$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: wOsy4me35qZXdR21xIaA0h7wkGP/qNFeDtoTzazUs/o= Subject key identifier: 43:FC:5B:E7:C9:D3:DB:DE:05:4E:47:4B:35:57:0F:BA:AA:20:D9:F2 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0DF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0DE6 Signing time: Sat 10 May 2025 17:44:12 +0000 Manifest this update: Sat 10 May 2025 17:44:12 +0000 Manifest next update: Sat 17 May 2025 17:44:12 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: Gl/GwV6S9L3E29T4qPHWoUAHS90zkH3oJrY5yjqm1GU=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3569 (0xdf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: May 10 17:44:12 2025 GMT Not After : May 17 17:44:12 2025 GMT Subject: CN=681f906c-5c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:76:6a:5f:65:06:8e:0d:b0:ea:d7:c2:f1: 5b:11:84:23:df:ff:50:72:3c:d4:e6:a8:83:d3:fc: a3:9e:7d:50:b5:00:94:da:48:75:ba:7a:fe:c9:79: 5e:44:f0:9b:fc:14:53:e0:c8:fe:75:e2:45:69:90: 14:a9:6c:70:ae:d2:ee:3c:a9:bc:85:82:6c:61:78: 81:54:90:9b:c9:fd:60:97:1c:a1:75:b4:88:03:94: 5a:b4:63:74:b5:1e:6e:ad:d1:90:31:48:de:c8:3d: 68:79:a6:22:92:68:dd:94:ff:dc:ce:22:9c:eb:4e: ca:b6:c1:fb:60:d6:7e:a5:18:19:da:a2:88:67:b2: 29:3d:71:35:4d:27:ae:f9:b5:a9:9e:7c:15:b2:11: 0b:84:3e:d9:24:e6:e8:d0:7d:57:94:9e:3d:d0:48: b0:fb:8b:f0:bd:fb:4d:60:00:d7:e9:c9:db:65:b9: 42:34:08:4e:46:14:fc:4b:c0:36:d1:12:fe:f5:3d: 8e:1f:8f:93:6a:ac:71:77:6c:ff:aa:29:e6:dc:b3: b8:20:a6:cb:5e:d4:ee:d8:15:64:6d:d7:c8:97:74: 7e:f6:0d:13:a9:df:f4:d4:e2:bc:29:c4:d7:34:87: e2:35:52:0d:90:4f:63:fb:24:90:33:ab:2c:56:bf: 44:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FC:5B:E7:C9:D3:DB:DE:05:4E:47:4B:35:57:0F:BA:AA:20:D9:F2 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ac:2f:3a:03:68:03:0b:aa:de:bb:95:5c:ee:cb:b3:41:7a: 99:e9:8f:f0:07:05:60:f8:e4:a6:a3:9a:4f:c0:f4:35:92:82: f3:aa:74:f9:e2:37:e2:d3:41:f7:fa:04:de:ac:95:1d:3c:ad: ce:ac:61:b7:11:ef:80:da:a8:95:5c:71:d7:bc:c1:1a:81:a9: 08:81:79:a9:16:c5:f2:b9:ed:77:e8:47:be:6f:2b:c5:75:ff: c9:7a:c1:9f:74:84:1c:cb:fd:56:cb:28:21:44:bb:1e:b3:fb: 50:dc:f9:cc:b5:7c:a8:12:6c:70:4d:e7:90:a3:1e:1e:9b:37: e4:72:e8:10:f7:8d:b0:de:4f:9c:5f:9a:2e:aa:e2:42:a8:fc: 26:4d:52:55:65:9e:fa:db:6f:37:03:c6:c6:0c:2a:81:f4:0a: af:49:2d:b0:2a:0b:8b:db:5b:7a:37:74:21:32:0d:7c:0f:54: b1:04:12:77:75:6e:4e:28:2f:95:4b:c7:b8:0c:a7:a9:71:56: 5a:9d:9e:0c:85:39:ab:2a:5c:11:87:94:53:71:10:d0:9f:4d: 4d:bf:75:61:d6:8a:00:29:f8:63:39:34:69:6e:c4:22:30:ba: 86:8d:83:95:f0:2d:b4:5f:71:93:a2:15:dc:ac:4a:e1:35:48: c8:be:b0:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwNTEwMTc0NDEyWhcNMjUwNTE3MTc0NDEyWjAYMRYwFAYD VQQDEw02ODFmOTA2Yy01YzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ip2al9lBo4NsOrXwvFbEYQj3/9QcjzU5qiD0/yjnn1QtQCU2kh1unr+yXle RPCb/BRT4Mj+deJFaZAUqWxwrtLuPKm8hYJsYXiBVJCbyf1glxyhdbSIA5RatGN0 tR5urdGQMUjeyD1oeaYikmjdlP/cziKc607KtsH7YNZ+pRgZ2qKIZ7IpPXE1TSeu +bWpnnwVshELhD7ZJObo0H1XlJ490Eiw+4vwvftNYADX6cnbZblCNAhORhT8S8A2 0RL+9T2OH4+Taqxxd2z/qinm3LO4IKbLXtTu2BVkbdfIl3R+9g0Tqd/01OK8KcTX NIfiNVINkE9j+ySQM6ssVr9EqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP8W+fJ 09veBU5HSzVXD7qqINnyMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUrC86A2gDC6reu5Vc7suzQXqZ6Y/wBwVg+OSmo5pPwPQ1koLzqnT5 4jfi00H3+gTerJUdPK3OrGG3Ee+A2qiVXHHXvMEagakIgXmpFsXyue136Ee+byvF df/JesGfdIQcy/1WyyghRLses/tQ3PnMtXyoEmxwTeeQox4emzfkcugQ942w3k+c X5ouquJCqPwmTVJVZZ762283A8bGDCqB9AqvSS2wKguL21t6N3QhMg18D1SxBBJ3 dW5OKC+VS8e4DKepcVZanZ4MhTmrKlwRh5RTcRDQn01Nv3Vh1ooAKfhjOTRpbsQi MLqGjYOV8C20X3GTohXcrErhNUjIvrDA -----END CERTIFICATE-----Generated at Mon May 12 06:35:07 2025 by rpki-client