$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: SZpfZWUxZ6ppnHSl41YSVblZZYo1jaXQ7A+yuNqliY4= Subject key identifier: 04:99:74:43:7D:1C:77:A6:1C:95:27:8A:BE:9D:41:16:DC:72:1E:5F Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 017F Signing time: Sat 23 Aug 2025 03:46:52 +0000 Manifest this update: Sat 23 Aug 2025 03:46:52 +0000 Manifest next update: Sat 30 Aug 2025 03:46:52 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: ip1KpBrsvyHYrbFKw5K/fICMUDqSSGzgJEGj5xyeyrY=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Aug 23 03:46:52 2025 GMT Not After : Aug 30 03:46:52 2025 GMT Subject: CN=68a939ac-be8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:46:d1:dd:91:5b:a7:ed:1a:14:05:e6:8e: ef:c6:39:15:ee:66:9a:bd:ce:43:a2:3b:e4:2f:80: 88:96:b5:78:a6:40:0a:7f:26:bf:1f:fe:50:d3:40: f9:ab:12:a3:21:bd:4f:aa:f3:8a:cd:ab:79:78:21: 2c:1d:9d:63:80:ee:c2:4e:43:a6:19:f8:b5:e7:dc: 1e:e9:01:92:e0:5b:fc:38:4d:49:97:30:0a:5e:73: 6c:05:bd:cc:18:63:8c:dd:ce:81:b0:f9:35:fd:10: 6b:04:48:a4:7b:f7:80:a4:a4:e9:5e:c9:ac:8c:92: 02:4d:75:09:eb:d4:86:a9:3b:2d:46:2b:3b:67:cf: bc:86:22:d3:59:d5:59:da:1b:ee:0a:8a:96:ab:24: 3a:30:d2:fc:25:4d:8a:76:10:1e:da:62:5f:0c:00: f1:59:95:50:7e:07:35:2d:c2:9a:05:e3:6b:a6:95: 88:4b:6f:2f:7c:2c:bb:b1:67:b1:fe:c0:0f:f3:c7: dd:e9:25:39:37:dc:60:a9:7d:d0:83:e1:f9:49:8e: 40:9b:21:21:9c:3f:30:f4:3c:83:6d:f0:f9:dd:2b: f4:d4:9e:12:d3:3c:55:b6:75:50:50:fd:1b:0d:7f: 30:83:09:7e:28:a5:ee:e0:f5:8b:33:8f:54:95:f8: f7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:99:74:43:7D:1C:77:A6:1C:95:27:8A:BE:9D:41:16:DC:72:1E:5F X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c0:7c:11:05:64:a9:54:17:d2:39:d7:d7:c4:cb:c3:61:e7: cc:69:c2:11:99:c2:e5:c3:bd:b0:17:eb:96:9f:60:6a:1d:1d: 58:c4:88:d6:74:4b:e9:e9:e6:a9:d4:8f:65:92:bb:55:90:92: c4:5e:18:50:3b:b4:8f:35:90:c9:f2:5e:5f:7e:dc:d3:dc:db: 2e:bb:1f:53:34:48:a1:ae:3a:16:73:7f:24:90:69:35:ce:cf: 62:a1:d3:fa:de:93:a9:9a:93:81:ce:9a:60:c5:db:2d:43:72: d6:2d:d7:6a:f7:62:6a:a3:70:6a:b6:9a:5b:52:8f:57:1a:07: f9:4c:c6:5d:6c:b3:41:fa:0a:1d:e9:39:d3:f4:e2:bf:81:9c: 23:75:f5:e9:0b:de:21:e8:b2:4d:91:15:ad:f5:00:c5:a8:32: 8f:be:1e:fb:60:33:9b:95:80:d1:78:8d:71:9c:9b:58:5e:90: fb:a6:8b:b0:de:96:4d:70:bc:f3:cb:02:1c:f5:c4:a5:df:61: 3d:26:3b:09:d4:de:75:80:db:49:39:06:92:e2:c6:b0:6a:5a: 6f:f2:0b:34:0a:1f:36:fc:13:74:6e:e6:e4:8b:47:f4:65:c6: e4:70:95:6f:77:05:bc:e2:8c:a0:91:ac:0a:60:2c:72:a2:d9: 55:60:e4:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwODIzMDM0NjUyWhcNMjUwODMwMDM0NjUyWjAYMRYwFAYD VQQDEw02OGE5MzlhYy1iZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+BG0d2RW6ftGhQF5o7vxjkV7maavc5DojvkL4CIlrV4pkAKfya/H/5Q00D5 qxKjIb1PqvOKzat5eCEsHZ1jgO7CTkOmGfi159we6QGS4Fv8OE1JlzAKXnNsBb3M GGOM3c6BsPk1/RBrBEike/eApKTpXsmsjJICTXUJ69SGqTstRis7Z8+8hiLTWdVZ 2hvuCoqWqyQ6MNL8JU2KdhAe2mJfDADxWZVQfgc1LcKaBeNrppWIS28vfCy7sWex /sAP88fd6SU5N9xgqX3Qg+H5SY5AmyEhnD8w9DyDbfD53Sv01J4S0zxVtnVQUP0b DX8wgwl+KKXu4PWLM49Ulfj3WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASZdEN9 HHemHJUnir6dQRbcch5fMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjwHwRBWSpVBfSOdfXxMvDYefMacIRmcLlw72wF+uWn2BqHR1YxIjW dEvp6eap1I9lkrtVkJLEXhhQO7SPNZDJ8l5fftzT3Nsuux9TNEihrjoWc38kkGk1 zs9iodP63pOpmpOBzppgxdstQ3LWLddq92Jqo3BqtppbUo9XGgf5TMZdbLNB+god 6TnT9OK/gZwjdfXpC94h6LJNkRWt9QDFqDKPvh77YDOblYDReI1xnJtYXpD7pouw 3pZNcLzzywIc9cSl32E9JjsJ1N51gNtJOQaS4sawalpv8gs0Ch82/BN0bubki0f0 ZcbkcJVvdwW84oygkawKYCxyotlVYOTy -----END CERTIFICATE-----Generated at Sun Aug 24 04:35:29 2025 by rpki-client