$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: IAuRr+uv3FJMRcGDLuwx2n+M1Vm51ZL3MQBjXLGixlc= Subject key identifier: 57:2B:DB:40:62:47:B6:D9:74:C8:1D:65:85:E5:EB:3D:C7:8E:DA:27 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C24 Signing time: Fri 30 May 2025 18:49:33 +0000 Manifest this update: Fri 30 May 2025 18:49:33 +0000 Manifest next update: Fri 06 Jun 2025 18:49:33 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: awBQnSyEk7LYzdxYj8+2dq70OILtozN7LEvwekO2pxw=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: I/1YYRZufm+Qc/8Hh8/4oZUCrPLEFvhM/LrJmE0hiuA=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: 1RZU0spXmvxzBxOJllCgbla9KxLkGAPl5bLUojUqNcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: May 30 18:49:33 2025 GMT Not After : Jun 6 18:49:33 2025 GMT Subject: CN=6839fdbd-cc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b9:fc:96:c1:ef:43:67:94:4a:bf:24:15:fa: 38:e5:f7:bc:1c:78:81:3c:c3:f5:1a:d5:94:8a:10: e9:1f:a4:82:b9:91:fd:da:56:e7:28:f8:3f:94:27: c6:81:fe:02:72:75:de:91:a9:4e:50:58:db:ef:5b: 9c:35:23:86:73:b9:51:8e:f6:f1:ce:6d:f0:f9:39: 0f:24:8a:9f:eb:b7:22:99:fc:45:51:5e:bc:6b:6f: dc:94:2b:5f:63:fc:fc:21:ca:b5:fc:1f:1d:e7:d4: d3:01:d7:72:e4:99:17:e1:19:bc:8b:6c:f6:06:12: d5:14:45:e5:d0:1c:58:35:2b:9a:e1:ad:e9:32:be: 7e:f1:c0:4d:f9:aa:14:ed:df:a3:7e:96:30:b2:bd: 7b:fc:00:ab:2a:8e:64:76:3b:b7:ff:31:46:1b:83: 81:5d:4c:3e:d9:64:2d:b5:f1:94:20:9b:ce:e0:33: 95:e1:5a:72:bb:21:d7:28:02:48:36:42:a9:b5:b4: 60:f8:ce:71:49:55:68:2e:a9:9c:bf:74:db:64:7f: b3:c1:25:63:43:f6:7f:8d:20:f1:ca:92:d0:a1:1a: ad:9b:ad:d8:23:e1:18:fb:01:6c:ee:7b:13:d3:a0: 8f:f0:9a:9a:98:1d:c9:ab:bf:40:4e:be:6c:3d:81: 15:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2B:DB:40:62:47:B6:D9:74:C8:1D:65:85:E5:EB:3D:C7:8E:DA:27 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c2:0a:9c:3f:39:30:84:f2:e7:b5:5a:50:63:3b:88:3c:3a: 0d:ce:c2:b7:e4:f4:c9:9b:ce:b6:ab:49:ea:ff:c0:5b:67:8f: b6:d3:e3:3f:41:6d:12:28:d9:61:46:e0:77:bd:82:06:57:43: ec:9a:10:0a:f0:5e:81:22:d0:c8:a8:09:8b:13:47:5a:12:b9: f7:d5:97:90:a2:99:f2:ee:ee:8f:a5:8f:7d:a2:70:93:e0:81: 7b:d8:46:75:19:cf:64:02:eb:3f:b2:83:97:e3:45:00:b9:f1: 13:a4:b7:1a:59:f9:8f:ee:5b:21:0e:45:24:b1:f6:b3:af:0c: 92:58:ca:49:9e:99:29:b2:a8:d8:03:80:a3:5a:d5:50:9f:5f: 09:ba:9e:22:9c:27:87:13:41:dc:95:bb:29:24:f4:85:4c:85: 02:0e:b4:15:3d:2f:ba:c6:d6:56:dd:dd:df:1a:cd:c8:b4:0b: d8:5d:ba:51:f2:12:a0:f1:18:77:e3:18:00:55:ec:1d:49:5c: ef:78:99:20:a6:49:0a:7c:f7:22:93:c5:e5:6c:5c:e2:34:ba: 80:f2:ae:14:d6:0b:ea:c5:8e:3c:57:07:87:29:5b:3b:34:f3: 2a:0f:26:bd:30:2a:56:d3:5b:09:4b:cf:ca:3d:e5:e9:58:31: 47:a8:10:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwNTMwMTg0OTMzWhcNMjUwNjA2MTg0OTMzWjAYMRYwFAYD VQQDEw02ODM5ZmRiZC1jYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7n8lsHvQ2eUSr8kFfo45fe8HHiBPMP1GtWUihDpH6SCuZH92lbnKPg/lCfG gf4CcnXekalOUFjb71ucNSOGc7lRjvbxzm3w+TkPJIqf67cimfxFUV68a2/clCtf Y/z8Icq1/B8d59TTAddy5JkX4Rm8i2z2BhLVFEXl0BxYNSua4a3pMr5+8cBN+aoU 7d+jfpYwsr17/ACrKo5kdju3/zFGG4OBXUw+2WQttfGUIJvO4DOV4VpyuyHXKAJI NkKptbRg+M5xSVVoLqmcv3TbZH+zwSVjQ/Z/jSDxypLQoRqtm63YI+EY+wFs7nsT 06CP8JqamB3Jq79ATr5sPYEVsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcr20Bi R7bZdMgdZYXl6z3HjtonMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtwgqcPzkwhPLntVpQYzuIPDoNzsK35PTJm862q0nq/8BbZ4+20+M/ QW0SKNlhRuB3vYIGV0PsmhAK8F6BItDIqAmLE0daErn31ZeQopny7u6PpY99onCT 4IF72EZ1Gc9kAus/soOX40UAufETpLcaWfmP7lshDkUksfazrwySWMpJnpkpsqjY A4CjWtVQn18Jup4inCeHE0HclbspJPSFTIUCDrQVPS+6xtZW3d3fGs3ItAvYXbpR 8hKg8Rh34xgAVewdSVzveJkgpkkKfPcik8XlbFziNLqA8q4U1gvqxY48VweHKVs7 NPMqDya9MCpW01sJS8/KPeXpWDFHqBCt -----END CERTIFICATE-----Generated at Sat May 31 16:56:09 2025 by rpki-client