$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 6Fg7rozLhzEZcS+aXFJu4RPsgM+FNUsCyOIFYAWnNNg= Subject key identifier: EC:8B:A4:D8:8F:BD:9D:E8:C0:A2:9D:EB:6F:D8:12:20:5F:8E:2E:4C Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: D1 Signing time: Wed 05 Nov 2025 05:55:07 +0000 Manifest this update: Wed 05 Nov 2025 05:55:06 +0000 Manifest next update: Wed 12 Nov 2025 05:55:06 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: WMj6Bu9GoNP0oL8jkBA6OP9oJjuCIneEC1g1k/zw5+g=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: TFRc9S9SOrNVMntsMk3kyNzc0WoLEqK3wZVoB040ZkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Nov 5 05:55:06 2025 GMT Not After : Nov 12 05:55:06 2025 GMT Subject: CN=690ae6ba-1965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:ab:d1:32:f8:67:b9:dc:06:7e:e0:c5:cc: 28:b2:f2:c4:76:18:20:d6:96:a0:20:fc:f0:15:fb: 23:e6:83:de:3d:fe:aa:1b:3b:44:c9:f7:89:a8:47: dc:b4:9f:48:57:76:6a:8a:e2:3f:85:b9:40:85:95: e6:2a:7c:49:93:c5:4c:cb:0a:f4:5c:2e:53:14:96: 4b:d3:6f:67:b1:38:bb:37:a3:cd:62:39:f0:06:ea: b5:0b:88:de:6b:e4:c5:66:c4:e6:48:2a:3a:7e:a1: bb:5e:68:2e:fa:75:27:16:02:26:b4:16:f6:8b:a8: 36:20:45:ef:2a:3d:d7:cd:95:09:e1:20:6b:78:21: 81:be:85:f0:66:f6:a0:1a:4b:37:4e:0d:5f:bc:1f: f5:e6:e9:dc:8f:f0:28:d1:d4:da:2a:ad:be:50:ac: 41:e5:0f:77:7e:39:f1:d9:fc:75:af:33:e2:28:24: 13:c4:77:68:af:bb:16:96:08:c4:72:a7:19:97:2f: ab:e0:90:60:d6:fc:6f:18:c9:44:6d:98:b6:cd:62: 64:f7:a2:21:de:0e:a0:e4:1c:30:85:09:0b:ee:ba: 94:c1:37:51:a9:7b:72:cc:11:cd:28:99:51:4a:11: aa:e1:18:c0:2e:80:3a:43:31:20:ab:55:e1:dd:c6: 94:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8B:A4:D8:8F:BD:9D:E8:C0:A2:9D:EB:6F:D8:12:20:5F:8E:2E:4C X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:03:50:8d:90:3d:36:68:fa:dd:34:45:92:37:cf:30:82:b2: 4a:59:f9:d2:b8:d6:aa:a0:32:5f:3b:3a:4e:e9:07:44:0b:1c: e5:e6:46:0f:24:9f:7c:2c:81:d5:ca:b0:8c:45:26:f4:e1:26: 94:1b:e9:b0:84:f2:88:39:36:dd:b8:9b:66:ea:67:fc:8b:67: 34:fe:cc:0a:2c:4b:46:c6:31:73:f7:29:88:8b:52:b0:bf:41: fd:3b:ac:e2:81:f4:d3:dc:8e:7f:25:34:07:cb:bd:b0:5a:f0: db:bb:a5:bf:db:d9:e2:eb:9e:a6:61:4c:5b:a5:69:8e:45:e6: ce:54:a0:45:99:f7:1a:d5:ac:4c:e2:89:aa:2d:d1:95:82:db: 09:96:83:7d:53:aa:0e:ce:5b:fe:5b:8f:8c:2a:e2:f8:f3:ef: 52:2a:28:9c:4b:e7:f6:79:8c:fe:81:47:f4:49:90:36:a0:c2: bf:65:70:62:0d:cc:b6:eb:f9:a6:ef:04:98:a8:d9:82:5f:21: d0:11:be:79:ac:bd:c2:c1:04:25:4c:a1:be:60:57:bf:a6:4c: e6:2f:c4:24:25:3a:ac:6b:fb:7c:74:91:cf:00:3f:53:ca:e0: e9:bb:19:f4:cb:0a:7f:09:4e:9d:c3:b7:00:11:e1:bc:1c:bc: b0:ae:8a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUxMTA1MDU1NTA2WhcNMjUxMTEyMDU1NTA2WjAYMRYwFAYD VQQDEw02OTBhZTZiYS0xOTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mGr0TL4Z7ncBn7gxcwosvLEdhgg1pagIPzwFfsj5oPePf6qGztEyfeJqEfc tJ9IV3ZqiuI/hblAhZXmKnxJk8VMywr0XC5TFJZL029nsTi7N6PNYjnwBuq1C4je a+TFZsTmSCo6fqG7Xmgu+nUnFgImtBb2i6g2IEXvKj3XzZUJ4SBreCGBvoXwZvag Gks3Tg1fvB/15uncj/Ao0dTaKq2+UKxB5Q93fjnx2fx1rzPiKCQTxHdor7sWlgjE cqcZly+r4JBg1vxvGMlEbZi2zWJk96Ih3g6g5BwwhQkL7rqUwTdRqXtyzBHNKJlR ShGq4RjALoA6QzEgq1Xh3caUmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyLpNiP vZ3owKKd62/YEiBfji5MMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0A1CNkD02aPrdNEWSN88wgrJKWfnSuNaqoDJfOzpO6QdECxzl5kYP JJ98LIHVyrCMRSb04SaUG+mwhPKIOTbduJtm6mf8i2c0/swKLEtGxjFz9ymIi1Kw v0H9O6zigfTT3I5/JTQHy72wWvDbu6W/29ni656mYUxbpWmORebOVKBFmfca1axM 4omqLdGVgtsJloN9U6oOzlv+W4+MKuL48+9SKiicS+f2eYz+gUf0SZA2oMK/ZXBi Dcy26/mm7wSYqNmCXyHQEb55rL3CwQQlTKG+YFe/pkzmL8QkJTqsa/t8dJHPAD9T yuDpuxn0ywp/CU6dw7cAEeG8HLywrorY -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:07 2025 by rpki-client