$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: YhFRb5c4+PuHFxuFQRg0X4/2Gu5jZMVQaICbr8NHiDc= Subject key identifier: 11:A0:94:71:CA:31:00:3E:51:C4:58:EC:CC:AF:68:99:8D:89:16:E5 Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 16D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 16C0 Signing time: Fri 30 May 2025 16:51:36 +0000 Manifest this update: Fri 30 May 2025 16:51:36 +0000 Manifest next update: Fri 06 Jun 2025 16:51:36 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: dzKiq3Eo70SKs4sTJDixMihnlGs2iys8C60YxtYH/gc=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5843 (0x16d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: May 30 16:51:36 2025 GMT Not After : Jun 6 16:51:36 2025 GMT Subject: CN=6839e218-930b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1d:38:64:66:cf:12:be:48:61:21:a0:f3:6e: 45:e0:69:0c:3e:13:b7:cf:ff:b2:57:cd:75:d5:ce: e3:15:41:59:db:af:d1:c6:2c:53:27:54:a0:40:04: 14:43:71:f4:64:81:e5:f8:98:61:d0:65:76:05:a9: 65:39:fc:21:a7:08:00:9d:25:ff:ee:84:90:c0:aa: 59:4c:13:fa:a6:ad:31:52:08:0e:c6:59:f3:6a:6e: 77:e7:15:f8:cb:c4:04:f5:e9:00:af:e6:b7:47:91: d6:27:9c:b6:b5:49:f8:fa:84:ea:f5:fc:47:23:9f: bb:6d:c6:bb:0d:07:7d:0e:80:46:50:86:13:91:d0: b7:4a:98:52:3d:28:36:85:33:05:a6:66:52:4c:a3: 58:a3:03:4d:8b:5f:77:f2:26:f1:29:16:2d:40:f9: 1b:6c:1c:cb:54:d9:a7:6f:ea:da:ff:b8:52:56:03: f7:46:4c:3e:9a:da:b8:7a:e7:e0:ea:7c:56:cc:5b: df:76:49:af:24:0f:56:35:46:7e:fb:15:8a:97:76: 91:5d:1a:f5:2c:0b:12:70:0f:07:46:2c:3e:5a:f6: a3:f0:9a:53:79:f8:a3:10:ec:b2:02:b2:30:e7:2a: 39:19:60:cf:72:dc:8d:ad:f4:43:68:ce:7b:4f:81: e7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A0:94:71:CA:31:00:3E:51:C4:58:EC:CC:AF:68:99:8D:89:16:E5 X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9c:73:6a:ca:8a:3a:b9:d0:0d:32:03:30:90:51:1f:f0:37: cf:9b:6e:5c:18:5f:0d:15:6e:f3:68:99:39:49:01:aa:fc:d9: bf:17:a2:ca:4d:8c:73:21:36:a1:38:9e:21:8e:ca:2f:17:36: d3:1a:23:64:b7:ed:84:42:b5:13:8b:74:24:b9:3b:4e:cd:ea: d7:c8:af:8c:5a:12:11:ff:7c:00:1e:c7:63:da:20:c3:94:a0: c9:13:63:59:2e:14:a3:98:f1:2a:aa:c1:73:23:62:05:e7:27: c2:4b:e8:46:41:1d:57:79:c4:09:4f:76:85:d0:c7:6b:dd:1f: 30:74:ea:aa:34:61:c3:62:79:75:58:ce:d7:94:68:f6:7f:74: aa:47:65:e4:63:ef:95:f4:25:42:7e:a9:6c:6b:61:d0:a4:8a: e8:4a:2f:a6:7d:d8:62:a1:8f:88:8a:2f:f9:7c:a8:d0:6f:dc: 03:c0:09:20:35:46:80:50:f7:bb:9b:20:2b:25:a2:cb:b5:21: 64:71:8c:90:1b:f3:8c:35:87:a0:40:a0:b1:22:40:ea:81:32: 45:98:0b:ca:30:d3:cc:e6:4c:ee:07:4a:f6:7d:2b:2d:7f:33: 83:ba:44:b3:a7:5f:e8:67:0b:57:d6:45:eb:ed:9d:9f:d4:3b: 5b:a7:3d:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUwNTMwMTY1MTM2WhcNMjUwNjA2MTY1MTM2WjAYMRYwFAYD VQQDEw02ODM5ZTIxOC05MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnB04ZGbPEr5IYSGg825F4GkMPhO3z/+yV8111c7jFUFZ26/RxixTJ1SgQAQU Q3H0ZIHl+Jhh0GV2BallOfwhpwgAnSX/7oSQwKpZTBP6pq0xUggOxlnzam535xX4 y8QE9ekAr+a3R5HWJ5y2tUn4+oTq9fxHI5+7bca7DQd9DoBGUIYTkdC3SphSPSg2 hTMFpmZSTKNYowNNi1938ibxKRYtQPkbbBzLVNmnb+ra/7hSVgP3Rkw+mtq4eufg 6nxWzFvfdkmvJA9WNUZ++xWKl3aRXRr1LAsScA8HRiw+Wvaj8JpTefijEOyyArIw 5yo5GWDPctyNrfRDaM57T4Hn9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGglHHK MQA+UcRY7MyvaJmNiRblMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABnHNqyoo6udANMgMwkFEf8DfPm25cGF8NFW7zaJk5SQGq/Nm/F6LK TYxzITahOJ4hjsovFzbTGiNkt+2EQrUTi3QkuTtOzerXyK+MWhIR/3wAHsdj2iDD lKDJE2NZLhSjmPEqqsFzI2IF5yfCS+hGQR1XecQJT3aF0Mdr3R8wdOqqNGHDYnl1 WM7XlGj2f3SqR2XkY++V9CVCfqlsa2HQpIroSi+mfdhioY+Iii/5fKjQb9wDwAkg NUaAUPe7myArJaLLtSFkcYyQG/OMNYegQKCxIkDqgTJFmAvKMNPM5kzuB0r2fSst fzODukSzp1/oZwtX1kXr7Z2f1Dtbpz1b -----END CERTIFICATE-----Generated at Sat May 31 17:18:55 2025 by rpki-client