$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: v8UqNPZxCZ900hMYQNL/u66gpajM7ZxIt6G21ryOYm0= Subject key identifier: 85:4B:C0:6B:2F:89:9A:5D:9A:B4:98:71:D6:44:6A:7E:DD:CB:58:61 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E42 Signing time: Tue 04 Nov 2025 17:52:49 +0000 Manifest this update: Tue 04 Nov 2025 17:52:48 +0000 Manifest next update: Tue 11 Nov 2025 17:52:48 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: p1bbgr76BhsAVZpHwhpLGrYk9kX8J1O+mLgO6N4CBTg=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: cxpNUxvjjUcenOfHXLOefCP2oAgYFBDBd3CzBohvfz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3662 (0xe4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Nov 4 17:52:48 2025 GMT Not After : Nov 11 17:52:48 2025 GMT Subject: CN=690a3d71-e977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:e6:9c:25:da:55:c8:ac:b7:fe:06:4c:3a: f3:3d:37:81:63:10:d0:b0:9b:d7:74:cf:74:8c:e0: 42:f2:39:84:67:3a:16:b6:d2:27:e5:47:94:0f:91: fc:bb:17:ff:0f:2e:6d:19:ad:e0:02:de:12:65:39: 48:06:58:90:ec:89:0c:ea:9f:f0:12:fb:39:c3:c8: 22:d3:92:b0:58:3a:f6:df:7e:b8:6e:ef:79:e8:df: 37:36:15:ca:59:16:90:15:f2:06:6b:4e:6f:83:4a: 19:4f:e4:fa:f5:6c:41:ef:8a:18:6e:28:3f:71:3c: 25:47:c3:84:8c:bb:e2:c4:69:43:25:bd:ed:7b:e7: f1:c9:13:d7:b5:3d:53:f7:68:90:41:31:85:8a:71: d9:e5:9d:6a:4b:ab:8b:11:b5:7e:4c:ea:21:f0:0e: 17:52:f3:b6:1f:cd:4f:5a:6c:e2:1d:a0:c3:57:0f: db:34:12:ad:db:03:7e:34:94:cc:1e:31:d3:54:28: f1:cc:b3:de:48:b7:f5:5b:23:f7:f1:54:9e:7f:d6: 64:66:eb:33:cc:71:b7:b8:de:92:4c:96:2c:fc:b3: e9:8d:63:02:23:42:71:48:ac:d5:1b:d5:f3:d2:53: a6:49:23:74:28:01:ef:94:c4:73:d9:9f:cd:02:c1: 5f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4B:C0:6B:2F:89:9A:5D:9A:B4:98:71:D6:44:6A:7E:DD:CB:58:61 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:18:f5:9d:bc:69:5d:3e:78:3b:8a:41:fe:42:25:2f:be:15: aa:48:67:95:51:ea:09:ed:e8:ec:cd:85:ec:53:8f:de:cd:a8: 3a:4b:49:77:55:32:36:ae:fc:d1:94:25:d8:6f:3b:6d:60:70: 85:76:15:af:94:01:f8:59:74:b0:9e:ef:c0:bd:fb:1a:d3:8a: a0:a6:c8:d4:7b:9b:a1:bb:bb:4e:8c:6a:ab:e0:44:7e:4e:29: 71:63:56:d6:ef:82:52:a0:78:48:71:05:2b:04:ea:e4:c3:4a: 38:bc:b6:18:2d:da:a9:01:aa:f0:2f:44:5d:5d:0d:21:61:59: b9:e8:d5:c9:51:0d:f8:a1:d5:a6:54:50:3e:43:dd:62:17:fc: 70:03:44:ff:c4:95:83:03:0b:7d:b1:af:6f:10:fa:f4:9f:12: 89:06:2d:34:91:71:c9:6a:14:c7:9d:f2:59:d7:eb:60:40:79: 0e:40:ab:ef:3e:af:15:fc:ad:8a:f7:de:04:94:5c:2f:75:05: 88:f9:36:01:86:97:9c:c8:bc:64:c6:9f:2a:e9:c7:a1:23:76: 07:04:d4:7f:16:3e:b6:e2:0f:3f:9f:b6:e7:7d:03:54:e5:80: df:45:c1:8c:c7:87:83:be:c2:a6:b8:76:a8:4b:05:fd:e6:05: 4c:95:ec:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUxMTA0MTc1MjQ4WhcNMjUxMTExMTc1MjQ4WjAYMRYwFAYD VQQDEw02OTBhM2Q3MS1lOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEXmnCXaVcist/4GTDrzPTeBYxDQsJvXdM90jOBC8jmEZzoWttIn5UeUD5H8 uxf/Dy5tGa3gAt4SZTlIBliQ7IkM6p/wEvs5w8gi05KwWDr23364bu956N83NhXK WRaQFfIGa05vg0oZT+T69WxB74oYbig/cTwlR8OEjLvixGlDJb3te+fxyRPXtT1T 92iQQTGFinHZ5Z1qS6uLEbV+TOoh8A4XUvO2H81PWmziHaDDVw/bNBKt2wN+NJTM HjHTVCjxzLPeSLf1WyP38VSef9ZkZuszzHG3uN6STJYs/LPpjWMCI0JxSKzVG9Xz 0lOmSSN0KAHvlMRz2Z/NAsFfbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVLwGsv iZpdmrSYcdZEan7dy1hhMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLGPWdvGldPng7ikH+QiUvvhWqSGeVUeoJ7ejszYXsU4/ezag6S0l3 VTI2rvzRlCXYbzttYHCFdhWvlAH4WXSwnu/Avfsa04qgpsjUe5uhu7tOjGqr4ER+ TilxY1bW74JSoHhIcQUrBOrkw0o4vLYYLdqpAarwL0RdXQ0hYVm56NXJUQ34odWm VFA+Q91iF/xwA0T/xJWDAwt9sa9vEPr0nxKJBi00kXHJahTHnfJZ1+tgQHkOQKvv Pq8V/K2K994ElFwvdQWI+TYBhpecyLxkxp8q6cehI3YHBNR/Fj624g8/n7bnfQNU 5YDfRcGMx4eDvsKmuHaoSwX95gVMley3 -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:38 2025 by rpki-client