$ rpki-client -vvf rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft File: HMTgP8GsieF7GYJHtuZFSrunG4w.mft (raw, json) Hash identifier: zTIcEZjMrRt+Ndsgo8ZeMwnHYX5pbRwHgGhPp5cBttE= Subject key identifier: 23:BB:DE:50:4E:F9:36:94:B0:A0:9F:99:45:10:FA:85:FF:5D:19:B5 Authority key identifier: 1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C Certificate issuer: /CN=A9174BB4/serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Certificate serial: 1756 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft Manifest number: 1756 Signing time: Fri 30 May 2025 16:47:10 +0000 Manifest this update: Fri 30 May 2025 16:47:09 +0000 Manifest next update: Fri 06 Jun 2025 16:47:09 +0000 Files and hashes: 1: HMTgP8GsieF7GYJHtuZFSrunG4w.crl (hash: /gyRzMizbPjTbf9MeiixXRmzyI8G/FrpUkFk8T5sPIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5974 (0x1756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174BB4, serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Validity Not Before: May 30 16:47:09 2025 GMT Not After : Jun 6 16:47:09 2025 GMT Subject: CN=6839e10d-8005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d8:83:c3:3c:a7:ea:18:c6:26:bd:76:c0:35: 87:52:58:3d:36:98:c6:58:6d:2d:27:ae:25:c5:83: b0:90:25:8b:71:1d:4b:aa:ce:1b:ea:07:58:39:9c: b0:9c:8c:d0:93:d3:5e:63:af:07:17:16:af:f8:2e: 94:3d:16:9f:aa:e5:35:00:c5:2b:15:e2:65:b0:f4: 01:32:45:15:83:b4:a8:3c:8d:aa:53:8d:78:90:99: 8c:46:d6:6a:c5:23:ba:e6:89:18:3d:21:5d:b8:2c: 0d:88:a4:55:75:d3:89:7a:93:3e:38:e2:a8:8e:62: e0:56:cb:8d:55:0e:77:3f:87:eb:4a:52:09:ad:4f: 59:ab:ae:68:3e:ad:14:2e:5c:02:44:3b:02:fd:6a: ff:59:ab:e0:55:6c:a1:01:b0:d4:8d:56:76:bc:73: 44:1e:07:05:fb:68:1a:9f:02:40:e8:25:c2:a1:b4: dd:7f:e8:3f:5c:6e:e6:38:51:0f:c9:a4:35:3e:91: 3f:33:8e:ba:cb:91:72:a1:f0:50:0c:69:18:23:47: 96:9f:4c:11:b3:92:c1:f4:0e:2c:e8:93:4d:c1:30: 85:1b:7b:88:f9:c4:47:71:18:2b:28:3c:20:98:4b: 6f:73:ef:4d:91:4d:86:8b:81:2b:4e:b7:7c:a7:e5: e1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BB:DE:50:4E:F9:36:94:B0:A0:9F:99:45:10:FA:85:FF:5D:19:B5 X509v3 Authority Key Identifier: keyid:1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:f6:28:47:58:d0:57:25:5d:6c:41:37:ea:aa:a3:21:e8:9e: 78:5d:4c:ec:bc:bf:42:8d:fa:ce:54:4a:b8:de:92:40:bf:ce: 2b:bf:10:93:7f:95:38:91:e3:e5:00:b8:d9:d7:00:41:d0:bc: 5d:b2:e8:07:ac:99:9e:a7:26:79:36:4d:b9:05:01:4d:8b:ae: 88:c7:8e:90:13:1c:3e:21:f6:13:bb:e1:28:07:01:43:f3:a2: dd:0c:6a:ca:e8:5a:cb:7a:f9:09:cb:09:16:55:65:a3:96:35: 33:c1:e9:20:a1:9c:63:7a:7a:eb:35:bd:f4:e3:af:6c:02:8d: c1:a2:06:19:66:2e:cf:d4:d2:a3:4e:17:ad:87:68:0c:b8:30: 0e:ed:e5:b1:de:8d:6d:41:e0:fa:dd:7f:14:5b:3f:63:e3:7d: 21:be:36:ad:a5:8b:e0:07:d6:e3:48:7d:7e:ad:93:30:d9:57: 08:22:d0:08:9d:4f:84:8a:1c:c1:40:b8:e6:be:5f:a5:ca:fd: 41:5f:13:e2:52:8f:17:20:6e:e9:6c:29:d5:ad:12:da:94:23: 52:7c:8c:52:0b:e5:05:53:10:c7:90:6e:ec:7e:a6:a6:20:79: 55:9d:48:0b:85:1b:e6:ec:f3:f6:73:38:dd:44:de:6e:6a:2b: fb:6b:5e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCQjQxMTAvBgNVBAUTKDFDQzRFMDNGQzFBQzg5RTE3QjE5ODI0N0I2RTY0NTRB QkJBNzFCOEMwHhcNMjUwNTMwMTY0NzA5WhcNMjUwNjA2MTY0NzA5WjAYMRYwFAYD VQQDEw02ODM5ZTEwZC04MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NiDwzyn6hjGJr12wDWHUlg9NpjGWG0tJ64lxYOwkCWLcR1Lqs4b6gdYOZyw nIzQk9NeY68HFxav+C6UPRafquU1AMUrFeJlsPQBMkUVg7SoPI2qU414kJmMRtZq xSO65okYPSFduCwNiKRVddOJepM+OOKojmLgVsuNVQ53P4frSlIJrU9Zq65oPq0U LlwCRDsC/Wr/WavgVWyhAbDUjVZ2vHNEHgcF+2ganwJA6CXCobTdf+g/XG7mOFEP yaQ1PpE/M466y5FyofBQDGkYI0eWn0wRs5LB9A4s6JNNwTCFG3uI+cRHcRgrKDwg mEtvc+9NkU2Gi4ErTrd8p+XhYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO73lBO +TaUsKCfmUUQ+oX/XRm1MB8GA1UdIwQYMBaAFBzE4D/BrInhexmCR7bmRUq7pxuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEJCNC85RDEwNUJGQ0Q2 NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2llRjdHWUpIdHVaRlNydW5H NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hNVGdQOEdzaWVGN0dZSkh0dVpGU3J1bkc0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEJCNC85RDEwNUJGQ0Q2NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2ll RjdHWUpIdHVaRlNydW5HNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB19ihHWNBXJV1sQTfqqqMh6J54XUzsvL9CjfrOVEq43pJAv84rvxCT f5U4kePlALjZ1wBB0LxdsugHrJmepyZ5Nk25BQFNi66Ix46QExw+IfYTu+EoBwFD 86LdDGrK6FrLevkJywkWVWWjljUzwekgoZxjenrrNb30469sAo3BogYZZi7P1NKj Theth2gMuDAO7eWx3o1tQeD63X8UWz9j430hvjatpYvgB9bjSH1+rZMw2VcIItAI nU+EihzBQLjmvl+lyv1BXxPiUo8XIG7pbCnVrRLalCNSfIxSC+UFUxDHkG7sfqam IHlVnUgLhRvm7PP2czjdRN5uaiv7a14B -----END CERTIFICATE-----Generated at Sat May 31 16:50:45 2025 by rpki-client