$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: crubjAh6jTntZ53mjJDSGoaOik4rHkrPsengvZpubXU= Subject key identifier: 6A:BD:D2:94:DF:6A:3B:1E:00:84:3C:8A:69:DC:AF:31:48:93:18:C1 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C2E Signing time: Wed 18 Jun 2025 18:30:59 +0000 Manifest this update: Wed 18 Jun 2025 18:30:58 +0000 Manifest next update: Wed 25 Jun 2025 18:30:58 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: bFJQXXDxcHqJbSBNlTT5s6dpUgKiEFbl25PJliICo5U=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: I/1YYRZufm+Qc/8Hh8/4oZUCrPLEFvhM/LrJmE0hiuA=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: 1RZU0spXmvxzBxOJllCgbla9KxLkGAPl5bLUojUqNcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jun 18 18:30:58 2025 GMT Not After : Jun 25 18:30:58 2025 GMT Subject: CN=685305e2-8b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:4e:2b:bb:d9:99:37:1d:a3:d9:82:a8:07: f6:81:77:bc:31:6e:18:f1:a8:40:5a:6f:6d:e1:76: 8d:3e:ff:f3:57:6e:bc:68:76:fc:81:88:48:b2:05: f4:de:00:fb:8b:31:4e:c9:94:13:28:da:f2:6a:6a: c1:f0:85:5a:ce:24:d2:81:23:00:a8:73:85:31:e1: 7f:56:cb:58:8d:50:76:c7:a4:c3:f1:da:b5:6b:b4: 4e:1f:20:35:dd:b2:7c:4e:3b:0c:75:38:72:a4:43: 06:be:87:3f:fd:ba:c4:d3:71:47:79:f6:04:bc:80: 38:c5:a2:f7:02:63:29:dd:47:b5:20:b5:5d:d2:91: 71:9e:ad:1b:49:07:78:b5:d5:ac:eb:49:bf:46:8f: 35:22:3a:9a:fe:d9:de:74:2c:9d:26:ba:ba:0a:3f: a7:43:4f:40:b8:13:43:c6:18:05:9e:ce:d2:eb:d5: cd:83:21:13:8b:de:44:48:5a:18:a6:ff:98:80:fc: 6c:3d:66:c6:9a:50:3d:50:97:7e:aa:54:08:16:37: ed:39:86:5f:db:d2:5f:a1:93:86:c5:52:7c:41:47: 87:4f:b4:d2:c9:2e:78:71:d5:46:4a:e5:f6:dc:38: e3:d8:82:0f:80:6c:53:76:05:51:87:cb:e4:32:23: 51:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BD:D2:94:DF:6A:3B:1E:00:84:3C:8A:69:DC:AF:31:48:93:18:C1 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c0:9d:e5:d4:67:84:97:e5:5b:bf:7e:af:86:89:2b:b7:de: 55:40:02:ba:7d:03:8f:1b:27:d6:d8:f7:19:34:9e:58:6f:1d: b8:88:c0:f5:2c:d9:0e:b7:f9:a9:63:e8:bd:03:52:1d:79:f9: 01:48:c8:c6:7b:95:07:df:b5:c6:76:b5:4d:1d:b0:0f:02:46: 74:32:e7:1f:85:74:53:98:92:d1:c4:4b:38:91:b8:55:ba:ab: cc:01:b8:86:52:b0:5d:f6:b5:c9:b2:1f:1a:08:4e:a2:aa:1a: 5a:b8:85:33:8a:8f:39:95:63:19:2b:c4:b3:1b:11:fc:53:32: ce:d7:53:87:94:94:cf:53:4c:e0:30:5b:eb:db:fe:39:7c:aa: 16:53:75:7c:83:1f:40:89:2b:40:87:7a:d9:97:41:d7:69:cb: b9:4f:2b:6a:2c:36:a2:fc:54:c5:97:39:f0:26:37:ea:dc:ff: d8:08:b2:d6:68:5f:49:99:3e:88:fc:36:78:11:f1:ca:c9:7a: 59:60:0e:c6:b3:a5:a7:5d:c1:63:cb:6c:f5:63:c9:a9:51:29: 95:12:4e:8f:61:0b:71:01:1f:64:83:bb:c5:7d:f8:c0:2d:fa: 8c:82:cb:fa:19:f8:a6:66:0b:22:f2:09:90:02:3c:1b:2c:64: e7:d0:18:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwNjE4MTgzMDU4WhcNMjUwNjI1MTgzMDU4WjAYMRYwFAYD VQQDEw02ODUzMDVlMi04YjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYlOK7vZmTcdo9mCqAf2gXe8MW4Y8ahAWm9t4XaNPv/zV268aHb8gYhIsgX0 3gD7izFOyZQTKNryamrB8IVaziTSgSMAqHOFMeF/VstYjVB2x6TD8dq1a7ROHyA1 3bJ8TjsMdThypEMGvoc//brE03FHefYEvIA4xaL3AmMp3Ue1ILVd0pFxnq0bSQd4 tdWs60m/Ro81Ijqa/tnedCydJrq6Cj+nQ09AuBNDxhgFns7S69XNgyETi95ESFoY pv+YgPxsPWbGmlA9UJd+qlQIFjftOYZf29JfoZOGxVJ8QUeHT7TSyS54cdVGSuX2 3Djj2IIPgGxTdgVRh8vkMiNRoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq90pTf ajseAIQ8imncrzFIkxjBMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASwJ3l1GeEl+Vbv36vhokrt95VQAK6fQOPGyfW2PcZNJ5Ybx24iMD1 LNkOt/mpY+i9A1IdefkBSMjGe5UH37XGdrVNHbAPAkZ0MucfhXRTmJLRxEs4kbhV uqvMAbiGUrBd9rXJsh8aCE6iqhpauIUzio85lWMZK8SzGxH8UzLO11OHlJTPU0zg MFvr2/45fKoWU3V8gx9AiStAh3rZl0HXacu5TytqLDai/FTFlznwJjfq3P/YCLLW aF9JmT6I/DZ4EfHKyXpZYA7Gs6WnXcFjy2z1Y8mpUSmVEk6PYQtxAR9kg7vFffjA LfqMgsv6GfimZgsi8gmQAjwbLGTn0Bg8 -----END CERTIFICATE-----Generated at Thu Jun 19 07:58:25 2025 by rpki-client