$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: ClKEEzeFG1jV5CnNG+I6N5k7q+zgopjld+7rGwQYyTQ= Subject key identifier: 82:AC:39:C6:EA:B5:49:65:72:92:CB:08:5A:C1:07:9D:D3:A7:F5:97 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: AE Signing time: Fri 05 Sep 2025 06:32:56 +0000 Manifest this update: Fri 05 Sep 2025 06:32:55 +0000 Manifest next update: Fri 12 Sep 2025 06:32:55 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: x0wPnTrtVd+/8JVXksVBMdjqgUjsPmSV5qG8ZqbDB+0=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Sep 5 06:32:55 2025 GMT Not After : Sep 12 06:32:55 2025 GMT Subject: CN=68ba8418-d31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:93:b1:cc:57:53:5b:7c:6a:67:27:a5:09: 21:78:cf:35:af:60:aa:60:35:74:63:10:b6:5b:75: d3:05:a0:e3:b7:60:9d:dd:0e:84:da:e9:ea:8f:ad: 86:35:f3:00:e1:11:08:f1:a0:c4:1f:e0:7e:e5:ea: b5:eb:33:cd:e3:fb:8a:9a:06:3a:a9:96:18:13:52: f8:87:f1:fa:bc:97:70:4b:9e:cf:df:48:c1:de:f8: 6d:f0:e7:b0:d5:40:e5:ae:c4:2f:81:b9:be:8c:27: 0a:a5:87:a9:b8:1e:2a:7b:da:d3:42:53:23:e4:cd: a3:a6:9f:b3:9d:c0:2a:5c:8c:23:7a:5c:d6:4f:8d: f2:43:c9:16:ad:cb:c5:87:80:dc:d7:ee:b7:ef:75: b7:49:5c:df:b4:12:11:78:39:e9:1f:0f:ab:06:0c: 5d:a0:51:d6:9f:ca:d6:c3:85:29:8c:12:2a:92:8f: 24:09:a4:f6:25:64:7a:73:45:99:47:c7:75:3c:90: 88:2a:d2:0b:5d:36:1b:9f:42:95:40:28:bf:92:64: dd:ca:0e:5f:45:97:aa:e1:5d:36:c3:f8:fc:3f:02: 81:61:24:0c:a2:b6:d6:fe:9f:d4:70:0f:80:41:04: 34:2d:cc:48:79:fd:4e:5a:4d:c7:b4:09:a9:6c:80: 44:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AC:39:C6:EA:B5:49:65:72:92:CB:08:5A:C1:07:9D:D3:A7:F5:97 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:d3:ce:97:15:57:a2:ac:44:13:2b:e5:d5:32:47:10:b8:54: 06:65:b7:aa:2e:18:10:8e:21:48:b3:f9:6d:38:e6:c0:f7:c3: 95:d2:9b:ec:f6:05:64:5f:d9:de:b1:2d:86:34:23:55:60:18: 84:bd:89:91:34:db:d7:6d:bc:35:2f:88:cd:3c:33:cf:cc:f3: 3d:68:bd:b8:95:94:85:b0:02:d8:cf:fe:ed:55:1f:d0:05:b5: 73:1c:4a:78:5d:cc:eb:10:1c:ad:c6:1b:da:36:d9:32:1d:86: 7e:a2:8c:1e:8e:33:a3:e7:2b:e1:fb:db:64:82:12:d9:e2:41: e1:69:d2:87:b0:4d:8b:f7:fd:46:68:68:da:19:5f:36:55:e8: 4c:a2:d1:a5:cb:fb:70:56:b6:b7:60:71:cc:93:90:24:d7:be: 6f:f0:5f:5f:ba:e8:3d:f0:92:87:67:cc:23:4f:b7:17:eb:14: 0f:a6:f9:c2:3c:86:9c:da:56:10:7f:61:83:b4:79:18:eb:85: 6e:6d:0e:c9:3b:d6:b4:9b:a6:bf:ca:60:33:2a:8b:fd:e3:b3: e1:de:3e:88:62:e8:92:48:ad:43:b7:eb:1c:40:94:58:55:25: e4:df:b9:70:51:55:08:8c:5c:7c:fe:f3:bb:4c:a8:3c:2f:de: d5:42:b5:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwOTA1MDYzMjU1WhcNMjUwOTEyMDYzMjU1WjAYMRYwFAYD VQQDEw02OGJhODQxOC1kMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIaTscxXU1t8amcnpQkheM81r2CqYDV0YxC2W3XTBaDjt2Cd3Q6E2unqj62G NfMA4REI8aDEH+B+5eq16zPN4/uKmgY6qZYYE1L4h/H6vJdwS57P30jB3vht8Oew 1UDlrsQvgbm+jCcKpYepuB4qe9rTQlMj5M2jpp+zncAqXIwjelzWT43yQ8kWrcvF h4Dc1+6373W3SVzftBIReDnpHw+rBgxdoFHWn8rWw4UpjBIqko8kCaT2JWR6c0WZ R8d1PJCIKtILXTYbn0KVQCi/kmTdyg5fRZeq4V02w/j8PwKBYSQMorbW/p/UcA+A QQQ0LcxIef1OWk3HtAmpbIBEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKsOcbq tUllcpLLCFrBB53Tp/WXMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1086XFVeirEQTK+XVMkcQuFQGZbeqLhgQjiFIs/ltOObA98OV0pvs 9gVkX9nesS2GNCNVYBiEvYmRNNvXbbw1L4jNPDPPzPM9aL24lZSFsALYz/7tVR/Q BbVzHEp4XczrEBytxhvaNtkyHYZ+oowejjOj5yvh+9tkghLZ4kHhadKHsE2L9/1G aGjaGV82VehMotGly/twVra3YHHMk5Ak175v8F9fuug98JKHZ8wjT7cX6xQPpvnC PIac2lYQf2GDtHkY64VubQ7JO9a0m6a/ymAzKov947Ph3j6IYuiSSK1Dt+scQJRY VSXk37lwUVUIjFx8/vO7TKg8L97VQrXd -----END CERTIFICATE-----Generated at Sat Sep 6 20:53:02 2025 by rpki-client