$ rpki-client -vvf rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft File: HMTgP8GsieF7GYJHtuZFSrunG4w.mft (raw, json) Hash identifier: ILBKevnognQm8qd4LmKX+dCRS/MLjzyRomWxR6d/SdY= Subject key identifier: CB:0E:4C:2C:CF:0F:47:DC:BF:89:5E:D6:39:00:8F:E7:AA:5A:20:B7 Authority key identifier: 1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C Certificate issuer: /CN=A9174BB4/serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Certificate serial: 173A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft Manifest number: 173A Signing time: Fri 04 Apr 2025 16:41:31 +0000 Manifest this update: Fri 04 Apr 2025 16:41:31 +0000 Manifest next update: Fri 11 Apr 2025 16:41:31 +0000 Files and hashes: 1: HMTgP8GsieF7GYJHtuZFSrunG4w.crl (hash: 81oUSyEymC7pI6kHrJkokLt3RfRlpyGy6sD8LON90Ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5946 (0x173a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174BB4 Validity Not Before: Apr 4 16:41:31 2025 GMT Not After : Apr 11 16:41:31 2025 GMT Subject: CN=67f00bbb-16d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3d:20:42:a2:c6:18:1f:76:3e:09:f8:ca:bf: bd:f0:ea:99:d7:f3:8a:cb:2c:47:da:a1:2d:9f:9b: c9:e2:79:94:9c:c7:74:7f:73:b7:88:45:f3:0a:e4: 9c:3f:be:b0:1e:a2:aa:c9:60:3d:e7:c2:0a:6d:92: 1c:5f:83:15:2e:82:a9:a4:7c:c7:32:45:35:ff:24: e4:e2:0c:b1:72:7d:df:91:34:35:7f:67:27:00:84: da:fb:81:39:80:6c:65:71:dc:e6:15:a6:8b:7c:8c: 26:49:49:cd:03:c0:32:33:9a:c1:42:0c:97:9f:eb: 51:c1:4b:62:88:5c:8d:c7:59:9b:0c:34:9f:5f:74: 63:41:62:35:cb:93:ce:8f:fd:da:45:5f:a1:32:5e: 1e:87:6a:5a:5f:44:53:b5:45:1d:76:77:e0:bb:4f: ab:32:1c:2d:18:e3:a0:65:aa:7e:57:fb:fc:59:5a: 44:13:3a:36:35:8b:dd:70:92:7c:75:51:9c:09:ea: 29:fd:ff:ab:97:02:d6:74:23:51:ba:ce:5a:0c:a9: 4f:e4:b8:3a:f9:9d:ad:9d:fd:cd:ac:54:b4:8a:4b: c2:c7:5b:3a:4e:d2:3f:ab:44:94:d1:67:0b:1a:fc: c1:ad:65:99:22:c2:a5:ad:26:91:96:57:ea:dc:c7: 69:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0E:4C:2C:CF:0F:47:DC:BF:89:5E:D6:39:00:8F:E7:AA:5A:20:B7 X509v3 Authority Key Identifier: keyid:1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:f4:cf:9a:f5:28:17:b5:dd:75:2c:1f:4c:9f:15:20:2b:cf: f2:c8:6a:a1:3a:a7:18:72:b3:f9:11:11:3e:e1:00:a6:6a:41: 09:68:c7:2b:16:ae:83:87:42:1d:e9:2a:84:c8:7b:d8:01:2b: 24:69:6e:0f:01:c5:4d:7b:41:95:1d:8c:98:a4:22:62:16:05: f5:fe:f9:4c:b9:e4:8e:b4:8d:3f:10:ed:c5:f8:77:74:8c:b4: 9a:cf:42:51:6f:dd:67:82:de:ca:7f:9e:31:fd:f5:5c:10:3d: ca:23:38:78:10:3d:22:96:11:0c:94:61:6f:6b:70:9e:6a:0f: 85:b9:18:82:ab:59:26:c2:4b:81:81:31:8e:96:a6:35:9c:3b: 50:b6:0c:97:f3:7b:70:26:25:75:d6:e8:35:67:0c:f1:84:90: 66:23:c4:64:20:fa:ad:8f:e8:c2:47:6a:57:bc:93:61:4b:a0: e9:66:4f:69:8c:8f:1b:e9:af:aa:fe:8d:e4:48:47:64:e4:5b: ef:28:07:68:f8:c0:b1:0d:89:68:b8:68:b8:b7:db:9e:07:b9: f5:16:46:13:a4:65:6f:44:d4:88:d7:09:68:e4:ac:1f:55:4b: a4:70:f5:fb:64:df:84:9a:c9:74:c1:35:e0:64:c0:7c:bf:c4: 72:27:9d:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCQjQxMTAvBgNVBAUTKDFDQzRFMDNGQzFBQzg5RTE3QjE5ODI0N0I2RTY0NTRB QkJBNzFCOEMwHhcNMjUwNDA0MTY0MTMxWhcNMjUwNDExMTY0MTMxWjAYMRYwFAYD VQQDEw02N2YwMGJiYi0xNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z0gQqLGGB92Pgn4yr+98OqZ1/OKyyxH2qEtn5vJ4nmUnMd0f3O3iEXzCuSc P76wHqKqyWA958IKbZIcX4MVLoKppHzHMkU1/yTk4gyxcn3fkTQ1f2cnAITa+4E5 gGxlcdzmFaaLfIwmSUnNA8AyM5rBQgyXn+tRwUtiiFyNx1mbDDSfX3RjQWI1y5PO j/3aRV+hMl4eh2paX0RTtUUddnfgu0+rMhwtGOOgZap+V/v8WVpEEzo2NYvdcJJ8 dVGcCeop/f+rlwLWdCNRus5aDKlP5Lg6+Z2tnf3NrFS0ikvCx1s6TtI/q0SU0WcL GvzBrWWZIsKlrSaRllfq3MdpzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsOTCzP D0fcv4le1jkAj+eqWiC3MB8GA1UdIwQYMBaAFBzE4D/BrInhexmCR7bmRUq7pxuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEJCNC85RDEwNUJGQ0Q2 NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2llRjdHWUpIdHVaRlNydW5H NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hNVGdQOEdzaWVGN0dZSkh0dVpGU3J1bkc0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEJCNC85RDEwNUJGQ0Q2NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2ll RjdHWUpIdHVaRlNydW5HNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf9M+a9SgXtd11LB9MnxUgK8/yyGqhOqcYcrP5ERE+4QCmakEJaMcr Fq6Dh0Id6SqEyHvYASskaW4PAcVNe0GVHYyYpCJiFgX1/vlMueSOtI0/EO3F+Hd0 jLSaz0JRb91ngt7Kf54x/fVcED3KIzh4ED0ilhEMlGFva3Ceag+FuRiCq1kmwkuB gTGOlqY1nDtQtgyX83twJiV11ug1ZwzxhJBmI8RkIPqtj+jCR2pXvJNhS6DpZk9p jI8b6a+q/o3kSEdk5FvvKAdo+MCxDYlouGi4t9ueB7n1FkYTpGVvRNSI1wlo5Kwf VUukcPX7ZN+Emsl0wTXgZMB8v8RyJ52s -----END CERTIFICATE-----Generated at Sat Apr 5 16:51:09 2025 by rpki-client