$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: mVBLj5l2WJwbEpTYHwolHa7WoCNnFm1MSnXudM/1phY= Subject key identifier: 68:89:0C:27:6B:F2:3E:F9:7B:7D:86:BB:E3:14:76:39:F8:83:F3:DF Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0DFF Signing time: Mon 30 Jun 2025 18:04:09 +0000 Manifest this update: Mon 30 Jun 2025 18:04:08 +0000 Manifest next update: Mon 07 Jul 2025 18:04:08 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: pMx4CRZSBluA1fOhr36bjm4vK9iF8YeQrnWRCYxW2xY=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Jun 30 18:04:08 2025 GMT Not After : Jul 7 18:04:08 2025 GMT Subject: CN=6862d198-7558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a5:45:d6:97:d0:13:e0:d4:74:25:33:22:22: 13:69:ad:fb:8b:6c:e7:61:6e:fb:37:46:41:2e:27: e0:e1:71:45:73:7f:80:32:43:1f:bc:9e:5d:1d:79: 1f:54:d3:4b:58:b4:23:3d:8b:45:c2:7e:73:71:db: e2:a0:db:58:ef:29:f6:18:31:57:96:27:bd:a0:d3: 74:89:ab:95:56:a3:a1:30:c3:4a:02:82:3c:39:ef: 92:87:be:d0:86:e7:3e:01:b0:44:60:27:eb:55:46: 58:e6:df:9b:4f:45:5f:77:62:9a:f8:33:0d:8f:a2: 8b:5b:8c:6e:e4:c7:ea:46:d8:58:a4:17:bd:17:5f: 56:30:d3:ff:30:6f:72:ab:45:99:dd:49:d5:05:6d: 81:4d:79:a2:cf:d9:5a:d1:d7:59:a0:26:6b:4d:bc: 11:a3:2a:46:66:d0:12:bc:1d:11:ce:66:c9:7c:7f: 50:b5:76:fd:b8:76:c0:46:76:42:c3:61:7f:11:4a: 88:83:a3:c2:38:8d:e7:20:9c:4e:2d:82:14:6e:46: 00:6e:81:1c:b0:03:2e:c8:76:79:d5:70:0f:29:fd: 62:04:5e:65:ba:02:e0:3b:90:5e:ff:ef:3e:d9:98: 53:57:f0:c4:11:16:83:63:55:12:f2:7a:19:39:9b: 9e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:89:0C:27:6B:F2:3E:F9:7B:7D:86:BB:E3:14:76:39:F8:83:F3:DF X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:01:b4:9e:a7:ca:f8:63:ca:db:25:32:cc:bf:da:c3:ca:4b: 61:3d:04:8b:f5:29:40:06:a2:aa:ea:67:bd:5c:dd:5d:30:b2: b0:e1:b7:f1:2f:78:74:48:15:97:1c:af:07:ee:c6:45:f4:a0: 2d:9c:21:47:e2:9a:e0:eb:a7:b9:de:5b:8f:23:68:19:c5:56: d3:fd:0b:bd:9d:17:96:95:0b:f8:cc:56:14:58:97:cb:df:65: 78:9d:6e:ca:cd:ca:fe:50:b1:7c:6f:80:fd:0a:f0:60:fe:16: e3:24:f4:38:64:c4:7b:fc:55:aa:ec:75:b9:c2:08:91:e0:2f: 34:b9:d7:5d:f6:ce:16:09:4c:40:e0:89:38:bf:dd:7d:18:cf: b3:e9:8f:a5:aa:0e:bb:4c:6f:00:0e:d1:31:a2:17:24:e1:fc: c9:5f:81:dd:b6:96:97:6e:1e:68:e7:09:2f:ce:a2:49:36:27: 69:12:31:ce:4c:2d:75:03:4c:0a:d8:38:2e:c5:e7:c7:03:2c: 6f:b4:6b:d0:9c:40:78:96:f9:17:d5:dd:a3:66:fe:b8:81:36: 08:b4:2a:c7:7e:b0:4c:ff:1e:23:1e:41:0b:c0:e7:70:9e:ab: 48:48:b9:ea:eb:8e:ec:0c:50:f9:5d:a7:ac:ed:d5:79:61:27: c5:16:13:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUwNjMwMTgwNDA4WhcNMjUwNzA3MTgwNDA4WjAYMRYwFAYD VQQDEw02ODYyZDE5OC03NTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6VF1pfQE+DUdCUzIiITaa37i2znYW77N0ZBLifg4XFFc3+AMkMfvJ5dHXkf VNNLWLQjPYtFwn5zcdvioNtY7yn2GDFXlie9oNN0iauVVqOhMMNKAoI8Oe+Sh77Q huc+AbBEYCfrVUZY5t+bT0Vfd2Ka+DMNj6KLW4xu5MfqRthYpBe9F19WMNP/MG9y q0WZ3UnVBW2BTXmiz9la0ddZoCZrTbwRoypGZtASvB0RzmbJfH9QtXb9uHbARnZC w2F/EUqIg6PCOI3nIJxOLYIUbkYAboEcsAMuyHZ51XAPKf1iBF5lugLgO5Be/+8+ 2ZhTV/DEERaDY1US8noZOZueGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiJDCdr 8j75e32Gu+MUdjn4g/PfMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPAbSep8r4Y8rbJTLMv9rDykthPQSL9SlABqKq6me9XN1dMLKw4bfx L3h0SBWXHK8H7sZF9KAtnCFH4prg66e53luPI2gZxVbT/Qu9nReWlQv4zFYUWJfL 32V4nW7Kzcr+ULF8b4D9CvBg/hbjJPQ4ZMR7/FWq7HW5wgiR4C80uddd9s4WCUxA 4Ik4v919GM+z6Y+lqg67TG8ADtExohck4fzJX4HdtpaXbh5o5wkvzqJJNidpEjHO TC11A0wK2DguxefHAyxvtGvQnEB4lvkX1d2jZv64gTYItCrHfrBM/x4jHkELwOdw nqtISLnq647sDFD5Xaes7dV5YSfFFhPC -----END CERTIFICATE-----Generated at Tue Jul 1 19:44:04 2025 by rpki-client