$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: nDQZGcprmSCheT4Jk6uUu/J9mdpGsbpHFuAVmzP/EHY= Subject key identifier: CF:F6:99:12:90:7A:37:47:CE:AB:7D:92:8E:12:F6:39:07:DA:80:14 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: A2 Signing time: Wed 13 Aug 2025 06:54:56 +0000 Manifest this update: Wed 13 Aug 2025 06:54:55 +0000 Manifest next update: Wed 20 Aug 2025 06:54:55 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: HNl4BBNgZkP6xqX6FPWyOkUP3OHJFXhI4m71FXDCq7M=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 06:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Aug 13 06:54:55 2025 GMT Not After : Aug 20 06:54:55 2025 GMT Subject: CN=689c36bf-ccee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:73:3e:bc:07:5b:d8:5e:1b:07:e7:f8:63: c2:f4:27:4f:59:b2:3b:53:87:66:aa:49:f5:a2:0e: f1:fd:8e:42:64:00:b1:01:aa:39:35:60:30:fb:a4: 69:52:3d:81:d7:73:ab:27:df:a5:61:90:db:a8:a0: b7:4f:6d:c2:80:28:1f:1a:58:4f:1e:95:6b:a0:2f: 86:5e:05:1d:4a:15:ff:6b:96:9d:c3:80:27:49:a9: 7b:60:ec:3c:b9:2c:5a:07:43:64:73:98:60:2a:6c: 36:40:83:55:2a:42:8d:88:a8:1a:96:f7:10:de:ac: de:77:3c:40:18:69:ad:60:76:21:5f:4e:70:16:51: 19:62:82:cf:63:0a:0c:a2:99:6b:8e:92:a7:92:70: 21:a3:a4:1e:5c:ec:44:83:f5:05:f3:82:3b:2a:ad: 44:95:49:c5:b2:fd:d3:cf:54:ff:e3:e3:a5:11:57: ee:2f:cd:71:31:d9:0f:da:f8:a1:88:19:4c:a9:2c: 1d:e9:50:7f:cd:91:55:8b:ea:b4:48:fa:8f:24:81: c2:72:bb:0e:2c:19:9c:f4:47:5f:ff:cb:a0:29:5f: fa:58:e7:27:70:e5:51:10:77:c3:6b:a6:74:2e:4e: b2:e1:1f:1a:80:45:87:df:79:b5:33:c2:22:b7:59: b1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F6:99:12:90:7A:37:47:CE:AB:7D:92:8E:12:F6:39:07:DA:80:14 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d1:66:c2:87:a3:26:47:f9:2d:1b:68:52:3e:c3:d2:01:b6: 94:98:f5:7d:c3:8a:13:7e:1b:fe:4e:0e:80:4c:3d:9c:71:03: 78:18:9e:52:c4:b3:29:31:72:24:5f:19:14:2e:89:80:29:5b: 89:76:77:d7:64:04:6c:d4:32:bc:c0:64:1c:e4:17:ab:e6:4f: 7b:0e:81:df:27:5f:b8:77:97:b9:37:85:f6:b5:ec:df:5a:03: 01:24:e8:d9:49:20:a7:4a:98:0f:12:02:7c:1c:ae:c9:1e:8e: 55:6e:18:e0:0e:5f:e9:52:78:d7:98:74:ff:16:ab:12:a0:1f: 6c:71:95:a7:39:07:b2:5a:56:e0:bc:1d:67:33:88:92:da:3b: d9:1c:37:9f:33:09:19:1d:f8:91:0f:a7:8e:10:a0:05:9e:68: e7:ec:9d:40:95:46:e4:06:6c:2d:82:ba:41:32:42:f8:a9:f0: a8:19:19:ea:0d:68:ce:e8:45:38:5a:cd:2f:b3:f1:b4:67:5c: c8:56:10:40:aa:a2:7a:6f:c6:19:23:87:8c:ed:f8:29:18:95: 52:b7:63:a9:55:0a:cd:00:c0:8b:d7:3f:ed:6f:0a:19:1f:b1: 56:2a:96:f7:9b:7b:b4:d5:73:35:f6:89:be:91:40:53:d5:7d: 1f:0a:ac:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwODEzMDY1NDU1WhcNMjUwODIwMDY1NDU1WjAYMRYwFAYD VQQDEw02ODljMzZiZi1jY2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWZzPrwHW9heGwfn+GPC9CdPWbI7U4dmqkn1og7x/Y5CZACxAao5NWAw+6Rp Uj2B13OrJ9+lYZDbqKC3T23CgCgfGlhPHpVroC+GXgUdShX/a5adw4AnSal7YOw8 uSxaB0Nkc5hgKmw2QINVKkKNiKgalvcQ3qzedzxAGGmtYHYhX05wFlEZYoLPYwoM oplrjpKnknAho6QeXOxEg/UF84I7Kq1ElUnFsv3Tz1T/4+OlEVfuL81xMdkP2vih iBlMqSwd6VB/zZFVi+q0SPqPJIHCcrsOLBmc9Edf/8ugKV/6WOcncOVREHfDa6Z0 Lk6y4R8agEWH33m1M8Iit1mx2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/2mRKQ ejdHzqt9ko4S9jkH2oAUMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt0WbCh6MmR/ktG2hSPsPSAbaUmPV9w4oTfhv+Tg6ATD2ccQN4GJ5S xLMpMXIkXxkULomAKVuJdnfXZARs1DK8wGQc5Ber5k97DoHfJ1+4d5e5N4X2tezf WgMBJOjZSSCnSpgPEgJ8HK7JHo5VbhjgDl/pUnjXmHT/FqsSoB9scZWnOQeyWlbg vB1nM4iS2jvZHDefMwkZHfiRD6eOEKAFnmjn7J1AlUbkBmwtgrpBMkL4qfCoGRnq DWjO6EU4Ws0vs/G0Z1zIVhBAqqJ6b8YZI4eM7fgpGJVSt2OpVQrNAMCL1z/tbwoZ H7FWKpb3m3u01XM19om+kUBT1X0fCqxf -----END CERTIFICATE-----Generated at Wed Aug 13 22:02:44 2025 by rpki-client