$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: 5+7O03EWbFSy0NE/+Xj0+NjpPmbRvYcDUuSDiCGKoUY= Subject key identifier: C8:3B:ED:F4:FB:23:B6:6E:C3:00:CB:F8:C4:A1:F6:30:67:68:DA:29 Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 16F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 16E4 Signing time: Fri 08 Aug 2025 16:49:42 +0000 Manifest this update: Fri 08 Aug 2025 16:49:41 +0000 Manifest next update: Fri 15 Aug 2025 16:49:41 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: lhZaqRxpInJ0+JlT8SFaR0Jdm70NXRh/YvuiZs0/jRY=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5879 (0x16f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Aug 8 16:49:41 2025 GMT Not After : Aug 15 16:49:41 2025 GMT Subject: CN=68962aa5-641e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c3:40:ac:3c:5a:f5:ee:32:00:4d:a6:06:d2: db:61:24:ca:fa:0e:8d:df:97:85:f2:49:c8:4a:f9: a4:e4:b7:b1:fe:5b:e7:25:35:dd:3b:b5:8b:cd:8f: bd:17:30:42:94:ed:bb:28:35:15:c1:86:d9:44:6a: ed:c4:d7:0b:b7:59:00:e4:df:05:cf:90:a8:8c:92: 14:42:c0:1c:49:6b:44:0e:2b:d3:60:88:c5:f3:08: ff:d7:c8:7e:77:5b:bf:8d:d9:2e:27:e4:ae:d9:7d: f3:a5:03:2d:1c:5b:b1:5f:3b:89:36:e5:88:c0:18: 0d:d3:2d:26:d7:c5:ec:93:f4:4d:c4:c1:47:23:d9: 2d:61:7e:39:74:d9:64:5d:c6:4e:d2:a1:40:74:7c: d6:0c:8a:83:a6:a9:c2:1f:0d:fd:c4:e0:63:8b:4a: 18:e7:23:01:c5:99:00:43:1d:89:4e:60:f4:76:7d: 17:a0:c0:99:8b:cd:a5:00:a5:7c:f0:92:65:1d:f7: 22:c2:48:60:ea:d0:49:ea:d0:5b:0a:27:a9:c8:db: 5e:72:c4:72:23:63:27:c1:4b:c4:ee:a0:54:1d:74: c0:5f:c8:6f:53:4f:d2:6d:07:f5:48:a2:9a:4e:e1: 23:90:c9:25:5b:55:aa:30:63:64:6d:42:a7:a6:40: b9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:3B:ED:F4:FB:23:B6:6E:C3:00:CB:F8:C4:A1:F6:30:67:68:DA:29 X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:61:38:f4:cb:32:e7:48:4d:cf:cc:aa:82:e7:b0:fb:4a:95: 8c:48:5c:dc:0e:2f:d6:c1:92:37:f5:ab:c4:05:eb:a7:65:66: df:8f:2d:ec:3b:ac:42:c0:96:3c:97:92:9e:3c:77:1e:1a:ba: 82:01:ec:cf:42:48:1e:39:d2:92:b4:ab:dd:82:b0:14:23:ad: a6:5d:66:38:2a:f3:ff:c6:47:41:21:f6:81:a9:d2:f6:47:d5: 21:42:34:13:2a:1b:c6:d9:67:1e:48:2b:3d:64:71:dd:06:f3: 77:e5:f4:19:7f:06:49:8b:12:40:6c:ee:58:e1:b4:3a:d5:1d: e3:97:bc:14:24:52:11:74:d6:ef:8b:eb:87:72:8a:3e:55:28: 3e:3a:95:0c:56:45:c5:a1:0a:fd:35:aa:94:aa:11:1d:8a:c6: 30:ef:a2:99:0f:8c:c5:5d:c5:e6:39:2d:2d:41:9a:64:f6:b4: c4:d3:91:de:9d:dd:d1:7a:d0:74:3a:cf:7b:cd:50:29:9d:00: 3c:96:64:e6:a2:a5:d7:5a:dd:55:86:f1:a8:41:e7:e8:fd:cc: 7c:be:36:50:15:7c:83:ef:d7:45:2f:42:25:ea:82:f8:37:94: d2:e8:cf:4e:60:0f:df:7c:3e:18:c4:38:06:53:57:fe:e0:01: 3c:b2:22:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUwODA4MTY0OTQxWhcNMjUwODE1MTY0OTQxWjAYMRYwFAYD VQQDEw02ODk2MmFhNS02NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cNArDxa9e4yAE2mBtLbYSTK+g6N35eF8knISvmk5Lex/lvnJTXdO7WLzY+9 FzBClO27KDUVwYbZRGrtxNcLt1kA5N8Fz5CojJIUQsAcSWtEDivTYIjF8wj/18h+ d1u/jdkuJ+Su2X3zpQMtHFuxXzuJNuWIwBgN0y0m18Xsk/RNxMFHI9ktYX45dNlk XcZO0qFAdHzWDIqDpqnCHw39xOBji0oY5yMBxZkAQx2JTmD0dn0XoMCZi82lAKV8 8JJlHfciwkhg6tBJ6tBbCiepyNtecsRyI2MnwUvE7qBUHXTAX8hvU0/SbQf1SKKa TuEjkMklW1WqMGNkbUKnpkC5UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMg77fT7 I7ZuwwDL+MSh9jBnaNopMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQYTj0yzLnSE3PzKqC57D7SpWMSFzcDi/WwZI39avEBeunZWbfjy3s O6xCwJY8l5KePHceGrqCAezPQkgeOdKStKvdgrAUI62mXWY4KvP/xkdBIfaBqdL2 R9UhQjQTKhvG2WceSCs9ZHHdBvN35fQZfwZJixJAbO5Y4bQ61R3jl7wUJFIRdNbv i+uHcoo+VSg+OpUMVkXFoQr9NaqUqhEdisYw76KZD4zFXcXmOS0tQZpk9rTE05He nd3RetB0Os97zVApnQA8lmTmoqXXWt1VhvGoQefo/cx8vjZQFXyD79dFL0Il6oL4 N5TS6M9OYA/ffD4YxDgGU1f+4AE8siJh -----END CERTIFICATE-----Generated at Sun Aug 10 16:01:59 2025 by rpki-client