$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft File: pAislKDTNvRzJJBakYrySQLw3os.mft (raw, json) Hash identifier: C8VZ8vw8UE5O/Uf/0ftAS2wdvCqX05nd0fHJtc8pK2A= Subject key identifier: 3E:73:9F:A2:3F:D9:A0:7A:0E:6D:81:3E:31:2C:8C:86:21:D1:F9:9A Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft Manifest number: 0167 Signing time: Thu 11 Sep 2025 04:30:11 +0000 Manifest this update: Thu 11 Sep 2025 04:30:11 +0000 Manifest next update: Thu 18 Sep 2025 04:30:11 +0000 Files and hashes: 1: pAislKDTNvRzJJBakYrySQLw3os.crl (hash: DIBxy85t27TMyAtTgBCa9aYd/X/rkECou9CNalmIHx0=) 2: 62258D42C93A11EEA1A4CA4FC4F9AE02.roa (hash: TLDnWAlNl4+LlNPMq6EhX78RX8oFwqpDV+CE22BbZbE=) 3: 31A1996898F711EEB7B27877C4F9AE02.roa (hash: inpneUp76nQQX6Q/CpN1dgRfEj/8zpxJb6ddO35TdAM=) 4: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (hash: jax3qkALNRFMNrAOXKyN2WiovYFpDRlk86jOWinHUwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Sep 11 04:30:11 2025 GMT Not After : Sep 18 04:30:11 2025 GMT Subject: CN=68c25053-fae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f7:86:a2:df:ff:25:92:e8:74:09:0e:4e:bc: e2:7a:07:95:a0:70:1f:46:cc:c8:19:fa:2f:61:f4: 8b:24:95:a9:ba:e4:7b:9a:90:34:dd:4f:e3:28:08: d5:4a:9a:f0:6a:b5:21:6f:10:35:ba:a2:91:35:fe: 4a:e7:86:46:30:b6:42:92:2a:ba:40:91:59:89:a8: 2e:e1:6d:9b:05:52:18:2f:09:a2:e5:44:f2:07:ad: be:0b:3c:24:ec:9a:35:24:56:fc:c0:ce:53:8f:9b: 42:5e:a5:a4:ee:f4:ec:e2:d4:59:5a:21:b9:a0:bb: 82:b2:00:8d:5c:17:0e:81:52:91:ba:b1:0a:18:a7: bf:48:b5:98:47:b5:e5:40:1c:a2:2d:8e:78:45:58: d4:66:2e:ae:58:12:85:a9:74:ac:ce:40:b8:fb:99: c0:8c:23:a6:df:33:37:40:18:dd:db:29:ef:77:39: e4:41:a5:fe:01:4d:22:b4:bc:b5:f1:d2:80:f8:6a: 57:82:97:36:f6:0f:2b:36:77:a0:4c:24:a8:1b:bb: d3:6e:38:65:11:04:1f:68:e4:b6:e5:26:0f:47:09: 93:99:9c:89:4f:0e:bd:03:f7:19:a3:c5:1c:f8:12: ee:ac:a0:2f:6d:d1:02:f3:f9:1b:82:fe:3d:bf:62: 24:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:73:9F:A2:3F:D9:A0:7A:0E:6D:81:3E:31:2C:8C:86:21:D1:F9:9A X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b0:e2:24:88:7f:54:b5:d5:b4:6b:12:13:87:35:73:c6:22: 1a:33:79:c3:4e:c3:89:88:3d:90:97:1e:4e:90:01:39:fd:cd: 2c:39:46:ac:ca:37:80:fa:05:26:a9:67:e2:23:de:48:1c:8a: 09:2a:ef:6c:40:24:77:29:8c:03:b1:e3:a6:c7:3f:33:4a:41: f5:c6:f8:37:83:0f:d4:f0:f2:b8:03:9e:ec:34:c1:fa:7c:d3: 3a:83:31:ff:47:4f:09:94:81:20:b0:56:64:da:57:3c:3b:e2: ea:d3:80:62:b5:51:96:2d:fb:60:fd:1b:a8:7c:1a:c7:ee:99: 51:bc:9a:a5:e5:52:9c:90:16:c4:a2:93:ee:a8:7d:8e:28:c2: 69:05:0c:11:15:4b:26:ed:98:53:b4:2b:3d:9d:43:d5:90:d6: 5a:f4:0e:eb:d5:9f:dd:32:6a:af:18:e6:05:aa:67:bd:03:ce: 17:83:38:86:02:fc:c9:d7:df:63:06:b7:35:5b:ff:72:6a:43: 13:1b:46:89:fb:49:26:b9:0a:ab:95:bb:3e:94:10:48:6b:cf: af:c8:e7:5a:9f:4e:44:6e:43:28:d5:35:b0:20:34:55:33:30: 29:cb:5f:8c:70:45:63:99:2e:a2:62:96:2b:58:fb:fc:4e:5c: 62:86:d1:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjUwOTExMDQzMDExWhcNMjUwOTE4MDQzMDExWjAYMRYwFAYD VQQDEw02OGMyNTA1My1mYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfeGot//JZLodAkOTrziegeVoHAfRszIGfovYfSLJJWpuuR7mpA03U/jKAjV SprwarUhbxA1uqKRNf5K54ZGMLZCkiq6QJFZiagu4W2bBVIYLwmi5UTyB62+Czwk 7Jo1JFb8wM5Tj5tCXqWk7vTs4tRZWiG5oLuCsgCNXBcOgVKRurEKGKe/SLWYR7Xl QByiLY54RVjUZi6uWBKFqXSszkC4+5nAjCOm3zM3QBjd2ynvdznkQaX+AU0itLy1 8dKA+GpXgpc29g8rNnegTCSoG7vTbjhlEQQfaOS25SYPRwmTmZyJTw69A/cZo8Uc +BLurKAvbdEC8/kbgv49v2IkaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5zn6I/ 2aB6Dm2BPjEsjIYh0fmaMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52 UnpKSkJha1lyeVNRTHczb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisOIkiH9UtdW0axIThzVzxiIaM3nDTsOJiD2Qlx5OkAE5/c0sOUas yjeA+gUmqWfiI95IHIoJKu9sQCR3KYwDseOmxz8zSkH1xvg3gw/U8PK4A57sNMH6 fNM6gzH/R08JlIEgsFZk2lc8O+Lq04BitVGWLftg/RuofBrH7plRvJql5VKckBbE opPuqH2OKMJpBQwRFUsm7ZhTtCs9nUPVkNZa9A7r1Z/dMmqvGOYFqme9A84XgziG AvzJ199jBrc1W/9yakMTG0aJ+0kmuQqrlbs+lBBIa8+vyOdan05EbkMo1TWwIDRV MzApy1+McEVjmS6iYpYrWPv8TlxihtGl -----END CERTIFICATE-----Generated at Thu Sep 11 11:43:11 2025 by rpki-client