$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 5fBiIYO3VsHbN+WVrc+nrKtyaietIZ4/7y+zynMkxbc= Subject key identifier: 08:8C:EE:14:60:88:8E:FC:3C:E0:59:52:92:86:47:EA:A4:6D:5F:31 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: A7 Signing time: Sat 23 Aug 2025 06:25:26 +0000 Manifest this update: Sat 23 Aug 2025 06:25:25 +0000 Manifest next update: Sat 30 Aug 2025 06:25:25 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: cds9qOdyiAqmi3B0xHt+du0GvCgELaaZxYtQsfM2NQw=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Aug 23 06:25:25 2025 GMT Not After : Aug 30 06:25:25 2025 GMT Subject: CN=68a95ed5-be23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a1:03:b5:31:90:bf:59:d0:e2:10:62:46:26: e0:8a:6c:2b:2d:c9:49:cb:90:bb:13:78:48:46:93: 9c:89:6f:58:38:86:78:b3:77:76:8e:ee:0f:0c:15: f5:bb:2b:15:bf:fa:58:d6:e1:9a:60:a6:80:b6:a9: 36:e5:b5:57:52:84:4b:2c:8e:b7:eb:1d:82:ae:6a: 82:6a:8d:8f:f2:b1:c4:a8:84:a6:92:1d:f8:88:ff: 45:88:b8:59:5f:11:d4:9c:c4:38:2e:cf:49:a7:6f: 57:bd:f0:8a:2d:e8:27:a6:f9:22:72:ff:00:69:d7: 01:d1:0f:10:7c:72:5e:1e:98:b1:16:90:f3:04:88: 92:a9:a0:08:9f:a5:35:d1:8c:c6:fa:c1:6b:ee:33: f7:31:90:65:f1:4a:7a:d7:26:92:40:90:c3:93:3e: e2:fc:bd:fd:a9:32:80:f2:af:39:47:6a:25:c3:cf: 8a:40:73:19:3b:9e:42:e4:0e:2b:6e:71:2f:58:88: ab:0d:c6:f4:61:cc:52:62:66:98:a7:3f:31:09:e5: f6:56:be:cf:0e:8a:0c:35:96:1f:3c:df:7f:ce:6f: c7:32:48:9b:8f:85:67:77:56:a1:31:57:50:1b:13: 1f:6d:09:d7:f6:7c:e7:d9:7b:24:8e:7f:51:76:d3: 63:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8C:EE:14:60:88:8E:FC:3C:E0:59:52:92:86:47:EA:A4:6D:5F:31 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:3c:39:f4:d9:d5:ae:54:ae:6a:ea:66:2c:17:4e:3f:95:d3: 05:51:b4:db:3c:7e:07:ff:c1:45:77:ac:5e:7f:48:13:c5:d2: 26:8d:19:02:ca:61:6f:96:b5:7e:63:23:3c:a3:a7:81:e9:70: 59:0e:d2:8a:e1:de:61:a4:cc:51:d0:c9:f8:77:40:00:9d:0c: 3d:9b:95:d3:18:06:4a:b6:cb:fa:20:b9:24:0c:c1:4c:44:c5: d5:7d:fd:2d:64:9c:e7:d7:25:bf:af:58:a1:11:61:e1:88:db: 8e:63:fb:17:d8:f8:9c:72:87:58:09:11:60:13:7a:bd:8a:f6: cd:f7:a0:6f:eb:d8:df:91:b0:99:71:1d:45:7a:6f:d3:f4:a5: 4b:96:e1:1e:bc:e0:c8:8c:e0:e1:ef:7b:18:e3:9a:29:0f:bb: b6:e6:c2:5e:eb:7c:56:cf:fd:99:b7:2c:48:9f:10:48:72:9e: 2c:a6:a2:7b:b4:5c:c4:1d:35:e3:06:6b:18:0f:a4:6a:c4:7b: ad:86:0f:2b:0a:f0:8c:c0:38:53:5b:49:15:ab:b5:d9:37:bd: 53:aa:8d:12:6b:31:89:58:94:9f:75:85:12:f2:63:d3:b4:80: 26:12:03:96:c4:b1:ac:f0:26:05:ab:c1:b1:e4:53:bc:50:98: 6f:77:d8:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwODIzMDYyNTI1WhcNMjUwODMwMDYyNTI1WjAYMRYwFAYD VQQDEw02OGE5NWVkNS1iZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKEDtTGQv1nQ4hBiRibgimwrLclJy5C7E3hIRpOciW9YOIZ4s3d2ju4PDBX1 uysVv/pY1uGaYKaAtqk25bVXUoRLLI636x2CrmqCao2P8rHEqISmkh34iP9FiLhZ XxHUnMQ4Ls9Jp29XvfCKLegnpvkicv8AadcB0Q8QfHJeHpixFpDzBIiSqaAIn6U1 0YzG+sFr7jP3MZBl8Up61yaSQJDDkz7i/L39qTKA8q85R2olw8+KQHMZO55C5A4r bnEvWIirDcb0YcxSYmaYpz8xCeX2Vr7PDooMNZYfPN9/zm/HMkibj4Vnd1ahMVdQ GxMfbQnX9nzn2Xskjn9RdtNjdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiM7hRg iI78POBZUpKGR+qkbV8xMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCPDn02dWuVK5q6mYsF04/ldMFUbTbPH4H/8FFd6xef0gTxdImjRkC ymFvlrV+YyM8o6eB6XBZDtKK4d5hpMxR0Mn4d0AAnQw9m5XTGAZKtsv6ILkkDMFM RMXVff0tZJzn1yW/r1ihEWHhiNuOY/sX2PiccodYCRFgE3q9ivbN96Bv69jfkbCZ cR1Fem/T9KVLluEevODIjODh73sY45opD7u25sJe63xWz/2ZtyxInxBIcp4spqJ7 tFzEHTXjBmsYD6RqxHuthg8rCvCMwDhTW0kVq7XZN71Tqo0SazGJWJSfdYUS8mPT tIAmEgOWxLGs8CYFq8Gx5FO8UJhvd9jp -----END CERTIFICATE-----Generated at Sat Aug 23 22:15:09 2025 by rpki-client