$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: wmHGTTKcQ2qfZ+bmp6cMD7a/zquM5dFcjVdTPpIhbeE= Subject key identifier: 63:35:E5:93:CF:DF:04:8B:6C:92:2F:09:BF:06:43:03:34:D9:BC:28 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E1B Signing time: Sun 24 Aug 2025 17:47:30 +0000 Manifest this update: Sun 24 Aug 2025 17:47:30 +0000 Manifest next update: Sun 31 Aug 2025 17:47:30 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: 75/NKKWob3VccwB5vl6iD7ZnBDO6wsJeMvMAUcyqm+c=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3622 (0xe26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Aug 24 17:47:30 2025 GMT Not After : Aug 31 17:47:30 2025 GMT Subject: CN=68ab5032-fb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6f:ab:69:4f:81:75:13:18:6b:df:b5:0d:49: e9:a0:28:dd:32:78:82:d5:ad:4d:d8:14:5c:1c:dc: 8a:99:e3:4a:ee:c5:ed:9d:9d:0b:d8:f5:ae:84:30: 25:5a:e8:99:0f:47:f4:96:a7:ab:94:e1:08:34:b0: 36:f2:18:b1:f7:5f:0c:e7:f1:0e:39:6e:79:5c:52: 5b:9b:26:2a:d5:da:14:47:48:86:b1:a6:45:96:52: 5c:e4:1b:67:59:4b:51:1c:9d:c5:31:a9:c0:c1:59: c3:67:b3:87:26:af:da:09:dc:f9:ef:27:8e:50:63: 2a:28:59:6c:7f:d9:0b:12:22:34:33:b3:33:2b:a5: 41:86:d8:e1:cf:a6:5d:e6:6e:f1:e4:f5:b9:fa:ea: df:7e:5d:a9:2a:64:c4:3b:ba:9b:b7:a2:53:db:c1: fe:4d:69:04:c3:67:de:6c:93:86:74:c4:57:f9:83: f4:e5:07:be:d6:2c:43:be:fd:f0:92:41:17:39:f5: 29:3e:3d:24:58:96:99:e9:eb:e1:55:08:e9:b4:fc: 99:49:3c:bb:29:0a:48:a1:4d:61:1d:b0:92:31:ce: 08:e0:74:cc:2a:22:14:74:a4:01:93:96:e0:87:c5: 1d:f7:ff:02:6f:d3:46:e8:18:f6:2a:f5:8c:5c:b7: 83:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:35:E5:93:CF:DF:04:8B:6C:92:2F:09:BF:06:43:03:34:D9:BC:28 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:16:78:12:17:58:6a:e8:b9:71:d8:c2:7f:9c:34:96:93:5a: 7e:fe:47:cb:bb:b7:55:9d:37:37:06:a5:e5:ac:60:55:05:fb: da:93:fc:6a:82:a0:fa:24:23:a1:a3:f7:33:11:da:4f:09:60: e1:a0:e9:58:9b:55:1b:ff:22:dc:59:14:02:54:30:ab:17:0a: f9:c1:be:34:ce:3a:b9:30:f8:77:d1:10:0d:26:14:f5:f2:50: 3a:2e:71:b9:ba:88:d6:26:c1:f9:52:72:33:0f:18:50:c7:b4: 59:c2:8f:35:b6:f2:87:0f:d9:0a:71:09:0e:81:53:9c:13:f8: 9a:1d:80:1c:3b:2f:a1:8a:a2:35:30:ed:ba:38:b4:b5:6a:a9: 00:25:6c:56:57:66:e9:71:67:7d:a6:93:76:14:0f:5a:69:db: 47:80:c6:84:c3:ba:bb:ee:ae:ab:c4:bb:07:e9:87:e5:cc:42: b8:a7:ae:a8:8d:fb:a3:9f:6b:a5:b4:4e:dc:8c:6a:37:fb:5b: 04:85:bd:68:f5:7d:6e:b7:be:5d:41:d5:df:12:88:f4:53:5f: 21:68:9f:bb:62:ca:61:98:95:ad:9b:be:10:2e:b6:18:65:90: 94:e8:13:fa:62:fc:92:cb:9d:c8:f5:86:b0:93:21:43:36:dd: d8:8b:dd:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwODI0MTc0NzMwWhcNMjUwODMxMTc0NzMwWjAYMRYwFAYD VQQDEw02OGFiNTAzMi1mYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm+raU+BdRMYa9+1DUnpoCjdMniC1a1N2BRcHNyKmeNK7sXtnZ0L2PWuhDAl WuiZD0f0lqerlOEINLA28hix918M5/EOOW55XFJbmyYq1doUR0iGsaZFllJc5Btn WUtRHJ3FManAwVnDZ7OHJq/aCdz57yeOUGMqKFlsf9kLEiI0M7MzK6VBhtjhz6Zd 5m7x5PW5+urffl2pKmTEO7qbt6JT28H+TWkEw2febJOGdMRX+YP05Qe+1ixDvv3w kkEXOfUpPj0kWJaZ6evhVQjptPyZSTy7KQpIoU1hHbCSMc4I4HTMKiIUdKQBk5bg h8Ud9/8Cb9NG6Bj2KvWMXLeDuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM15ZPP 3wSLbJIvCb8GQwM02bwoMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6FngSF1hq6Llx2MJ/nDSWk1p+/kfLu7dVnTc3BqXlrGBVBfvak/xq gqD6JCOho/czEdpPCWDhoOlYm1Ub/yLcWRQCVDCrFwr5wb40zjq5MPh30RANJhT1 8lA6LnG5uojWJsH5UnIzDxhQx7RZwo81tvKHD9kKcQkOgVOcE/iaHYAcOy+hiqI1 MO26OLS1aqkAJWxWV2bpcWd9ppN2FA9aadtHgMaEw7q77q6rxLsH6YflzEK4p66o jfujn2ultE7cjGo3+1sEhb1o9X1ut75dQdXfEoj0U18haJ+7YsphmJWtm74QLrYY ZZCU6BP6YvySy53I9YawkyFDNt3Yi90x -----END CERTIFICATE-----Generated at Sun Aug 24 21:52:04 2025 by rpki-client