$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 8DV7+iYHmqN6/NQk2PNYxdOCLSlPKtDMShJMCzqu5J4= Subject key identifier: 6F:F2:E2:0E:81:AD:6C:35:48:E4:A1:88:DD:C3:B5:F6:D2:76:8B:20 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 86 Signing time: Thu 19 Jun 2025 05:56:31 +0000 Manifest this update: Thu 19 Jun 2025 05:56:31 +0000 Manifest next update: Thu 26 Jun 2025 05:56:31 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: hWYQALUNyz5fGNZeaIDZQNg9H4QPgPF+8R3qL1DGr+0=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Jun 19 05:56:31 2025 GMT Not After : Jun 26 05:56:31 2025 GMT Subject: CN=6853a68f-11e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:a4:61:a0:bd:c5:7a:63:29:e5:3f:98:d9: 29:41:ae:1c:e6:60:8c:69:e3:c1:02:93:ce:63:98: 81:d3:49:38:bc:e5:43:cd:db:c7:d5:e7:c6:fd:3a: 54:a1:92:91:2b:57:fe:e1:7d:ab:b2:34:15:d1:6c: b6:b8:25:fd:90:8d:61:e4:e6:5c:19:2b:37:7b:d5: a2:c5:d8:0a:c0:88:82:dd:2c:22:08:c7:4b:d8:45: 9b:99:7b:77:89:06:43:91:2e:d1:3e:f0:17:56:51: 8f:16:50:57:47:4b:84:43:31:47:d0:b3:c1:37:35: db:24:14:c8:fe:01:c1:68:74:62:28:33:ab:7a:b0: 02:70:94:d2:60:df:cf:8b:b0:ef:36:3a:12:be:d3: df:2e:4a:ab:ef:97:97:d0:5a:07:19:42:ca:4e:62: 22:cb:d3:bf:77:13:3f:f0:ef:a3:15:34:5f:e8:e0: 5d:c1:98:a2:85:97:88:13:e7:6f:96:9d:56:57:1f: 35:77:85:dc:7b:5a:70:43:0f:ee:a0:35:e1:6e:73: 9a:97:7f:3a:76:ad:69:f5:45:a9:bf:1a:7d:cb:cd: 8f:02:29:23:5f:f6:7f:1d:7b:be:e2:a2:29:a7:11: b0:ef:d6:c7:7b:db:02:9e:4d:6d:01:f2:50:ab:22: 57:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F2:E2:0E:81:AD:6C:35:48:E4:A1:88:DD:C3:B5:F6:D2:76:8B:20 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:9a:72:63:b5:46:ae:2c:75:f8:d9:9e:47:05:4b:c7:db:70: 1f:d4:e5:d8:c2:fd:64:fc:0e:60:39:46:d5:36:6f:fc:4d:10: a0:0a:94:f2:36:6d:03:d6:80:56:7f:92:ea:84:27:d1:90:66: 54:74:f9:8c:50:b0:b4:f8:f8:e6:d8:90:38:fb:e0:ad:41:2d: fa:0c:93:16:f4:15:31:b9:e5:c6:17:d9:bb:08:e7:21:22:a9: 3a:e2:d8:36:84:01:d6:a8:f6:d9:d4:dd:28:b9:21:c5:69:18: 1a:05:0d:95:65:3d:75:7c:d3:ea:7e:6d:08:81:63:2c:be:80: 87:33:92:ff:ef:eb:a6:03:20:21:fb:a8:d3:06:06:78:a1:1e: 19:c3:2d:cc:92:16:bd:7b:c1:86:86:cd:2c:61:7b:a4:41:3c: aa:17:89:65:76:47:43:6e:24:98:49:ae:05:69:25:9f:95:94: d0:60:a0:48:8d:af:20:6d:c5:19:a4:3b:7b:1f:dd:a1:12:a3: 67:e8:49:02:f6:d7:52:ff:72:69:82:de:77:a3:2f:dc:8f:47: c6:40:a7:35:61:3a:c9:75:65:dd:bd:c4:5e:44:fd:f0:f3:71: c5:6a:35:21:3f:c0:ff:f1:95:36:03:14:e2:c8:62:42:22:82: b6:52:83:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwNjE5MDU1NjMxWhcNMjUwNjI2MDU1NjMxWjAYMRYwFAYD VQQDEw02ODUzYTY4Zi0xMWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/WkYaC9xXpjKeU/mNkpQa4c5mCMaePBApPOY5iB00k4vOVDzdvH1efG/TpU oZKRK1f+4X2rsjQV0Wy2uCX9kI1h5OZcGSs3e9WixdgKwIiC3SwiCMdL2EWbmXt3 iQZDkS7RPvAXVlGPFlBXR0uEQzFH0LPBNzXbJBTI/gHBaHRiKDOrerACcJTSYN/P i7DvNjoSvtPfLkqr75eX0FoHGULKTmIiy9O/dxM/8O+jFTRf6OBdwZiihZeIE+dv lp1WVx81d4Xce1pwQw/uoDXhbnOal386dq1p9UWpvxp9y82PAikjX/Z/HXu+4qIp pxGw79bHe9sCnk1tAfJQqyJX5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/y4g6B rWw1SOShiN3DtfbSdosgMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBmnJjtUauLHX42Z5HBUvH23Af1OXYwv1k/A5gOUbVNm/8TRCgCpTy Nm0D1oBWf5LqhCfRkGZUdPmMULC0+Pjm2JA4++CtQS36DJMW9BUxueXGF9m7COch Iqk64tg2hAHWqPbZ1N0ouSHFaRgaBQ2VZT11fNPqfm0IgWMsvoCHM5L/7+umAyAh +6jTBgZ4oR4Zwy3Mkha9e8GGhs0sYXukQTyqF4lldkdDbiSYSa4FaSWflZTQYKBI ja8gbcUZpDt7H92hEqNn6EkC9tdS/3Jpgt53oy/cj0fGQKc1YTrJdWXdvcReRP3w 83HFajUhP8D/8ZU2AxTiyGJCIoK2UoOv -----END CERTIFICATE-----Generated at Sat Jun 21 06:04:09 2025 by rpki-client