$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 7ywFFDyA4jOcnlejgp4mV0CJ3C1bsXgdv7ACX5KJmSc= Subject key identifier: 37:63:4B:EA:1C:0C:42:75:0F:FB:F9:76:9F:4C:7E:7E:53:EA:F2:71 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C4C Signing time: Fri 08 Aug 2025 18:49:16 +0000 Manifest this update: Fri 08 Aug 2025 18:49:15 +0000 Manifest next update: Fri 15 Aug 2025 18:49:15 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: 5MgG6Q5dn2cGPdAED0F1+6VWLWS4mHs7Irg1ZG80IJg=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Aug 8 18:49:15 2025 GMT Not After : Aug 15 18:49:15 2025 GMT Subject: CN=689646ac-74c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8f:ab:eb:3c:21:0d:1f:10:1e:8b:18:88:f0: ad:7e:5e:20:76:00:48:e5:42:c7:0e:44:72:c6:d4: d0:78:98:3d:da:2f:31:39:f7:3f:bb:d5:99:93:63: 68:34:f9:aa:77:8b:7b:f2:72:aa:0a:54:2d:35:cf: b1:86:68:41:88:cd:43:9c:48:47:82:86:70:c5:8b: 7c:70:9e:aa:20:89:81:fe:8d:7a:58:36:02:84:f2: dc:d6:81:7d:a0:1f:97:61:37:0b:a9:cb:31:19:30: 4a:ee:e6:96:ba:a8:a6:09:0e:19:0e:e2:b1:71:4b: 4c:dd:13:68:b9:f2:33:52:4d:32:5f:54:48:cb:8e: 0b:0a:72:86:a2:dd:4d:ca:68:1f:1e:3d:12:82:85: 01:55:46:60:35:cc:3b:48:23:19:e6:44:95:20:83: 1f:52:3d:07:f4:6e:78:8f:e8:3c:c0:68:42:94:0f: 86:c8:8d:14:0c:a7:78:90:41:76:ea:1e:39:ed:b0: 56:db:25:ac:5b:1c:bd:0a:f5:3a:7b:03:44:0e:0e: 8a:ee:e1:d7:c6:20:b9:c4:85:b4:12:08:37:56:1b: 68:1d:87:fe:c4:b6:6a:96:4b:78:95:45:01:a2:dc: 8b:b7:9f:c6:10:6e:24:6f:c8:ca:16:22:23:c4:d4: 2c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:63:4B:EA:1C:0C:42:75:0F:FB:F9:76:9F:4C:7E:7E:53:EA:F2:71 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e4:09:c1:42:23:56:09:10:31:f9:f9:ee:55:27:52:70:47: db:b8:2c:99:cf:0c:fb:23:57:b6:4f:4a:f2:bd:f2:8a:f3:08: d0:02:63:8a:5e:dd:12:9c:f3:6f:70:3e:c9:35:8c:91:d8:b0: f3:a4:dd:a4:af:12:b2:5f:d7:19:25:80:c1:22:9a:30:35:37: 1a:65:8e:ff:46:ec:fa:e2:24:ca:e3:67:fa:9d:32:72:98:47: 95:5a:28:71:23:67:82:bf:93:0a:29:fd:71:a2:20:55:f1:a6: 94:c8:72:24:8a:a3:62:72:a7:cf:87:c7:6d:f0:11:89:8e:11: 7a:70:dc:8d:e5:73:8f:75:04:c3:d3:55:50:ef:21:fe:4e:dc: 52:c9:b9:00:96:9d:b9:8a:3b:ec:42:c6:52:6c:98:16:41:ad: f8:d6:73:9d:19:c7:5f:b9:4e:a0:a7:99:fc:5f:6e:39:94:38: c8:ec:f1:dc:c3:68:66:6f:d9:0e:74:d7:15:92:7d:a7:97:06: 9c:58:7d:18:44:57:6d:43:75:7a:d6:e5:35:39:33:a7:9c:fd: 45:a8:71:4a:cd:48:7b:3a:97:1e:b3:d0:4c:9e:18:0f:eb:bb: e3:4c:60:ab:ed:dc:04:5f:86:76:8e:da:b1:d6:83:46:43:cf: 5f:ac:69:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwODA4MTg0OTE1WhcNMjUwODE1MTg0OTE1WjAYMRYwFAYD VQQDEw02ODk2NDZhYy03NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o+r6zwhDR8QHosYiPCtfl4gdgBI5ULHDkRyxtTQeJg92i8xOfc/u9WZk2No NPmqd4t78nKqClQtNc+xhmhBiM1DnEhHgoZwxYt8cJ6qIImB/o16WDYChPLc1oF9 oB+XYTcLqcsxGTBK7uaWuqimCQ4ZDuKxcUtM3RNoufIzUk0yX1RIy44LCnKGot1N ymgfHj0SgoUBVUZgNcw7SCMZ5kSVIIMfUj0H9G54j+g8wGhClA+GyI0UDKd4kEF2 6h457bBW2yWsWxy9CvU6ewNEDg6K7uHXxiC5xIW0Egg3VhtoHYf+xLZqlkt4lUUB otyLt5/GEG4kb8jKFiIjxNQsCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdjS+oc DEJ1D/v5dp9Mfn5T6vJxMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK5AnBQiNWCRAx+fnuVSdScEfbuCyZzwz7I1e2T0ryvfKK8wjQAmOK Xt0SnPNvcD7JNYyR2LDzpN2krxKyX9cZJYDBIpowNTcaZY7/Ruz64iTK42f6nTJy mEeVWihxI2eCv5MKKf1xoiBV8aaUyHIkiqNicqfPh8dt8BGJjhF6cNyN5XOPdQTD 01VQ7yH+TtxSybkAlp25ijvsQsZSbJgWQa341nOdGcdfuU6gp5n8X245lDjI7PHc w2hmb9kOdNcVkn2nlwacWH0YRFdtQ3V61uU1OTOnnP1FqHFKzUh7Opces9BMnhgP 67vjTGCr7dwEX4Z2jtqx1oNGQ89frGn1 -----END CERTIFICATE-----Generated at Sat Aug 9 10:43:17 2025 by rpki-client