$ rpki-client -vvf rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft File: HMTgP8GsieF7GYJHtuZFSrunG4w.mft (raw, json) Hash identifier: KH7fVSeB6EFj2//WmHXFl4P6AefXO6haq07U7KRDp70= Subject key identifier: A3:88:23:FA:5B:62:24:32:FE:DA:B4:F9:8C:B6:D2:C5:8D:0E:70:9A Authority key identifier: 1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C Certificate issuer: /CN=A9174BB4/serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Certificate serial: 1790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft Manifest number: 1790 Signing time: Thu 18 Sep 2025 16:42:26 +0000 Manifest this update: Thu 18 Sep 2025 16:42:26 +0000 Manifest next update: Thu 25 Sep 2025 16:42:26 +0000 Files and hashes: 1: HMTgP8GsieF7GYJHtuZFSrunG4w.crl (hash: ndFpYAav2EL0XHnAg9P/Xv4WQN0xuRX/DzNtFvmRs6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6032 (0x1790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174BB4, serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Validity Not Before: Sep 18 16:42:26 2025 GMT Not After : Sep 25 16:42:26 2025 GMT Subject: CN=68cc3672-6ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:78:47:67:7a:5f:35:0d:aa:de:77:8e:6f:d9: ae:ab:cb:0d:07:cf:96:41:a8:06:d1:0f:8f:68:b8: 3b:84:2f:18:ec:a7:5d:b6:d3:20:aa:4c:ce:26:de: f7:e5:e5:d0:8b:44:5f:29:97:8f:ca:7b:b6:8b:20: e5:d9:a6:ab:62:0a:ac:8b:c9:87:a4:45:d2:8b:ae: 39:6b:9f:2d:0b:85:dc:4a:ed:48:77:b5:54:4b:97: 78:e3:79:1e:c9:14:61:91:ed:23:0e:35:ec:b2:7f: 31:75:37:06:e1:63:71:87:8e:07:eb:48:f4:af:d0: 2e:de:86:22:7a:4b:23:fa:c0:5e:ea:a8:4a:c1:47: 21:c5:0e:94:f5:6f:91:17:63:f9:b1:e2:97:69:49: 61:c2:2e:ac:93:eb:7a:a3:d9:8e:9f:17:79:e2:6c: bd:62:37:8c:1c:5a:c8:f5:05:43:a2:0b:eb:6c:a1: 37:3b:06:b3:34:ae:3c:72:8f:87:fe:5a:fd:2f:b6: 5e:bd:c3:bc:09:2c:7f:48:a2:15:83:35:f2:60:cf: 89:2d:3a:40:a1:a9:ad:13:0a:d6:42:3d:28:8e:12: b8:24:f6:af:cd:e8:c2:7c:a0:32:3f:54:ba:b2:66: ff:bc:e9:d9:4d:a1:40:43:da:b3:cd:02:3c:19:e1: e6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:88:23:FA:5B:62:24:32:FE:DA:B4:F9:8C:B6:D2:C5:8D:0E:70:9A X509v3 Authority Key Identifier: keyid:1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ef:75:d8:c7:50:ee:21:95:3b:87:31:1c:5d:db:63:d7:2f: 62:59:1d:4f:ef:ab:42:fa:80:07:ab:70:8c:d4:cc:69:0a:b7: c5:f1:48:96:81:24:d6:2b:59:ec:fd:eb:26:aa:f0:23:ae:00: 46:88:68:1e:1c:56:39:97:57:de:a9:8b:cc:90:32:28:b8:5a: c2:a7:0f:42:52:ea:b2:a8:79:78:3e:fa:5d:11:ea:6f:70:09: 9a:90:84:48:02:20:b0:29:39:e8:33:79:48:ba:93:24:dc:f0: fc:3a:70:25:5f:06:a9:ba:d8:58:3b:3d:a0:99:82:e5:71:c9: de:a1:36:bc:94:4b:7d:5d:e7:5c:a9:26:a7:35:5a:43:b5:98: b6:31:71:0c:1d:e4:59:ba:bf:9a:00:60:0d:c9:ee:62:09:92: ba:56:f1:61:c6:dd:6b:bf:27:13:f5:1a:40:71:32:ba:0f:e4: d1:77:7d:19:5c:70:8a:f0:d8:de:4f:42:c2:25:12:b2:9c:8d: 9e:54:c8:e3:cc:be:c2:23:f7:39:01:ed:1e:0d:fe:ef:22:e9: 89:a5:e4:0d:26:82:43:c9:3b:84:1c:a6:3b:f4:f7:be:dd:fd: ca:dd:07:be:ea:97:5e:da:6d:7b:70:cb:70:83:e2:f7:c9:9d: 61:0b:34:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCQjQxMTAvBgNVBAUTKDFDQzRFMDNGQzFBQzg5RTE3QjE5ODI0N0I2RTY0NTRB QkJBNzFCOEMwHhcNMjUwOTE4MTY0MjI2WhcNMjUwOTI1MTY0MjI2WjAYMRYwFAYD VQQDEw02OGNjMzY3Mi02Y2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXhHZ3pfNQ2q3neOb9muq8sNB8+WQagG0Q+PaLg7hC8Y7KddttMgqkzOJt73 5eXQi0RfKZePynu2iyDl2aarYgqsi8mHpEXSi645a58tC4XcSu1Id7VUS5d443ke yRRhke0jDjXssn8xdTcG4WNxh44H60j0r9Au3oYieksj+sBe6qhKwUchxQ6U9W+R F2P5seKXaUlhwi6sk+t6o9mOnxd54my9YjeMHFrI9QVDogvrbKE3OwazNK48co+H /lr9L7ZevcO8CSx/SKIVgzXyYM+JLTpAoamtEwrWQj0ojhK4JPavzejCfKAyP1S6 smb/vOnZTaFAQ9qzzQI8GeHmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOII/pb YiQy/tq0+Yy20sWNDnCaMB8GA1UdIwQYMBaAFBzE4D/BrInhexmCR7bmRUq7pxuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEJCNC85RDEwNUJGQ0Q2 NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2llRjdHWUpIdHVaRlNydW5H NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hNVGdQOEdzaWVGN0dZSkh0dVpGU3J1bkc0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEJCNC85RDEwNUJGQ0Q2NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2ll RjdHWUpIdHVaRlNydW5HNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi73XYx1DuIZU7hzEcXdtj1y9iWR1P76tC+oAHq3CM1MxpCrfF8UiW gSTWK1ns/esmqvAjrgBGiGgeHFY5l1feqYvMkDIouFrCpw9CUuqyqHl4PvpdEepv cAmakIRIAiCwKTnoM3lIupMk3PD8OnAlXwaputhYOz2gmYLlccneoTa8lEt9Xedc qSanNVpDtZi2MXEMHeRZur+aAGANye5iCZK6VvFhxt1rvycT9RpAcTK6D+TRd30Z XHCK8NjeT0LCJRKynI2eVMjjzL7CI/c5Ae0eDf7vIumJpeQNJoJDyTuEHKY79Pe+ 3f3K3Qe+6pde2m17cMtwg+L3yZ1hCzQe -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:13 2025 by rpki-client