$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: efzmjw1QeCJr+BsLad5Pjab6cM19V0UqfhojaS2LlkM= Subject key identifier: F2:DC:03:EB:8F:FA:BF:18:6A:94:0C:FA:F1:0D:78:79:E0:DE:42:CB Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 0178 Signing time: Sat 09 Aug 2025 04:06:29 +0000 Manifest this update: Sat 09 Aug 2025 04:06:29 +0000 Manifest next update: Sat 16 Aug 2025 04:06:29 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: LkUFpr2an1XxKtgGcWgK4i5eIBN8V3fmQtYvCD53Zr0=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Aug 9 04:06:29 2025 GMT Not After : Aug 16 04:06:29 2025 GMT Subject: CN=6896c945-c77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e9:57:d0:cb:03:b2:5a:3f:e5:43:17:64:1e: 19:57:2e:98:49:c4:d5:a7:71:ba:82:f3:71:da:2b: 9c:e6:7d:b6:94:f9:86:f0:04:36:89:52:dc:77:4e: 0d:e9:90:b5:1b:b6:5c:85:6b:b1:8a:63:8b:c1:0a: cd:1c:c9:e0:6d:a5:97:26:11:6c:65:90:06:1a:04: d1:26:95:bb:d6:f6:94:2c:ea:c2:95:1f:a7:6b:09: 27:72:31:b1:b5:fd:9b:f8:d3:b1:af:41:d3:8c:8f: d3:eb:6d:d7:8c:42:ea:93:6d:24:af:25:29:fc:a1: 9d:d5:fd:6d:56:00:ea:f5:3a:37:d2:b3:39:e5:41: 82:68:48:b6:2d:54:6c:f2:9a:76:f0:70:61:03:c8: fe:ab:db:55:c2:02:89:f8:8e:50:39:89:c8:5a:09: b3:3a:7b:f2:f5:09:48:a7:ca:4c:f0:19:42:8c:50: 7b:5b:21:c9:bd:d4:9b:a0:2d:5e:ea:31:8f:7c:9d: de:3c:70:dc:df:6b:ed:70:39:03:e4:bb:54:c3:3c: e6:96:55:6e:3e:1c:29:82:76:8e:44:ca:89:59:98: fc:8c:b4:ca:ca:d2:56:20:27:46:cc:b8:3b:f5:f2: 72:12:4a:e1:40:40:56:5e:51:bf:e6:c6:c4:4e:6c: af:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DC:03:EB:8F:FA:BF:18:6A:94:0C:FA:F1:0D:78:79:E0:DE:42:CB X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:86:a5:f7:98:b4:9c:a7:cb:df:b9:13:92:45:c1:aa:82:7c: 70:40:ec:01:fb:d4:32:42:81:4a:f6:b5:43:38:65:0d:00:c2: 7f:a1:83:c5:2e:82:b2:ac:38:d7:39:0f:a6:da:de:b2:42:94: 16:fe:dd:24:60:4a:d4:8f:8a:9c:ac:d0:b7:75:39:08:ad:50: 0f:83:ac:43:da:26:ba:b2:ea:3e:5e:e8:f4:f7:e6:06:da:49: a5:53:c5:01:fc:35:8b:91:ee:45:09:b9:1d:2d:32:6a:69:ce: be:12:13:32:9e:6a:6c:4e:fe:fd:c9:c8:02:c1:76:47:14:cd: 1b:58:45:7a:7c:6c:72:cf:2b:d9:b5:c7:39:c1:cd:d2:99:5b: 1a:41:1f:50:0c:c4:a7:61:92:b9:02:e0:a3:24:80:99:64:13: 93:91:ba:ad:9c:06:51:e0:c5:0d:d0:ac:0d:5e:f6:de:64:94: ac:50:17:d5:5b:93:ca:4d:52:b2:45:cf:e3:da:21:06:31:a0: 08:af:f4:64:35:0f:58:c9:30:16:85:9c:ea:c1:75:7c:8c:e7: 1c:21:92:1f:0c:08:d9:6e:52:02:00:44:60:65:d2:12:cf:12: 47:66:5e:a3:af:a2:7d:64:a3:53:fd:1e:2c:0f:45:11:8a:f8: 07:53:13:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwODA5MDQwNjI5WhcNMjUwODE2MDQwNjI5WjAYMRYwFAYD VQQDEw02ODk2Yzk0NS1jNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+lX0MsDslo/5UMXZB4ZVy6YScTVp3G6gvNx2iuc5n22lPmG8AQ2iVLcd04N 6ZC1G7ZchWuximOLwQrNHMngbaWXJhFsZZAGGgTRJpW71vaULOrClR+nawkncjGx tf2b+NOxr0HTjI/T623XjELqk20kryUp/KGd1f1tVgDq9To30rM55UGCaEi2LVRs 8pp28HBhA8j+q9tVwgKJ+I5QOYnIWgmzOnvy9QlIp8pM8BlCjFB7WyHJvdSboC1e 6jGPfJ3ePHDc32vtcDkD5LtUwzzmllVuPhwpgnaORMqJWZj8jLTKytJWICdGzLg7 9fJyEkrhQEBWXlG/5sbETmyv+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLcA+uP +r8YapQM+vENeHng3kLLMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdhqX3mLScp8vfuROSRcGqgnxwQOwB+9QyQoFK9rVDOGUNAMJ/oYPF LoKyrDjXOQ+m2t6yQpQW/t0kYErUj4qcrNC3dTkIrVAPg6xD2ia6suo+Xuj09+YG 2kmlU8UB/DWLke5FCbkdLTJqac6+EhMynmpsTv79ycgCwXZHFM0bWEV6fGxyzyvZ tcc5wc3SmVsaQR9QDMSnYZK5AuCjJICZZBOTkbqtnAZR4MUN0KwNXvbeZJSsUBfV W5PKTVKyRc/j2iEGMaAIr/RkNQ9YyTAWhZzqwXV8jOccIZIfDAjZblICAERgZdIS zxJHZl6jr6J9ZKNT/R4sD0URivgHUxNk -----END CERTIFICATE-----Generated at Sat Aug 9 10:53:02 2025 by rpki-client