$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 1Yrcfyb7xnNixvK/H6I2f6DIctrpIVeFnZCtMFgF1yg= Subject key identifier: E4:16:4B:C6:17:19:70:52:6F:A6:32:A5:42:FE:DE:1E:48:98:A3:2B Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 8D Signing time: Thu 03 Jul 2025 06:42:36 +0000 Manifest this update: Thu 03 Jul 2025 06:42:36 +0000 Manifest next update: Thu 10 Jul 2025 06:42:36 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: ekYuWQ1fQg6VTA1wP009lF2vtXR4mS/xfcn9nuI9JWc=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Jul 3 06:42:36 2025 GMT Not After : Jul 10 06:42:36 2025 GMT Subject: CN=6866265c-94ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:59:5b:8a:5f:1d:63:a3:2c:35:9e:4b:67:b9: 67:0a:5f:e2:83:2c:4a:22:18:f1:9e:0a:52:e8:d3: 1f:ed:f9:0e:86:f3:92:6e:07:52:63:32:fa:f0:65: 7d:7a:5d:35:39:1b:33:34:34:2f:a4:42:02:25:95: 24:79:94:7f:68:3f:a1:f0:4b:93:9f:97:e8:00:81: 95:33:29:b6:61:be:e6:36:7b:8b:15:c2:6f:72:0a: b9:ac:1d:c3:7d:55:49:61:89:97:8b:c4:2a:af:a0: 7e:43:4a:59:28:f2:69:87:5e:66:88:56:59:7c:fe: 6a:17:c3:be:fc:5a:22:ed:48:64:cf:e1:60:4b:cd: 78:9a:ba:42:ad:9e:63:e2:c9:47:b6:de:2e:dc:73: ad:83:e1:93:9a:86:ce:02:a5:49:13:7a:a5:fb:bb: 85:76:ee:55:98:f1:2f:c9:fb:d2:9d:5b:ca:5f:3b: 5f:e3:cc:26:3d:55:33:98:f3:d8:67:6c:9c:ba:5f: 05:d3:83:36:bf:f1:65:74:8c:11:fa:2b:a0:6d:5e: d5:ad:eb:e0:be:1a:e2:79:10:33:88:43:17:a6:2c: 78:94:96:20:cd:67:4e:5d:94:eb:51:47:62:2c:3e: 45:dc:54:f5:25:22:17:d6:bb:46:aa:40:db:43:dd: 45:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:16:4B:C6:17:19:70:52:6F:A6:32:A5:42:FE:DE:1E:48:98:A3:2B X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:7e:27:38:70:c5:83:be:6d:7f:7c:23:20:0f:ff:27:3c:8c: 50:d7:c7:b8:c7:00:77:53:b0:de:b5:e6:9e:53:40:a6:34:64: 5d:46:76:56:32:dd:1f:57:75:6e:f5:5a:9b:b0:3b:81:c3:bd: 99:99:63:2b:a8:80:0a:96:58:e4:96:d8:a3:b3:fc:c2:db:14: e8:fa:0c:ab:29:3e:32:9f:cb:85:c9:e7:21:d6:6e:18:0e:e0: f1:b5:ce:6c:97:a3:8c:c2:be:8e:2b:36:4f:d5:d3:2a:3d:63: f7:62:13:8c:b5:40:0e:69:c1:ce:b9:c8:c7:cd:e2:13:2d:34: 75:70:58:51:39:1c:45:e6:69:07:25:98:78:2f:c1:0e:aa:cb: f2:cf:ef:87:fa:76:0f:68:a7:88:9b:2f:3c:1c:11:83:70:d4: 56:f7:cc:11:05:70:28:88:ee:2c:a6:91:ca:ef:f6:f2:0e:3f: 09:64:13:e4:6d:be:f8:37:10:d7:52:21:3e:44:e9:b4:f7:7f: 13:dd:f7:4a:d1:df:1e:74:dc:28:a2:d9:43:53:05:26:91:93: ad:ac:62:76:92:8b:97:09:70:fd:45:75:4a:c5:40:d4:04:9d: 36:02:44:36:13:a3:12:83:34:be:bb:93:84:66:b0:b3:4c:65: 4e:f7:6e:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwNzAzMDY0MjM2WhcNMjUwNzEwMDY0MjM2WjAYMRYwFAYD VQQDEw02ODY2MjY1Yy05NGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVlbil8dY6MsNZ5LZ7lnCl/igyxKIhjxngpS6NMf7fkOhvOSbgdSYzL68GV9 el01ORszNDQvpEICJZUkeZR/aD+h8EuTn5foAIGVMym2Yb7mNnuLFcJvcgq5rB3D fVVJYYmXi8Qqr6B+Q0pZKPJph15miFZZfP5qF8O+/Foi7Uhkz+FgS814mrpCrZ5j 4slHtt4u3HOtg+GTmobOAqVJE3ql+7uFdu5VmPEvyfvSnVvKXztf48wmPVUzmPPY Z2ycul8F04M2v/FldIwR+iugbV7VrevgvhrieRAziEMXpix4lJYgzWdOXZTrUUdi LD5F3FT1JSIX1rtGqkDbQ91FnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQWS8YX GXBSb6YypUL+3h5ImKMrMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASfic4cMWDvm1/fCMgD/8nPIxQ18e4xwB3U7DeteaeU0CmNGRdRnZW Mt0fV3Vu9VqbsDuBw72ZmWMrqIAKlljkltijs/zC2xTo+gyrKT4yn8uFyech1m4Y DuDxtc5sl6OMwr6OKzZP1dMqPWP3YhOMtUAOacHOucjHzeITLTR1cFhRORxF5mkH JZh4L8EOqsvyz++H+nYPaKeImy88HBGDcNRW98wRBXAoiO4sppHK7/byDj8JZBPk bb74NxDXUiE+ROm0938T3fdK0d8edNwootlDUwUmkZOtrGJ2kouXCXD9RXVKxUDU BJ02AkQ2E6MSgzS+u5OEZrCzTGVO926d -----END CERTIFICATE-----Generated at Thu Jul 3 23:30:59 2025 by rpki-client