$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: CR23QH6C3TTiY7k9CTibzCfil0Opz9DR6vu8ro7+7yg= Subject key identifier: 7F:5B:7E:23:6A:A2:A1:D9:F4:8F:77:33:0B:9A:3D:0C:B6:DE:F4:92 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 019C Signing time: Sun 19 Oct 2025 05:54:44 +0000 Manifest this update: Sun 19 Oct 2025 05:54:43 +0000 Manifest next update: Sun 26 Oct 2025 05:54:43 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: 0c8R/wH8QgilssJ7glKyZG6S+BXK30YlImH/2q6WAFQ=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Oct 19 05:54:43 2025 GMT Not After : Oct 26 05:54:43 2025 GMT Subject: CN=68f47d24-97bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:71:54:16:73:db:f6:97:19:fe:2a:ed:01:31: c2:b9:85:42:a0:6c:0b:b6:97:65:af:87:a1:28:f0: c4:f9:fc:56:e3:57:58:dd:db:41:86:b0:83:45:11: 65:52:01:78:ab:e9:bb:10:c2:11:71:80:99:a4:2f: 66:5e:dc:b8:05:1a:7f:d0:b4:2c:d4:a1:6d:a5:ef: b7:d7:c7:9a:85:c8:75:78:b3:dd:60:5c:fe:d2:d2: 5a:c7:c0:b0:0b:d9:72:23:14:d2:43:3f:73:53:38: 54:de:2b:33:ef:ed:67:f3:cc:eb:c1:6e:a0:3d:3e: e3:5f:8e:fb:77:36:21:93:53:96:17:fd:d2:fb:7e: e2:0d:17:e6:9f:46:3f:8f:90:82:da:0d:ab:ca:e4: 1e:8a:57:9f:57:f4:69:17:25:3d:32:0e:e9:54:57: be:a9:f4:8d:dd:db:b7:f3:46:6f:33:01:13:5e:2f: 3d:ac:fa:3d:b3:d0:f9:d9:3f:e4:f9:cd:2c:75:ce: 4d:b9:7c:7b:f8:0a:92:1e:57:5d:8e:a4:e6:f0:97: 17:4b:60:07:92:42:be:85:ad:0a:55:e0:1c:80:18: 54:c9:1f:35:7b:97:10:75:4f:6d:91:22:36:e6:24: ff:47:72:22:ae:94:34:96:a6:a5:c0:8e:f3:81:a5: c9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5B:7E:23:6A:A2:A1:D9:F4:8F:77:33:0B:9A:3D:0C:B6:DE:F4:92 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:39:4c:a1:1c:da:19:dc:e5:d9:ab:43:3a:1d:05:5c:f4:07: 08:c0:4c:7e:b2:78:5d:56:9b:6d:d6:60:98:5f:45:d7:d5:9d: d1:fa:71:94:fc:cb:62:c2:a1:2d:36:c3:d2:61:e5:63:37:57: 7d:7d:13:aa:ce:7f:dc:13:85:ae:27:21:db:b1:44:c1:3f:0c: 6b:91:d0:a6:b9:23:11:22:c4:4c:8c:26:9d:73:ef:5c:8d:d6: 91:af:c2:d5:f2:ba:9d:d4:be:f9:c3:bb:af:22:d5:8d:e8:1d: d3:6a:21:8a:11:49:1d:fe:aa:de:3a:00:c3:7c:d7:89:f3:c2: ce:7b:eb:90:fb:69:7d:cf:9f:dd:22:a1:5a:89:db:1d:43:4e: d9:53:14:4a:02:e6:ef:9c:a2:ac:0a:b6:a4:9b:b8:73:56:6b: 48:54:37:4c:5f:e5:59:0f:8b:49:1b:a6:07:60:ad:28:3f:23: f8:bd:82:30:95:29:76:17:f5:91:88:71:0f:ec:0f:22:8a:fa: fd:2b:a4:38:94:b1:85:4f:b0:56:83:18:b9:b3:8f:b1:c9:23: 36:45:f4:99:29:b3:47:75:30:fc:a5:68:1d:dd:23:73:86:bc: 10:ad:5f:16:07:ae:ea:d3:b4:fb:77:dc:1c:0e:80:02:00:8b: 5b:ea:8d:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUxMDE5MDU1NDQzWhcNMjUxMDI2MDU1NDQzWjAYMRYwFAYD VQQDEw02OGY0N2QyNC05N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03FUFnPb9pcZ/irtATHCuYVCoGwLtpdlr4ehKPDE+fxW41dY3dtBhrCDRRFl UgF4q+m7EMIRcYCZpC9mXty4BRp/0LQs1KFtpe+318eahch1eLPdYFz+0tJax8Cw C9lyIxTSQz9zUzhU3isz7+1n88zrwW6gPT7jX477dzYhk1OWF/3S+37iDRfmn0Y/ j5CC2g2ryuQeilefV/RpFyU9Mg7pVFe+qfSN3du380ZvMwETXi89rPo9s9D52T/k +c0sdc5NuXx7+AqSHlddjqTm8JcXS2AHkkK+ha0KVeAcgBhUyR81e5cQdU9tkSI2 5iT/R3IirpQ0lqalwI7zgaXJlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9bfiNq oqHZ9I93MwuaPQy23vSSMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAOUyhHNoZ3OXZq0M6HQVc9AcIwEx+snhdVptt1mCYX0XX1Z3R+nGU /MtiwqEtNsPSYeVjN1d9fROqzn/cE4WuJyHbsUTBPwxrkdCmuSMRIsRMjCadc+9c jdaRr8LV8rqd1L75w7uvItWN6B3TaiGKEUkd/qreOgDDfNeJ88LOe+uQ+2l9z5/d IqFaidsdQ07ZUxRKAubvnKKsCrakm7hzVmtIVDdMX+VZD4tJG6YHYK0oPyP4vYIw lSl2F/WRiHEP7A8iivr9K6Q4lLGFT7BWgxi5s4+xySM2RfSZKbNHdTD8pWgd3SNz hrwQrV8WB67q07T7d9wcDoACAItb6o25 -----END CERTIFICATE-----Generated at Tue Oct 21 00:25:46 2025 by rpki-client