$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: ycIpL+uJc3lm+0dv7GwvXnaf1KM0pE1zktXd+xl7HHU= Subject key identifier: B2:81:EE:04:B7:FD:55:65:B4:B0:3A:38:71:A3:50:48:78:98:D7:52 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 96 Signing time: Mon 21 Jul 2025 06:34:34 +0000 Manifest this update: Mon 21 Jul 2025 06:34:33 +0000 Manifest next update: Mon 28 Jul 2025 06:34:33 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: Pru4JPUu/dyPKO+BNOf4mq88MR4yQlwy4IbF8uYM2Xg=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Jul 21 06:34:33 2025 GMT Not After : Jul 28 06:34:33 2025 GMT Subject: CN=687ddf7a-6312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a8:bb:2d:5c:4b:61:63:a3:97:ff:cb:76:ca: 11:1f:9f:24:8c:27:70:4d:8e:44:6e:23:8b:95:6f: d3:e9:e7:e9:81:5c:fb:7c:fc:69:87:93:cb:68:67: c9:ec:11:05:ad:6a:71:2b:be:d7:95:3b:60:75:9e: b3:be:27:9c:ce:54:77:5f:07:74:23:7d:ae:76:ce: 37:65:00:0a:4f:25:02:e5:e1:cf:ed:74:c5:8b:7b: 89:eb:9e:f6:25:29:f2:fd:e2:c8:ae:7a:63:f3:4e: cf:da:c7:79:96:a2:a4:d6:69:eb:56:c3:9f:28:2d: 75:db:3c:8c:eb:48:9c:73:7f:34:44:56:87:1a:31: 0e:f8:c3:e9:aa:3e:b8:f6:4a:5f:e7:64:d7:ca:d9: c2:6d:da:f7:15:3c:e9:3a:68:4f:4e:69:02:d9:a9: 75:ae:c1:6c:5e:b3:ad:f1:c1:ed:c1:c2:8e:10:f1: 68:49:b9:46:16:c9:4a:b5:9f:41:be:ec:d9:8e:fc: c8:4a:ee:8d:d8:ae:ed:52:ae:69:b9:75:f1:3a:9d: 5f:15:b8:a8:34:28:86:5a:d9:23:1f:0b:3b:5d:49: b2:47:3a:09:11:88:ca:27:45:c3:d5:78:b4:32:87: 52:2a:f9:6a:d4:16:40:14:8a:22:d5:01:48:ed:5f: 06:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:81:EE:04:B7:FD:55:65:B4:B0:3A:38:71:A3:50:48:78:98:D7:52 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ad:76:74:a0:75:ac:cf:d8:fc:bb:f2:eb:2a:bf:71:c9:bb: 4a:14:1f:14:3f:a6:e5:f5:b4:27:4d:20:f9:2b:5c:dc:45:a9: d7:1b:a0:32:1f:f1:36:be:53:07:d5:69:9b:d1:97:60:1e:df: d6:55:b9:2b:86:e2:c1:83:77:ee:08:00:d0:28:ae:c7:f9:7a: a5:98:25:c2:bb:05:fd:f8:79:f5:d0:77:10:d0:e0:b5:3b:3b: 31:1d:a7:48:6d:ed:f9:35:66:45:0a:2f:f2:3b:51:9b:c2:e1: ed:dc:ea:28:88:bc:ab:99:cf:38:93:8f:b7:ee:d6:cf:5e:39: 77:5e:e8:95:a0:03:6d:a6:a5:99:38:37:d1:e4:31:08:26:70: ff:1d:eb:99:ba:ee:c6:d0:80:7d:8c:2d:c5:38:7a:1e:ad:cb: 5b:52:dd:35:0e:5c:a4:29:c0:3a:65:0e:13:7d:11:c5:02:32: a4:7a:43:f7:d4:f3:f8:cf:5e:78:5d:c6:eb:ed:5d:a5:1a:43: 95:c3:7a:86:23:15:c5:19:77:32:0c:05:3f:b8:24:97:51:aa: c3:e5:c6:c1:63:a8:2b:37:59:f9:79:ca:d6:ae:20:ca:32:4b: 55:77:85:48:b3:61:8a:37:ec:f4:25:ec:bd:f4:22:2c:b2:f5: 2a:1f:cc:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwNzIxMDYzNDMzWhcNMjUwNzI4MDYzNDMzWjAYMRYwFAYD VQQDEw02ODdkZGY3YS02MzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66i7LVxLYWOjl//LdsoRH58kjCdwTY5EbiOLlW/T6efpgVz7fPxph5PLaGfJ 7BEFrWpxK77XlTtgdZ6zvieczlR3Xwd0I32uds43ZQAKTyUC5eHP7XTFi3uJ6572 JSny/eLIrnpj807P2sd5lqKk1mnrVsOfKC112zyM60icc380RFaHGjEO+MPpqj64 9kpf52TXytnCbdr3FTzpOmhPTmkC2al1rsFsXrOt8cHtwcKOEPFoSblGFslKtZ9B vuzZjvzISu6N2K7tUq5puXXxOp1fFbioNCiGWtkjHws7XUmyRzoJEYjKJ0XD1Xi0 ModSKvlq1BZAFIoi1QFI7V8GWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKB7gS3 /VVltLA6OHGjUEh4mNdSMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvrXZ0oHWsz9j8u/LrKr9xybtKFB8UP6bl9bQnTSD5K1zcRanXG6Ay H/E2vlMH1Wmb0ZdgHt/WVbkrhuLBg3fuCADQKK7H+XqlmCXCuwX9+Hn10HcQ0OC1 OzsxHadIbe35NWZFCi/yO1GbwuHt3OooiLyrmc84k4+37tbPXjl3XuiVoANtpqWZ ODfR5DEIJnD/HeuZuu7G0IB9jC3FOHoerctbUt01DlykKcA6ZQ4TfRHFAjKkekP3 1PP4z154Xcbr7V2lGkOVw3qGIxXFGXcyDAU/uCSXUarD5cbBY6grN1n5ecrWriDK MktVd4VIs2GKN+z0Jey99CIssvUqH8wT -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:16 2025 by rpki-client