$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: nSGlhbN+JjigR/d2tkxbJi+PkNCOy23GZHMYRUrWJCE= Subject key identifier: 46:8E:1A:19:6B:D4:A3:5C:15:6F:55:74:8A:01:D9:AD:DF:F7:2E:50 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C13 Signing time: Thu 24 Apr 2025 18:35:36 +0000 Manifest this update: Thu 24 Apr 2025 18:35:36 +0000 Manifest next update: Thu 01 May 2025 18:35:36 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: jwlx5AzGWz2BS9h/rXqNYJOzZSyZPnisTFMMGQ/zdr0=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: I/1YYRZufm+Qc/8Hh8/4oZUCrPLEFvhM/LrJmE0hiuA=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: 1RZU0spXmvxzBxOJllCgbla9KxLkGAPl5bLUojUqNcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Apr 24 18:35:36 2025 GMT Not After : May 1 18:35:36 2025 GMT Subject: CN=680a8478-3bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:64:ae:f8:98:de:d2:eb:62:d8:4e:fd:3f: 9b:19:78:58:bb:ae:c9:38:0b:ca:31:63:ba:31:2f: 0a:a7:3a:29:13:75:fd:67:63:ca:08:fb:b5:67:78: 7a:b8:42:71:b1:b6:12:ea:ef:77:d6:41:b7:e2:27: a7:1e:2b:3b:a8:d3:03:ff:d2:74:54:93:81:86:73: c1:0f:8d:4a:a3:48:8b:48:46:f4:97:7e:3a:e0:ae: bf:e9:1e:36:88:06:52:ff:41:ea:29:6e:64:0e:e1: c9:a0:c2:25:6f:f0:da:18:b9:61:25:f6:62:ab:f9: 74:a4:92:9f:53:2f:65:a2:77:3e:35:ac:95:46:a0: c5:60:ed:9c:d4:b3:39:ce:7f:59:92:f5:4d:5a:74: 90:a3:e8:fa:ba:5a:3f:66:8e:7f:f9:c1:c9:0e:9c: 66:df:3e:60:cf:0a:14:a6:e0:b5:80:c1:50:0d:05: 10:56:aa:c2:be:a2:7c:10:7e:c5:42:fb:af:f4:24: 6d:77:5a:42:03:4e:8b:3f:a0:6d:4a:ad:f7:5a:a2: 42:51:a1:9d:6f:d9:d7:29:ab:b1:9a:20:7c:04:29: ef:28:9b:c1:bb:38:bd:64:c6:ad:5a:1f:6c:a2:40: 78:cf:a8:c5:cc:c4:d1:0e:0e:e4:c8:78:1e:6b:0e: c4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8E:1A:19:6B:D4:A3:5C:15:6F:55:74:8A:01:D9:AD:DF:F7:2E:50 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d3:e4:03:26:dc:3e:e9:07:de:61:1e:d3:ff:d9:d3:13:0f: e5:c6:45:ff:04:66:b4:b7:81:e5:d6:eb:8d:ed:e6:86:15:1b: 74:be:47:01:ec:10:32:dd:da:d7:fe:dc:b1:a7:4c:db:57:10: 24:cd:02:03:f8:e8:c9:bb:ed:d8:4c:de:92:ea:8c:53:29:df: 8a:6c:51:04:43:cf:23:ad:c7:42:0e:c4:1d:85:01:50:e4:3f: 4e:ea:d3:31:80:f7:87:6e:7c:54:3c:9e:ec:2c:51:7d:be:8b: 03:8a:a8:43:5f:8a:90:e3:33:0a:8f:0a:c3:a7:3f:29:1a:b1: b0:67:ca:ec:e5:ef:95:d9:2a:0d:4c:7b:d0:83:fe:1b:65:3d: ab:d7:b4:d5:58:d9:ce:ea:98:d0:19:bc:cc:65:20:3b:08:03: 79:a9:28:0a:c6:11:78:7e:5a:9b:cc:da:a3:c8:f6:fd:fe:3c: 06:28:24:ea:9d:7d:06:94:4f:fc:cd:d5:27:4d:ba:d6:a0:ce: 9c:e8:33:ac:74:7a:26:df:9f:61:97:84:c3:bc:37:e6:02:02: 47:f1:f5:cb:7a:05:4a:86:7a:cc:63:58:c1:d2:92:8b:a2:30: c9:87:99:c6:ba:ab:a5:68:7a:b1:f5:ba:cf:31:30:a0:01:77: e0:85:e7:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwNDI0MTgzNTM2WhcNMjUwNTAxMTgzNTM2WjAYMRYwFAYD VQQDEw02ODBhODQ3OC0zYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEZkrviY3tLrYthO/T+bGXhYu67JOAvKMWO6MS8KpzopE3X9Z2PKCPu1Z3h6 uEJxsbYS6u931kG34ienHis7qNMD/9J0VJOBhnPBD41Ko0iLSEb0l3464K6/6R42 iAZS/0HqKW5kDuHJoMIlb/DaGLlhJfZiq/l0pJKfUy9lonc+NayVRqDFYO2c1LM5 zn9ZkvVNWnSQo+j6ulo/Zo5/+cHJDpxm3z5gzwoUpuC1gMFQDQUQVqrCvqJ8EH7F Qvuv9CRtd1pCA06LP6BtSq33WqJCUaGdb9nXKauxmiB8BCnvKJvBuzi9ZMatWh9s okB4z6jFzMTRDg7kyHgeaw7EUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaOGhlr 1KNcFW9VdIoB2a3f9y5QMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+0+QDJtw+6QfeYR7T/9nTEw/lxkX/BGa0t4Hl1uuN7eaGFRt0vkcB 7BAy3drX/tyxp0zbVxAkzQID+OjJu+3YTN6S6oxTKd+KbFEEQ88jrcdCDsQdhQFQ 5D9O6tMxgPeHbnxUPJ7sLFF9vosDiqhDX4qQ4zMKjwrDpz8pGrGwZ8rs5e+V2SoN THvQg/4bZT2r17TVWNnO6pjQGbzMZSA7CAN5qSgKxhF4flqbzNqjyPb9/jwGKCTq nX0GlE/8zdUnTbrWoM6c6DOsdHom359hl4TDvDfmAgJH8fXLegVKhnrMY1jB0pKL ojDJh5nGuqulaHqx9brPMTCgAXfghedt -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:21 2025 by rpki-client