$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 3egd77tPmV2T9T2fmCQxvfgsNmxezPOetYGHxyczTcQ= Subject key identifier: F1:55:AA:D5:AF:B6:F3:8C:00:6B:A9:E7:72:C2:70:65:47:50:AA:50 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C53 Signing time: Fri 22 Aug 2025 18:41:50 +0000 Manifest this update: Fri 22 Aug 2025 18:41:49 +0000 Manifest next update: Fri 29 Aug 2025 18:41:49 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: 5hG1demmAWecBT2+ijoh/Dw1Kpuq8y88h9cn1CRW7h0=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Aug 22 18:41:49 2025 GMT Not After : Aug 29 18:41:49 2025 GMT Subject: CN=68a8b9ee-2918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:13:65:3a:f1:ea:73:75:1e:21:ab:f2:e5:24: 58:08:36:26:e7:90:b6:92:6f:10:b0:0b:35:f6:b1: e2:e7:d8:38:03:63:07:d7:72:23:4e:91:55:81:b5: 8f:18:66:39:fb:91:e0:0d:e1:53:d4:3b:d3:47:c7: 17:2c:d6:1a:6e:6f:12:e5:1a:4e:3f:fd:f7:76:54: 75:3d:68:1e:1b:9a:c6:54:30:fd:36:f6:ae:a9:96: 06:aa:ff:65:80:68:69:5e:80:6e:b2:27:e7:ff:29: 4c:80:e4:5f:c7:a6:fc:24:a5:a8:2d:d5:75:4f:b9: 33:a3:bf:8f:9b:17:10:af:50:64:f3:89:e5:74:50: 5d:fe:e8:75:2c:27:e7:d4:d0:6a:33:f4:10:99:e1: e7:02:cf:a3:b6:0a:ff:c1:32:46:12:43:d8:85:37: 56:9c:99:03:b0:0e:9d:97:2f:38:09:44:77:5f:19: 04:8d:86:ec:83:3d:ec:1f:a7:c6:02:a8:a2:e5:b6: 01:0c:eb:31:28:7b:e6:c8:76:80:40:d9:a6:de:d0: 0e:66:9f:04:7f:bd:3f:b0:49:a6:7a:e8:41:ab:2f: 3b:95:36:b1:c0:3a:fc:21:ab:57:38:95:95:3a:cb: b4:fd:1d:e7:84:bc:6e:a3:94:12:35:b7:08:7f:11: 44:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:55:AA:D5:AF:B6:F3:8C:00:6B:A9:E7:72:C2:70:65:47:50:AA:50 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c6:75:03:dd:ad:03:17:18:db:e9:2e:86:0c:dd:ee:25:9e: 49:d2:cb:8b:ba:3b:6d:82:4c:9c:82:d7:43:84:86:5c:24:83: 8e:67:a7:1e:df:75:8c:a1:ab:e4:76:a6:af:93:08:dc:3f:69: be:90:ef:bd:9e:57:7c:85:65:d0:80:5f:23:ad:c5:c8:04:7d: c6:27:e2:4a:0d:70:84:e3:d0:99:7a:fc:cb:c2:09:32:92:90: 90:24:64:56:ba:98:65:dc:eb:b3:81:fc:4a:3b:ea:b5:37:6a: 2a:36:3c:e8:94:b2:d9:d1:da:15:02:d0:98:68:d1:fa:80:33: 7a:23:7a:c4:d4:f2:bc:be:f2:46:b2:2f:61:bf:f1:96:62:47: a6:13:85:c2:c1:58:53:96:ae:10:b7:c2:47:0f:33:fb:91:f2: f8:dc:e9:8e:fe:00:d4:d2:e5:0f:dd:5d:6b:83:57:df:b0:c8: bb:ff:1f:f9:1f:43:6f:ce:56:d8:51:d2:61:18:cb:73:fc:6c: ef:af:6f:34:4b:e0:e5:a6:30:b4:05:52:13:57:3b:55:3f:5a: 0f:70:3c:fc:a8:83:db:63:6d:7c:90:94:28:be:b2:a3:43:be: 73:b9:b9:24:37:25:80:54:f7:7b:cc:a6:b5:5d:e4:cd:b1:23: b3:10:63:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwODIyMTg0MTQ5WhcNMjUwODI5MTg0MTQ5WjAYMRYwFAYD VQQDEw02OGE4YjllZS0yOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BNlOvHqc3UeIavy5SRYCDYm55C2km8QsAs19rHi59g4A2MH13IjTpFVgbWP GGY5+5HgDeFT1DvTR8cXLNYabm8S5RpOP/33dlR1PWgeG5rGVDD9NvauqZYGqv9l gGhpXoBusifn/ylMgORfx6b8JKWoLdV1T7kzo7+PmxcQr1Bk84nldFBd/uh1LCfn 1NBqM/QQmeHnAs+jtgr/wTJGEkPYhTdWnJkDsA6dly84CUR3XxkEjYbsgz3sH6fG Aqii5bYBDOsxKHvmyHaAQNmm3tAOZp8Ef70/sEmmeuhBqy87lTaxwDr8IatXOJWV Osu0/R3nhLxuo5QSNbcIfxFEFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFVqtWv tvOMAGup53LCcGVHUKpQMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWxnUD3a0DFxjb6S6GDN3uJZ5J0suLujttgkycgtdDhIZcJIOOZ6ce 33WMoavkdqavkwjcP2m+kO+9nld8hWXQgF8jrcXIBH3GJ+JKDXCE49CZevzLwgky kpCQJGRWuphl3OuzgfxKO+q1N2oqNjzolLLZ0doVAtCYaNH6gDN6I3rE1PK8vvJG si9hv/GWYkemE4XCwVhTlq4Qt8JHDzP7kfL43OmO/gDU0uUP3V1rg1ffsMi7/x/5 H0NvzlbYUdJhGMtz/Gzvr280S+DlpjC0BVITVztVP1oPcDz8qIPbY218kJQovrKj Q75zubkkNyWAVPd7zKa1XeTNsSOzEGO9 -----END CERTIFICATE-----Generated at Sun Aug 24 00:03:09 2025 by rpki-client