82FcECCrKhQQE05G1riB4hqxHf -----END CERTIFICATE-----Generated at Sun Jul 20 07:35:28 2025 by rpki-client