$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: 5weW/AjdexmmqI5xVbiOgIvH7L72UDHkScC8D4Ta1wA= Subject key identifier: 18:85:5B:A7:93:3F:53:4B:48:56:D8:C0:09:BF:61:92:90:65:0F:A6 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 0186 Signing time: Fri 05 Sep 2025 03:54:52 +0000 Manifest this update: Fri 05 Sep 2025 03:54:52 +0000 Manifest next update: Fri 12 Sep 2025 03:54:52 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: arYpGyYuT+9RU08/fZaH4DQnY/PdyecWL9ESXKUdVX8=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Sep 5 03:54:52 2025 GMT Not After : Sep 12 03:54:52 2025 GMT Subject: CN=68ba5f0c-8ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:46:7f:21:a9:d8:74:d4:21:0c:0e:d3:c2:64: 36:57:b5:eb:19:ae:b4:f7:d2:ef:d0:50:4c:2c:72: 93:4a:2c:8b:8a:90:fa:a4:59:9c:94:b2:1b:56:de: f6:aa:33:f6:8c:8b:5e:42:5f:90:2e:4d:70:bd:5b: a3:3d:2c:0a:68:8b:5b:d1:78:ae:ee:f5:7b:64:dc: d0:b9:02:51:98:70:bc:c9:d6:64:93:0f:33:c8:9b: 56:d6:f5:ab:69:2a:32:eb:22:9a:13:95:6e:51:e6: 2d:eb:04:b6:63:f6:c1:15:8e:2e:40:e1:00:3b:1c: 30:e0:29:8d:bd:c8:e9:07:ef:aa:b4:2f:72:82:0a: 2f:a2:88:a3:45:7f:bc:68:fb:f6:9d:36:05:67:c9: c6:ac:4f:a7:56:54:52:63:f7:30:3a:d4:b9:e3:00: fe:d3:ec:d6:c6:c6:98:7b:57:7a:2a:7f:21:6e:23: 7d:b5:a5:6a:3a:5f:06:bc:3a:81:58:62:75:7b:b9: 42:bc:32:db:5d:3c:db:50:d4:d0:a7:58:48:dc:4b: e0:27:1e:2f:06:bd:ba:e4:8a:04:b1:fa:76:ea:7f: e9:ef:0a:40:12:cd:24:4a:ae:7d:98:b9:40:40:7c: e9:b1:cd:dd:f2:47:76:1f:7c:f2:5b:9b:53:2a:cb: 36:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:85:5B:A7:93:3F:53:4B:48:56:D8:C0:09:BF:61:92:90:65:0F:A6 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:09:e6:74:81:b4:39:5a:fa:21:0b:ac:47:95:d0:54:39:93: 43:bb:83:91:6c:5f:f7:d3:ea:07:25:51:38:2a:ba:5a:3d:66: 07:0e:21:b9:ea:3e:c1:d0:9f:d2:8a:2b:48:32:f5:be:7f:2c: 28:25:dc:87:9e:07:6b:4f:69:d4:48:21:ce:f7:8a:88:72:0e: c2:77:4f:7b:4c:a2:61:ac:48:9b:0c:58:84:5e:70:cc:c8:5f: c6:22:81:66:25:0c:06:4a:f2:45:85:a4:90:03:d1:61:7d:0d: e5:15:eb:cc:c1:ce:6a:c9:5f:d7:84:da:82:03:c8:ec:78:e0: b1:fc:9b:7a:ed:bb:25:f9:e5:7d:ed:80:45:52:22:dd:90:77: a8:8b:eb:3b:ec:c9:cf:9c:16:f8:10:7c:4e:fb:14:51:b8:a2: 1b:69:c5:63:f6:41:9e:0b:99:5c:68:7c:2d:44:aa:b1:83:ed: 3e:16:73:3d:19:02:c5:c1:f9:e9:ca:17:af:18:ad:de:86:ac: 61:17:e0:58:58:47:85:06:7a:50:96:84:73:61:12:c4:aa:c4: 25:6a:8a:10:87:e3:98:0d:a8:75:9a:5d:5e:2a:9d:dd:54:6f: 49:46:58:75:78:bf:78:1c:56:f8:73:4e:db:e9:2e:f1:d0:d2: c4:db:a5:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwOTA1MDM1NDUyWhcNMjUwOTEyMDM1NDUyWjAYMRYwFAYD VQQDEw02OGJhNWYwYy04ZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUZ/IanYdNQhDA7TwmQ2V7XrGa6099Lv0FBMLHKTSiyLipD6pFmclLIbVt72 qjP2jIteQl+QLk1wvVujPSwKaItb0Xiu7vV7ZNzQuQJRmHC8ydZkkw8zyJtW1vWr aSoy6yKaE5VuUeYt6wS2Y/bBFY4uQOEAOxww4CmNvcjpB++qtC9yggovooijRX+8 aPv2nTYFZ8nGrE+nVlRSY/cwOtS54wD+0+zWxsaYe1d6Kn8hbiN9taVqOl8GvDqB WGJ1e7lCvDLbXTzbUNTQp1hI3EvgJx4vBr265IoEsfp26n/p7wpAEs0kSq59mLlA QHzpsc3d8kd2H3zyW5tTKss2AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiFW6eT P1NLSFbYwAm/YZKQZQ+mMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgCeZ0gbQ5WvohC6xHldBUOZNDu4ORbF/30+oHJVE4KrpaPWYHDiG5 6j7B0J/SiitIMvW+fywoJdyHngdrT2nUSCHO94qIcg7Cd097TKJhrEibDFiEXnDM yF/GIoFmJQwGSvJFhaSQA9FhfQ3lFevMwc5qyV/XhNqCA8jseOCx/Jt67bsl+eV9 7YBFUiLdkHeoi+s77MnPnBb4EHxO+xRRuKIbacVj9kGeC5lcaHwtRKqxg+0+FnM9 GQLFwfnpyhevGK3ehqxhF+BYWEeFBnpQloRzYRLEqsQlaooQh+OYDah1ml1eKp3d VG9JRlh1eL94HFb4c07b6S7x0NLE26Wj -----END CERTIFICATE-----Generated at Sat Sep 6 13:26:46 2025 by rpki-client