$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: eL1AyCdmNcUU3U41QQS4NJNvrgxRqH5Xrl22m0vY7dI= Subject key identifier: 88:4A:1C:33:EC:BA:36:14:EB:8F:1E:95:45:B5:9A:8C:52:81:B7:98 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C35 Signing time: Wed 02 Jul 2025 18:50:37 +0000 Manifest this update: Wed 02 Jul 2025 18:50:36 +0000 Manifest next update: Wed 09 Jul 2025 18:50:36 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: dimbpqF7Jxwy1QtRz+Yy0QCVDL7YYnJJJ+sZ3fBK8bY=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: I/1YYRZufm+Qc/8Hh8/4oZUCrPLEFvhM/LrJmE0hiuA=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: 1RZU0spXmvxzBxOJllCgbla9KxLkGAPl5bLUojUqNcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jul 2 18:50:36 2025 GMT Not After : Jul 9 18:50:36 2025 GMT Subject: CN=68657f7d-c66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:be:7c:9b:60:0d:c5:93:0b:99:20:c5:39:1a: e1:21:68:02:ce:40:c9:e6:88:20:fc:ee:7b:6a:b8: 87:77:04:74:5c:cc:c7:2c:69:3b:6b:de:f4:56:05: f3:77:bc:4a:8a:12:55:4e:d5:18:c8:14:81:0b:be: b1:46:32:13:ba:d2:bd:49:37:b9:7c:9a:e9:70:54: c6:55:c5:30:be:2e:1a:88:2d:3c:9c:26:30:84:49: cc:5f:c0:94:31:7f:f5:74:35:7e:40:fe:b2:0f:d9: 6d:a2:b1:1f:53:ff:2b:c9:7b:e7:92:ab:ee:9f:ba: 67:7f:3f:5c:90:0b:c4:7a:3c:e5:18:aa:a3:78:9f: bf:16:81:4a:26:60:c9:96:7b:f9:c2:b4:ef:7b:68: 04:5c:64:b9:a2:a8:cb:70:34:3b:d1:00:02:c8:74: a2:36:60:ec:38:27:94:2a:68:01:81:2f:52:68:60: 99:b3:76:e6:8e:8b:71:79:80:24:95:b5:58:5e:94: 17:b0:1d:5e:de:86:28:cd:c3:df:68:25:13:72:a3: f9:3f:e9:3b:08:02:b6:68:f0:63:9f:43:2f:3e:e6: 52:f4:f3:c5:a8:a1:e9:09:13:08:da:f9:62:7c:f4: 51:44:69:c1:85:fa:6b:0c:d6:9f:34:19:c4:7c:86: e7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4A:1C:33:EC:BA:36:14:EB:8F:1E:95:45:B5:9A:8C:52:81:B7:98 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:de:af:ad:4d:16:3b:f5:3b:ae:22:bf:f4:9e:91:01:99:da: e1:79:b2:50:d5:e4:10:b8:a8:96:57:82:e0:d8:39:67:bc:fa: 7c:0c:fd:72:ae:2e:7b:ab:08:4b:6e:27:db:24:6c:22:a0:05: 83:0c:60:91:10:49:e3:aa:c6:4c:f3:11:d8:17:02:60:0f:7a: d1:fc:d7:63:87:6e:59:07:07:c4:e7:8f:ef:56:66:16:16:43: ca:53:0a:96:1f:b2:93:2f:60:63:b8:61:65:f6:dc:e1:23:b8: 20:29:8a:33:1c:58:fb:50:cf:60:ca:50:9f:53:02:1a:08:e5: 0f:e5:4f:92:9e:67:ad:a7:92:4e:19:97:47:c8:66:83:7b:58: d3:74:99:26:3e:5f:63:fd:d1:3b:27:08:1f:ec:13:d5:7b:a9: c7:3e:4e:cd:04:f3:1e:92:60:24:d6:1b:8f:29:ad:d7:2e:bd: d1:68:44:48:03:57:90:47:ff:7d:81:e8:46:5a:b6:3b:72:19: f0:90:5a:19:44:1d:f5:78:99:a0:0b:0b:d2:40:90:ef:78:73: 21:51:83:b5:46:3c:13:d7:d1:48:c0:71:e7:6b:16:ca:2d:0c: 8d:18:a4:95:65:5a:a8:93:be:e4:52:90:4a:38:e5:82:ed:f3: 1e:0a:bd:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwNzAyMTg1MDM2WhcNMjUwNzA5MTg1MDM2WjAYMRYwFAYD VQQDEw02ODY1N2Y3ZC1jNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL58m2ANxZMLmSDFORrhIWgCzkDJ5ogg/O57ariHdwR0XMzHLGk7a970VgXz d7xKihJVTtUYyBSBC76xRjITutK9STe5fJrpcFTGVcUwvi4aiC08nCYwhEnMX8CU MX/1dDV+QP6yD9ltorEfU/8ryXvnkqvun7pnfz9ckAvEejzlGKqjeJ+/FoFKJmDJ lnv5wrTve2gEXGS5oqjLcDQ70QACyHSiNmDsOCeUKmgBgS9SaGCZs3bmjotxeYAk lbVYXpQXsB1e3oYozcPfaCUTcqP5P+k7CAK2aPBjn0MvPuZS9PPFqKHpCRMI2vli fPRRRGnBhfprDNafNBnEfIbneQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhKHDPs ujYU648elUW1moxSgbeYMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA93q+tTRY79TuuIr/0npEBmdrhebJQ1eQQuKiWV4Lg2DlnvPp8DP1y ri57qwhLbifbJGwioAWDDGCREEnjqsZM8xHYFwJgD3rR/Ndjh25ZBwfE54/vVmYW FkPKUwqWH7KTL2BjuGFl9tzhI7ggKYozHFj7UM9gylCfUwIaCOUP5U+Snmetp5JO GZdHyGaDe1jTdJkmPl9j/dE7Jwgf7BPVe6nHPk7NBPMekmAk1huPKa3XLr3RaERI A1eQR/99gehGWrY7chnwkFoZRB31eJmgCwvSQJDveHMhUYO1RjwT19FIwHHnaxbK LQyNGKSVZVqok77kUpBKOOWC7fMeCr17 -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:52 2025 by rpki-client