$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: YcvbXTBbJenh/ivoybu0DqpN0MK2M2fUTx4Raxs0z84= Subject key identifier: 95:59:10:D5:9F:89:B3:07:D2:EB:8A:F8:C7:0C:84:60:A9:9C:45:FF Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 015D Signing time: Tue 17 Jun 2025 03:06:22 +0000 Manifest this update: Tue 17 Jun 2025 03:06:22 +0000 Manifest next update: Tue 24 Jun 2025 03:06:22 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: oHwhsSCLNdSyjTmwsyQYcFrdiRKjgfVMQ0oTXE2zWCo=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Jun 17 03:06:22 2025 GMT Not After : Jun 24 03:06:22 2025 GMT Subject: CN=6850dbae-34a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:f4:5c:5a:45:98:c8:cc:17:ee:89:fb:9b: e7:99:e3:3f:3b:ca:df:7d:d5:08:4e:0d:79:cd:38: 85:17:96:b5:33:0e:41:c3:61:82:e4:71:96:56:a1: 1b:3e:d2:e7:57:12:39:c6:b1:0a:61:8b:a0:82:ed: cf:c0:6c:80:58:89:c0:98:2e:9d:9a:92:c5:a0:97: bc:5b:77:9f:d6:4d:f2:74:44:53:10:e9:df:e9:f9: ee:92:d8:47:c8:c2:c8:d1:8c:99:a9:9f:d5:07:2c: ef:13:e2:8e:70:dc:a3:1a:e8:a7:62:9e:ae:cc:5c: 86:37:95:e8:d4:ad:46:f5:90:45:af:7a:39:a0:0c: ad:ca:eb:3f:46:74:27:35:8d:8b:ef:b8:b8:12:7c: 49:d4:94:70:4f:b0:8f:6d:36:11:e6:e4:35:50:ff: 31:3d:b9:0d:70:15:b1:40:66:37:c8:f3:55:61:ca: 6f:02:d7:9a:18:63:92:5c:3d:94:59:58:0d:05:55: f9:0b:fd:c9:d7:19:83:6b:d5:c9:1d:d1:87:f0:07: 8a:1a:06:9b:19:7b:ee:7b:5e:5e:4e:ea:48:d5:d3: 27:0f:f1:74:d2:fb:8c:cd:9b:16:2a:2a:ad:d3:03: 0a:3c:82:52:41:60:ba:03:9e:16:45:e8:b1:4d:a5: 00:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:59:10:D5:9F:89:B3:07:D2:EB:8A:F8:C7:0C:84:60:A9:9C:45:FF X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:4c:9c:47:ad:c3:e8:6d:8f:63:3b:67:66:6c:12:20:10:c6: 7c:fa:b4:4e:0a:b0:91:4f:20:19:88:c4:05:66:42:d2:13:40: a5:00:29:1a:a0:80:9f:60:2e:07:76:f0:e5:8e:1d:d8:96:b0: 4e:c8:a0:05:dc:ed:5e:11:53:e2:fa:73:ee:42:82:47:97:84: ee:2d:30:ce:a6:c1:21:e7:b9:cc:13:29:a2:be:20:b7:3f:c3: 7f:3b:65:9b:50:e4:d9:5b:6f:35:67:b9:ad:a1:94:30:b4:a7: 6b:19:71:c0:db:ee:b0:eb:78:bc:54:f6:ff:f3:06:c8:48:2f: 9c:12:cf:04:1a:6b:14:40:bc:99:c0:b3:bf:6b:f3:a6:7d:59: 7d:7e:36:2f:3a:ed:ba:cd:6f:e8:4f:f6:24:a8:0b:c1:55:a2: 5f:e9:91:22:95:58:db:6b:cf:d4:c7:f7:16:cf:06:ee:61:ad: 42:ab:53:58:33:e0:31:57:51:40:a1:16:66:8b:3d:68:7d:00: d6:a9:61:7a:16:7a:ba:d9:6a:1e:6a:a4:35:fb:cb:fe:8e:40: bc:82:e5:03:cd:41:01:10:fa:35:ea:aa:8d:b9:9b:3a:b8:7b: 71:39:c6:7c:c2:34:5c:1a:24:04:b6:eb:00:7d:26:0a:08:0d: bb:d7:53:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwNjE3MDMwNjIyWhcNMjUwNjI0MDMwNjIyWjAYMRYwFAYD VQQDEw02ODUwZGJhZS0zNGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzh/0XFpFmMjMF+6J+5vnmeM/O8rffdUITg15zTiFF5a1Mw5Bw2GC5HGWVqEb PtLnVxI5xrEKYYuggu3PwGyAWInAmC6dmpLFoJe8W3ef1k3ydERTEOnf6fnukthH yMLI0YyZqZ/VByzvE+KOcNyjGuinYp6uzFyGN5Xo1K1G9ZBFr3o5oAytyus/RnQn NY2L77i4EnxJ1JRwT7CPbTYR5uQ1UP8xPbkNcBWxQGY3yPNVYcpvAteaGGOSXD2U WVgNBVX5C/3J1xmDa9XJHdGH8AeKGgabGXvue15eTupI1dMnD/F00vuMzZsWKiqt 0wMKPIJSQWC6A54WReixTaUANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVZENWf ibMH0uuK+McMhGCpnEX/MB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5TJxHrcPobY9jO2dmbBIgEMZ8+rROCrCRTyAZiMQFZkLSE0ClACka oICfYC4HdvDljh3YlrBOyKAF3O1eEVPi+nPuQoJHl4TuLTDOpsEh57nMEymiviC3 P8N/O2WbUOTZW281Z7mtoZQwtKdrGXHA2+6w63i8VPb/8wbISC+cEs8EGmsUQLyZ wLO/a/OmfVl9fjYvOu26zW/oT/YkqAvBVaJf6ZEilVjba8/Ux/cWzwbuYa1Cq1NY M+AxV1FAoRZmiz1ofQDWqWF6Fnq62WoeaqQ1+8v+jkC8guUDzUEBEPo16qqNuZs6 uHtxOcZ8wjRcGiQEtusAfSYKCA2711On -----END CERTIFICATE-----Generated at Wed Jun 18 13:37:04 2025 by rpki-client