$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: fhCrzh8a4bKJnOL/q3jjxYdFFOSNx37R+NKREiPdH6o= Subject key identifier: CF:2A:70:85:E7:C5:96:FE:2F:F2:92:A9:6D:39:98:03:49:8E:85:44 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C73 Signing time: Fri 24 Oct 2025 19:07:15 +0000 Manifest this update: Fri 24 Oct 2025 19:07:14 +0000 Manifest next update: Fri 31 Oct 2025 19:07:14 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: 7TKotoeU0Wg3zmyjRR0+xcDKHAbj22vjrCGwgZbshqk=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Oct 24 19:07:14 2025 GMT Not After : Oct 31 19:07:14 2025 GMT Subject: CN=68fbce62-47dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:37:81:f0:e2:d5:f6:ed:1a:17:c0:8f:10: 6e:53:cb:03:e0:0f:a0:1d:d2:63:9f:de:9a:7c:d8: 34:74:a6:72:fc:5f:ec:1d:73:2c:da:a8:e6:a8:bf: 6e:ba:b2:2b:31:cb:24:b8:09:27:cc:05:b1:ea:7c: 62:57:4b:e0:7d:84:65:b8:4b:f3:8c:71:1b:bc:07: e8:02:cb:95:67:cc:cf:e0:b3:07:c6:e0:b1:9d:74: 29:ae:00:7a:5e:71:c3:7d:02:65:3d:5a:2d:a3:98: 22:81:95:be:09:59:e6:dd:89:62:65:35:fc:be:d2: 5e:1a:be:de:6d:09:e7:83:96:96:f2:3c:b6:ff:92: 65:38:4e:75:bf:21:97:93:6a:48:b5:97:97:fd:eb: 9d:4d:62:a2:34:65:fa:bf:ec:34:b7:6d:5f:66:bc: bb:6d:ac:7b:ed:93:ef:47:87:fc:6d:3c:62:5e:f5: 51:1b:24:da:16:ef:8b:c5:d8:36:8a:06:83:73:24: 63:76:6d:11:e3:25:c3:6f:21:70:68:e1:27:71:8f: 3b:b8:cc:67:4d:9c:82:9f:d5:fb:1e:3f:7c:95:89: 1f:10:b3:c8:a6:74:7b:54:51:89:1b:ea:04:74:aa: 72:b4:1f:c3:96:31:23:66:7b:70:d8:00:0a:7f:20: db:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2A:70:85:E7:C5:96:FE:2F:F2:92:A9:6D:39:98:03:49:8E:85:44 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:8f:43:ef:f7:65:de:d3:96:0c:08:00:2b:66:8b:de:d5:7a: 06:b9:4a:6d:69:05:e6:68:8b:87:90:c3:7e:25:ad:25:23:a0: 59:9e:b3:f4:1d:72:da:10:7e:e9:24:bb:45:b6:ef:60:57:79: c3:9a:cd:49:5a:70:67:bf:cc:73:77:6a:1d:c5:9a:75:35:9c: 9b:a6:65:12:ae:52:a1:1f:c4:e8:ad:3e:f8:21:be:df:30:f3: f6:b3:44:ef:d0:03:d3:77:2a:84:75:71:c4:2c:81:e0:16:f7: 61:c4:7d:6f:de:4d:08:90:9a:78:93:a1:32:48:67:a0:ca:1e: c3:b8:fa:de:c7:c9:0b:3b:d5:2d:c3:52:4e:a8:91:82:58:b4: 2b:f8:d8:6e:f4:99:c6:45:9b:12:31:a7:f1:83:7c:a4:6a:18: 76:e7:0f:97:1b:65:fd:b7:b1:69:85:eb:6a:cf:14:e5:a2:c6: a8:65:8b:f3:1a:e5:77:d0:56:7a:46:bd:28:0c:6e:be:81:96: 67:00:1f:95:50:37:11:a8:e9:d6:bf:14:ec:1d:97:36:b6:42: 90:c2:83:f3:b3:24:a9:16:d4:1f:0d:3f:85:45:2f:84:df:86: 05:31:40:a5:ff:73:85:80:79:cb:f3:e9:b5:7b:9e:a5:25:df: 82:2b:b1:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMDI0MTkwNzE0WhcNMjUxMDMxMTkwNzE0WjAYMRYwFAYD VQQDEw02OGZiY2U2Mi00N2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmE3gfDi1fbtGhfAjxBuU8sD4A+gHdJjn96afNg0dKZy/F/sHXMs2qjmqL9u urIrMcskuAknzAWx6nxiV0vgfYRluEvzjHEbvAfoAsuVZ8zP4LMHxuCxnXQprgB6 XnHDfQJlPVoto5gigZW+CVnm3YliZTX8vtJeGr7ebQnng5aW8jy2/5JlOE51vyGX k2pItZeX/eudTWKiNGX6v+w0t21fZry7bax77ZPvR4f8bTxiXvVRGyTaFu+Lxdg2 igaDcyRjdm0R4yXDbyFwaOEncY87uMxnTZyCn9X7Hj98lYkfELPIpnR7VFGJG+oE dKpytB/DljEjZntw2AAKfyDbxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8qcIXn xZb+L/KSqW05mANJjoVEMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaj0Pv92Xe05YMCAArZove1XoGuUptaQXmaIuHkMN+Ja0lI6BZnrP0 HXLaEH7pJLtFtu9gV3nDms1JWnBnv8xzd2odxZp1NZybpmUSrlKhH8TorT74Ib7f MPP2s0Tv0APTdyqEdXHELIHgFvdhxH1v3k0IkJp4k6EySGegyh7DuPrex8kLO9Ut w1JOqJGCWLQr+Nhu9JnGRZsSMafxg3ykahh25w+XG2X9t7FphetqzxTlosaoZYvz GuV30FZ6Rr0oDG6+gZZnAB+VUDcRqOnWvxTsHZc2tkKQwoPzsySpFtQfDT+FRS+E 34YFMUCl/3OFgHnL8+m1e56lJd+CK7GA -----END CERTIFICATE-----Generated at Sat Oct 25 17:26:52 2025 by rpki-client