$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: f75uHjeQaojErcsPN/a1B/wgegGSFiOj2SxArhd0UW8= Subject key identifier: 01:B6:3A:D4:09:87:C2:CA:08:E4:C3:C3:B0:9C:DE:83:B3:27:DA:95 Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 16DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 16C8 Signing time: Sat 14 Jun 2025 16:37:29 +0000 Manifest this update: Sat 14 Jun 2025 16:37:28 +0000 Manifest next update: Sat 21 Jun 2025 16:37:28 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: 7KUVBhBsKpH+KqdhUv5LcKbmIWnGIASWWRGN1E3fTJo=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5851 (0x16db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Jun 14 16:37:28 2025 GMT Not After : Jun 21 16:37:28 2025 GMT Subject: CN=684da549-390d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:52:d2:cc:79:de:1c:1b:2c:84:b0:cd:a1:02: 71:5d:d1:c6:67:cd:7c:f7:53:80:e2:17:26:cc:44: a6:ef:c4:0b:ef:aa:a7:c4:67:d0:39:88:62:dd:f2: 7a:ed:56:72:8c:a2:fd:c2:fc:e7:70:3c:5c:b0:2e: a3:42:7c:bf:d3:f4:e1:fb:e9:79:c8:f9:9d:d1:4f: 2f:77:64:85:0d:90:b9:01:46:af:a3:45:78:35:2b: d3:37:fe:b0:ce:7a:e6:61:79:ce:0c:e6:7b:79:12: 99:4c:37:a3:87:8b:0e:b3:50:6e:4d:44:b7:3c:71: 50:9b:1f:94:a5:b5:b8:20:c3:a6:50:a3:7c:e8:b5: 95:11:1e:ae:51:2f:5b:29:8b:37:83:5a:bc:56:d0: 2c:40:10:e0:bc:ef:65:5f:f2:87:b3:8d:91:fb:32: a5:31:35:81:4d:97:6c:f0:b7:3d:ad:a8:2c:f4:6e: 6f:76:2e:6d:dc:ed:38:e7:fd:ac:d6:1f:40:5b:ba: 78:fb:0c:bb:66:b5:7f:66:e4:74:39:fb:70:29:bf: a0:99:82:db:fd:58:cb:10:6f:11:25:45:99:3b:40: d8:30:9e:4b:15:32:1c:26:40:2e:ba:30:72:0b:57: 58:32:9b:8e:e3:db:45:4f:d9:86:92:9f:a8:72:d6: 31:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B6:3A:D4:09:87:C2:CA:08:E4:C3:C3:B0:9C:DE:83:B3:27:DA:95 X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:58:64:1f:14:12:fb:c7:76:dc:d9:5d:48:3d:15:87:b6:fd: d8:d5:3d:d5:99:50:a1:2d:4c:a3:08:58:79:c1:ce:d3:79:d2: 85:df:98:9a:49:0e:a8:7e:66:ba:4b:80:45:92:71:97:dc:d2: 39:6b:7c:70:5e:ae:89:2e:e6:af:dc:ae:fc:95:f7:a4:30:5e: 8e:96:bc:1d:b2:da:c6:87:81:cd:bc:96:ff:94:bf:13:7e:b5: 6c:8b:f8:43:39:1c:74:5f:19:cc:e2:1a:b1:fb:96:ff:3e:74: 99:19:18:c7:52:8b:92:eb:ae:e6:f6:d0:e0:ab:c5:5b:56:c2: 79:ee:a3:8f:e2:83:09:87:e4:4a:3f:4c:5d:92:38:09:13:1f: 4b:7c:df:3e:6c:93:07:ac:73:de:63:bf:36:fe:34:a8:72:87: c9:d7:0d:3f:0b:e9:4c:ab:a1:b6:a7:a1:58:ef:5a:52:66:4f: fc:ef:06:75:bc:c0:4c:ae:e6:70:0d:fd:68:d2:9f:2e:02:df: 45:10:be:4b:8a:0b:37:99:8b:fb:e2:4b:36:66:fe:58:86:af: 0c:f8:75:53:d3:66:59:b0:5c:eb:fc:fd:20:e2:74:14:fe:24: 96:ea:a3:31:85:d6:52:95:4d:c4:55:be:da:c3:e4:82:3d:c7: 95:09:c4:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUwNjE0MTYzNzI4WhcNMjUwNjIxMTYzNzI4WjAYMRYwFAYD VQQDEw02ODRkYTU0OS0zOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6VLSzHneHBsshLDNoQJxXdHGZ81891OA4hcmzESm78QL76qnxGfQOYhi3fJ6 7VZyjKL9wvzncDxcsC6jQny/0/Th++l5yPmd0U8vd2SFDZC5AUavo0V4NSvTN/6w znrmYXnODOZ7eRKZTDejh4sOs1BuTUS3PHFQmx+UpbW4IMOmUKN86LWVER6uUS9b KYs3g1q8VtAsQBDgvO9lX/KHs42R+zKlMTWBTZds8Lc9rags9G5vdi5t3O045/2s 1h9AW7p4+wy7ZrV/ZuR0OftwKb+gmYLb/VjLEG8RJUWZO0DYMJ5LFTIcJkAuujBy C1dYMpuO49tFT9mGkp+octYxoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG2OtQJ h8LKCOTDw7Cc3oOzJ9qVMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJWGQfFBL7x3bc2V1IPRWHtv3Y1T3VmVChLUyjCFh5wc7TedKF35ia SQ6ofma6S4BFknGX3NI5a3xwXq6JLuav3K78lfekMF6OlrwdstrGh4HNvJb/lL8T frVsi/hDORx0XxnM4hqx+5b/PnSZGRjHUouS667m9tDgq8VbVsJ57qOP4oMJh+RK P0xdkjgJEx9LfN8+bJMHrHPeY782/jSocofJ1w0/C+lMq6G2p6FY71pSZk/87wZ1 vMBMruZwDf1o0p8uAt9FEL5Ligs3mYv74ks2Zv5Yhq8M+HVT02ZZsFzr/P0g4nQU /iSW6qMxhdZSlU3EVb7aw+SCPceVCcR+ -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:50 2025 by rpki-client