$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: K4NQE0ekTK4w/4jIMMy/YoVqxBncB7ZZOIwLhjwkGSU= Subject key identifier: A7:0F:21:D3:4A:A2:B6:96:7E:78:F1:87:DD:FC:93:94:F5:17:86:6A Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0423 Signing time: Sat 19 Jul 2025 00:44:30 +0000 Manifest this update: Sat 19 Jul 2025 00:44:29 +0000 Manifest next update: Sat 26 Jul 2025 00:44:29 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: E3YWfcYDymof2WYNZjGkLOxfN6VKZBvYPUVQ6RSvB4k=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Jul 19 00:44:29 2025 GMT Not After : Jul 26 00:44:29 2025 GMT Subject: CN=687aea6e-ae42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:93:3d:19:2a:ac:81:0b:4e:d1:dc:99:d6:0d: 99:b2:6c:6a:48:91:4f:2b:bb:f0:7b:e5:e6:e0:1c: 6c:9d:e4:58:10:66:9e:3d:e2:63:ab:97:b7:23:13: 02:bb:75:f2:38:6c:1a:90:64:ad:5f:74:63:4d:9d: ba:d8:54:54:1c:91:41:e0:0b:68:44:5c:24:8b:e0: 88:46:6d:34:de:bb:6c:15:ce:eb:87:05:93:78:a0: 45:7d:e1:10:16:60:bf:6d:70:da:f3:d8:75:47:96: 55:de:26:1a:5b:50:5a:02:ca:77:0b:35:11:32:74: 61:ef:98:14:ef:48:d3:5b:86:40:27:45:17:47:f4: ce:5a:d9:db:53:df:9b:b9:a9:f4:63:54:58:ef:9a: b3:8b:91:59:d6:e2:30:ad:87:34:e2:a0:37:ec:0d: 1c:e2:54:69:f7:03:21:72:ef:57:8a:45:d4:0a:51: b2:1b:15:16:24:60:28:67:db:1a:a9:78:47:4a:9e: 9a:51:47:6e:7e:b3:eb:ae:f8:1d:a0:b3:02:b0:e1: 5e:32:86:13:1a:c3:dc:1c:fc:8a:68:5d:21:87:64: 7f:a8:61:bd:d1:ee:ed:4b:02:87:d9:01:b0:b6:13: 72:dd:8d:78:21:ca:84:a7:f2:38:14:38:91:fc:6a: 9c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0F:21:D3:4A:A2:B6:96:7E:78:F1:87:DD:FC:93:94:F5:17:86:6A X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:88:30:b5:0f:90:58:75:c4:5a:b5:32:ac:a8:b3:b4:a1:1a: 56:b0:06:10:b1:7f:78:b4:45:d5:ff:04:20:0f:98:6b:b6:65: e9:50:79:fb:f7:33:00:d3:26:51:6b:b9:f1:c5:fd:d8:fb:75: 38:3a:88:47:a9:2c:ae:91:0f:8b:a6:60:b1:87:6a:83:f3:f4: 55:39:da:82:09:ad:9b:49:7c:02:bb:f1:3a:0c:7b:10:f3:46: 61:0b:ce:9b:52:55:4d:7b:82:dc:9f:f6:4d:79:8a:27:02:c1: f6:ce:c7:40:66:4f:da:3c:ae:36:9c:ac:6e:b4:e6:45:95:27: 71:75:90:85:23:f2:2e:d6:fb:f0:00:ed:df:18:ba:66:6a:db: f9:13:db:90:ff:de:fa:57:45:9a:55:ae:84:ef:6c:5a:f8:d3: 1c:92:d0:57:5c:fc:45:37:3e:41:20:ad:73:5f:f6:49:9b:24: 67:10:37:03:4d:c5:52:73:a2:91:97:15:09:bc:72:d4:af:29: 40:89:e6:b1:2a:51:8a:bf:c7:ba:5c:3e:ad:f7:5d:be:fe:29: fe:25:dd:52:55:ee:1f:53:73:10:ee:5f:d5:f3:47:f4:36:6e: ad:13:3f:d4:fd:6b:68:07:69:e9:1c:01:87:9d:56:83:1f:f8: df:4d:5a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNzE5MDA0NDI5WhcNMjUwNzI2MDA0NDI5WjAYMRYwFAYD VQQDEw02ODdhZWE2ZS1hZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJM9GSqsgQtO0dyZ1g2ZsmxqSJFPK7vwe+Xm4BxsneRYEGaePeJjq5e3IxMC u3XyOGwakGStX3RjTZ262FRUHJFB4AtoRFwki+CIRm003rtsFc7rhwWTeKBFfeEQ FmC/bXDa89h1R5ZV3iYaW1BaAsp3CzURMnRh75gU70jTW4ZAJ0UXR/TOWtnbU9+b uan0Y1RY75qzi5FZ1uIwrYc04qA37A0c4lRp9wMhcu9XikXUClGyGxUWJGAoZ9sa qXhHSp6aUUdufrPrrvgdoLMCsOFeMoYTGsPcHPyKaF0hh2R/qGG90e7tSwKH2QGw thNy3Y14IcqEp/I4FDiR/Gqc/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcPIdNK oraWfnjxh938k5T1F4ZqMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5iDC1D5BYdcRatTKsqLO0oRpWsAYQsX94tEXV/wQgD5hrtmXpUHn7 9zMA0yZRa7nxxf3Y+3U4OohHqSyukQ+LpmCxh2qD8/RVOdqCCa2bSXwCu/E6DHsQ 80ZhC86bUlVNe4Lcn/ZNeYonAsH2zsdAZk/aPK42nKxutOZFlSdxdZCFI/Iu1vvw AO3fGLpmatv5E9uQ/976V0WaVa6E72xa+NMcktBXXPxFNz5BIK1zX/ZJmyRnEDcD TcVSc6KRlxUJvHLUrylAieaxKlGKv8e6XD6t912+/in+Jd1SVe4fU3MQ7l/V80f0 Nm6tEz/U/WtoB2npHAGHnVaDH/jfTVov -----END CERTIFICATE-----Generated at Sun Jul 20 22:39:56 2025 by rpki-client