$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: K7fmCIyn7sXGGP1JMivyU5nE0aNOWvB5V+JL3ifylaA= Subject key identifier: B6:3C:8F:26:47:E6:E0:AA:14:2C:C7:5F:A1:C1:19:BE:AA:DB:F0:26 Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 16C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 16AE Signing time: Thu 24 Apr 2025 16:41:56 +0000 Manifest this update: Thu 24 Apr 2025 16:41:56 +0000 Manifest next update: Thu 01 May 2025 16:41:56 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: MTGqj5g4IrWYnLZWXyaJAv9XRtkbv02KvazhlxiBMRA=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5825 (0x16c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Apr 24 16:41:56 2025 GMT Not After : May 1 16:41:56 2025 GMT Subject: CN=680a69d4-830b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:96:38:3c:44:92:13:dd:a5:71:5a:ea:60:1c: 6e:3f:53:a7:24:42:1e:21:81:2e:fb:04:33:0d:96: 98:f9:0f:be:e1:5b:5c:8f:0a:f5:c5:5a:91:3c:2a: 26:a6:ab:5d:36:de:94:ff:15:6f:9c:72:78:09:3a: 44:e5:34:e1:de:6c:e9:c4:94:e1:fa:e6:44:0f:b7: f1:10:89:95:a6:4f:b6:6e:b7:76:ac:15:7d:3a:a2: 34:59:ec:90:60:0b:37:27:1d:8f:81:29:96:7a:09: b8:62:4c:1a:46:c2:00:19:e5:10:77:b3:01:ea:4f: d1:2b:24:9b:83:7f:c4:bd:91:59:19:79:55:d2:f8: df:3d:40:4c:c9:df:aa:79:6e:98:ba:b3:7f:4a:5a: b9:c8:45:61:a6:94:e6:1f:92:e4:71:81:a9:e0:37: 16:45:d7:82:0d:ce:b4:5e:7d:29:70:cb:b4:cd:b8: 07:b1:b2:37:79:c5:47:e7:1a:0c:cf:2e:8c:15:c6: 1e:00:41:19:5a:9e:74:91:e6:2f:47:4b:35:12:67: cb:04:dd:52:2e:a5:19:9f:30:b9:ed:a5:14:18:76: 56:b6:d3:b8:fa:66:f9:d4:22:bf:4a:f2:53:2d:8f: e0:c5:f9:df:e6:51:4d:38:27:c1:3b:00:d0:eb:5a: d2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3C:8F:26:47:E6:E0:AA:14:2C:C7:5F:A1:C1:19:BE:AA:DB:F0:26 X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0d:28:b8:98:57:45:d8:92:64:12:43:8f:1b:11:f3:33:e7: 47:81:c7:30:c2:48:9c:37:9a:73:57:91:57:16:2c:65:e4:27: 57:df:2e:83:d1:d6:64:42:9e:06:cd:f7:5c:d2:6b:b0:e0:5e: b9:b5:1a:81:8b:2d:56:e2:6e:2e:86:d3:52:fd:7d:cb:7b:fb: e4:8c:73:c6:29:52:1d:2f:25:dd:5c:77:cc:1d:af:1e:c5:0d: 00:f2:f3:73:61:50:47:92:50:72:56:fb:85:e9:fc:27:74:b4: 7a:8e:34:be:7b:af:91:21:ac:4b:c1:9d:98:70:f6:d1:fb:2e: 55:66:7e:e9:dc:2c:a4:6f:5d:47:1a:70:f6:77:e9:d8:0b:ec: 13:87:6e:9c:d1:7d:d5:0b:59:96:1f:65:5a:5b:08:bf:ea:0e: d2:22:02:9c:12:b2:c7:1a:d4:c7:d3:4d:de:51:9e:03:31:9c: 87:bf:65:29:cc:4a:d8:79:33:2a:7b:f1:9b:ba:3c:ba:d8:48: 11:da:e6:69:b8:bc:31:bf:ad:ba:ff:5a:6d:4c:29:28:82:d9: 81:94:ee:0d:7c:19:2a:fe:fe:22:75:60:25:ec:11:6d:9d:e5: 5a:a1:85:08:a1:76:9d:58:70:b6:e4:c2:1c:62:4b:0e:cc:f2: 8e:60:93:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUwNDI0MTY0MTU2WhcNMjUwNTAxMTY0MTU2WjAYMRYwFAYD VQQDEw02ODBhNjlkNC04MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZY4PESSE92lcVrqYBxuP1OnJEIeIYEu+wQzDZaY+Q++4Vtcjwr1xVqRPCom pqtdNt6U/xVvnHJ4CTpE5TTh3mzpxJTh+uZED7fxEImVpk+2brd2rBV9OqI0WeyQ YAs3Jx2PgSmWegm4YkwaRsIAGeUQd7MB6k/RKySbg3/EvZFZGXlV0vjfPUBMyd+q eW6YurN/Slq5yEVhppTmH5LkcYGp4DcWRdeCDc60Xn0pcMu0zbgHsbI3ecVH5xoM zy6MFcYeAEEZWp50keYvR0s1EmfLBN1SLqUZnzC57aUUGHZWttO4+mb51CK/SvJT LY/gxfnf5lFNOCfBOwDQ61rSMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLY8jyZH 5uCqFCzHX6HBGb6q2/AmMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaDSi4mFdF2JJkEkOPGxHzM+dHgccwwkicN5pzV5FXFixl5CdX3y6D 0dZkQp4Gzfdc0muw4F65tRqBiy1W4m4uhtNS/X3Le/vkjHPGKVIdLyXdXHfMHa8e xQ0A8vNzYVBHklByVvuF6fwndLR6jjS+e6+RIaxLwZ2YcPbR+y5VZn7p3Cykb11H GnD2d+nYC+wTh26c0X3VC1mWH2VaWwi/6g7SIgKcErLHGtTH003eUZ4DMZyHv2Up zErYeTMqe/Gbujy62EgR2uZpuLwxv626/1ptTCkogtmBlO4NfBkq/v4idWAl7BFt neVaoYUIoXadWHC25MIcYksOzPKOYJOV -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:36 2025 by rpki-client