$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: mSLhHkoTJQyCHTi+/UpPu0lQhHvQhUAz74RpVynYQ1U= Subject key identifier: 10:4D:FA:C1:CE:BE:74:BC:89:D9:54:2C:27:D8:FA:88:AA:DC:AD:07 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: C9 Signing time: Sun 19 Oct 2025 08:57:29 +0000 Manifest this update: Sun 19 Oct 2025 08:57:28 +0000 Manifest next update: Sun 26 Oct 2025 08:57:28 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: 5kJNA1b+FV7Pu7EJWzklJCRKdOq2UWq1H4xadlC7XoI=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: TFRc9S9SOrNVMntsMk3kyNzc0WoLEqK3wZVoB040ZkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Oct 19 08:57:28 2025 GMT Not After : Oct 26 08:57:28 2025 GMT Subject: CN=68f4a7f8-034a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:c2:a1:29:8a:7d:80:d5:d0:d1:85:05:1a: 6c:55:ba:5e:05:16:18:bb:f6:39:ff:4f:43:16:b2: d9:0e:4e:92:4e:24:5f:c0:7c:9e:0a:a6:e1:8f:0c: 41:da:11:de:04:22:bd:c6:8b:9b:a1:72:53:4d:25: 9b:dc:82:3f:e4:3b:75:76:8c:a5:13:a6:b2:c3:5a: 4e:15:ef:d1:c1:5e:94:24:ae:53:43:d9:02:cc:03: 6f:52:d4:25:06:cd:a1:16:13:a7:52:23:dc:bb:58: 70:47:42:62:9e:3d:36:d4:ff:07:e0:cc:60:ec:2a: 9a:4d:24:ee:fa:c7:87:05:2a:67:b6:5a:40:7b:83: aa:f6:47:54:96:2f:69:91:c6:f1:41:d8:f4:b7:d2: 82:60:b4:77:c0:e1:25:59:d4:97:03:33:00:1b:ac: 8b:2f:39:52:f5:bb:6d:99:54:3d:81:41:14:df:f5: 75:05:c8:3b:0b:2f:f2:7f:e1:bb:77:f0:a0:89:a9: c0:fa:76:90:41:79:51:6e:69:61:a8:8c:cb:30:3c: 33:dd:f0:5f:5f:29:47:48:9b:ae:3b:49:25:d5:4d: a7:10:8c:c2:d7:7d:a3:89:fa:15:06:03:c4:d1:49: 77:5c:27:70:6c:ee:ee:1e:8d:ab:68:2f:bd:8d:33: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4D:FA:C1:CE:BE:74:BC:89:D9:54:2C:27:D8:FA:88:AA:DC:AD:07 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e6:ac:e0:3d:c0:d9:47:11:9b:94:43:51:36:96:49:3d:8c: 64:c9:f7:48:40:73:78:1e:34:74:ec:b7:30:91:ea:f4:c0:69: 7b:c8:56:66:76:cc:25:fa:ec:62:bf:8a:92:ab:ba:a0:ad:08: 16:f5:86:45:ab:a4:f1:af:66:b4:56:85:5c:5e:f5:f1:6f:b7: fb:71:8a:c1:d2:e8:b7:e2:b5:75:74:8f:87:7b:a2:06:79:f5: 75:d3:5b:74:2f:66:07:fe:88:90:23:5c:2f:d1:ea:e9:ff:4c: ee:ae:0d:ed:70:4a:9e:8e:50:f5:e8:da:7a:b1:97:33:5b:bf: 13:a8:56:77:60:dd:f2:ca:a6:a4:34:34:f7:d7:23:e0:ee:20: b2:52:26:62:c4:fd:6b:55:38:c2:2f:45:05:77:05:d3:5e:21: 7e:e1:a7:38:a0:48:c5:01:4c:81:ab:c5:ef:5c:d7:f4:4c:e7: 4d:de:a8:ea:6f:59:06:f7:aa:9c:ac:03:20:ad:1e:ee:cf:b9: fc:18:89:61:ec:74:5e:0a:3b:cb:ce:94:22:b0:f4:a3:a0:64: de:38:33:40:a7:ef:cb:00:9b:25:5b:57:2e:3c:04:f9:2b:80: 6a:d1:e1:db:d3:e7:19:01:a8:b6:2c:66:1e:bb:e9:7b:6a:df: ec:5e:29:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUxMDE5MDg1NzI4WhcNMjUxMDI2MDg1NzI4WjAYMRYwFAYD VQQDEw02OGY0YTdmOC0wMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC/CoSmKfYDV0NGFBRpsVbpeBRYYu/Y5/09DFrLZDk6STiRfwHyeCqbhjwxB 2hHeBCK9xouboXJTTSWb3II/5Dt1doylE6ayw1pOFe/RwV6UJK5TQ9kCzANvUtQl Bs2hFhOnUiPcu1hwR0Jinj021P8H4Mxg7CqaTSTu+seHBSpntlpAe4Oq9kdUli9p kcbxQdj0t9KCYLR3wOElWdSXAzMAG6yLLzlS9bttmVQ9gUEU3/V1Bcg7Cy/yf+G7 d/CgianA+naQQXlRbmlhqIzLMDwz3fBfXylHSJuuO0kl1U2nEIzC132jifoVBgPE 0Ul3XCdwbO7uHo2raC+9jTMjsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBN+sHO vnS8idlULCfY+oiq3K0HMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi5qzgPcDZRxGblENRNpZJPYxkyfdIQHN4HjR07Lcwker0wGl7yFZm dswl+uxiv4qSq7qgrQgW9YZFq6Txr2a0VoVcXvXxb7f7cYrB0ui34rV1dI+He6IG efV101t0L2YH/oiQI1wv0erp/0zurg3tcEqejlD16Np6sZczW78TqFZ3YN3yyqak NDT31yPg7iCyUiZixP1rVTjCL0UFdwXTXiF+4ac4oEjFAUyBq8XvXNf0TOdN3qjq b1kG96qcrAMgrR7uz7n8GIlh7HReCjvLzpQisPSjoGTeODNAp+/LAJslW1cuPAT5 K4Bq0eHb0+cZAai2LGYeu+l7at/sXiml -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:45 2025 by rpki-client