$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: VlffKcI0UiAkC6zETONkIqdPQVFqoet/FiCR4zPauEQ= Subject key identifier: 5A:23:2F:F7:82:DC:FE:EB:3D:AF:EF:C5:1E:E9:B6:83:97:C8:17:AB Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 34B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 34AB Signing time: Fri 18 Jul 2025 14:47:14 +0000 Manifest this update: Fri 18 Jul 2025 14:47:14 +0000 Manifest next update: Fri 25 Jul 2025 14:47:14 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: SQXphyCRhcmIpmnlTFnfDmotqTZxGHjwJqQfmSSjhdE=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC, serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Jul 18 14:47:14 2025 GMT Not After : Jul 25 14:47:14 2025 GMT Subject: CN=687a5e72-ef18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a0:28:ba:9f:16:e6:c3:29:a2:85:03:38:21: 63:1a:83:84:41:ae:a4:3d:64:c7:55:a1:71:c2:0a: 0e:22:86:3c:ca:0e:e7:f4:30:4a:81:49:1f:3c:2d: 70:0e:65:a6:e8:c0:5c:7e:d3:21:43:e0:31:97:32: 93:1a:65:13:ee:04:bf:66:3e:34:3a:1d:62:8c:09: e6:51:15:8f:f8:19:ba:2a:47:fd:db:45:34:59:da: 5d:47:e7:01:b5:29:66:60:f1:c0:80:28:a4:c3:5a: d3:16:eb:59:5e:ce:df:95:e7:49:1e:2e:57:6c:bb: 54:3b:44:48:db:fb:e7:17:77:4c:cb:71:cd:b0:7f: 73:b1:4d:b2:4a:b8:e9:ea:73:d2:33:72:e2:59:58: 1d:bc:4d:c9:67:c6:6e:d2:8f:9a:2b:95:96:88:a7: af:d8:49:1f:d3:8a:f2:6c:d7:1d:34:5c:51:0c:78: c3:3a:21:ef:bc:45:9d:00:7c:e4:39:b2:a4:92:b0: 26:d0:95:b8:a4:ff:f1:e4:d2:17:68:6b:ef:b4:08: 63:59:a9:45:46:38:31:33:f6:7b:63:3d:97:f8:d5: 67:d7:e3:91:9c:5f:fc:50:3e:3d:f4:a5:65:19:09: a9:be:f7:ed:de:c0:3b:d4:55:a1:d6:6a:a7:cb:6f: e9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:23:2F:F7:82:DC:FE:EB:3D:AF:EF:C5:1E:E9:B6:83:97:C8:17:AB X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:35:af:7a:1b:d6:a8:f7:ba:cb:97:a7:69:64:5e:3e:46:04: 83:b4:c8:c7:78:e9:99:03:47:8e:3b:0a:69:8b:aa:15:59:be: dd:3b:5d:e4:8b:cd:12:58:27:f9:ee:30:1a:e1:1f:a3:ef:df: ec:e3:c3:c5:7d:67:2c:8a:98:d9:2e:bc:2a:14:d6:b8:1a:d2: 9c:67:d0:b5:d6:d9:66:9a:f0:94:6e:66:86:03:c7:f3:7d:7d: d2:fc:85:a5:08:5b:50:f6:33:a9:d0:9b:e5:5c:a4:2c:90:38: 09:62:21:3e:53:18:df:80:f7:11:60:bd:c9:24:5d:f3:20:5c: 66:8a:0a:ee:eb:48:83:52:63:e3:74:6c:46:03:33:af:24:c6: c1:bb:f1:78:76:c9:ba:70:ac:70:b0:cb:b2:b1:2a:a8:a9:59: a4:13:b1:a3:65:40:a8:35:5f:20:9c:a9:57:a2:24:1b:0b:6c: 4a:84:e1:a3:f6:bf:4e:25:53:36:fb:9b:15:a7:eb:01:b7:93: 59:25:7f:88:b0:62:f6:9a:98:2d:93:88:ed:cf:d7:d7:06:12: d1:65:5d:f3:2f:bf:e2:6c:bc:c3:54:a1:a5:ed:a8:26:f6:ab: 04:46:03:f7:58:d2:f9:7d:d5:2f:5b:a2:a9:ad:6a:97:3f:38: 4d:3e:17:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUwNzE4MTQ0NzE0WhcNMjUwNzI1MTQ0NzE0WjAYMRYwFAYD VQQDEw02ODdhNWU3Mi1lZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmaAoup8W5sMpooUDOCFjGoOEQa6kPWTHVaFxwgoOIoY8yg7n9DBKgUkfPC1w DmWm6MBcftMhQ+AxlzKTGmUT7gS/Zj40Oh1ijAnmURWP+Bm6Kkf920U0WdpdR+cB tSlmYPHAgCikw1rTFutZXs7fledJHi5XbLtUO0RI2/vnF3dMy3HNsH9zsU2ySrjp 6nPSM3LiWVgdvE3JZ8Zu0o+aK5WWiKev2Ekf04rybNcdNFxRDHjDOiHvvEWdAHzk ObKkkrAm0JW4pP/x5NIXaGvvtAhjWalFRjgxM/Z7Yz2X+NVn1+ORnF/8UD499KVl GQmpvvft3sA71FWh1mqny2/pewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFojL/eC 3P7rPa/vxR7ptoOXyBerMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjNa96G9ao97rLl6dpZF4+RgSDtMjHeOmZA0eOOwppi6oVWb7dO13k i80SWCf57jAa4R+j79/s48PFfWcsipjZLrwqFNa4GtKcZ9C11tlmmvCUbmaGA8fz fX3S/IWlCFtQ9jOp0JvlXKQskDgJYiE+UxjfgPcRYL3JJF3zIFxmigru60iDUmPj dGxGAzOvJMbBu/F4dsm6cKxwsMuysSqoqVmkE7GjZUCoNV8gnKlXoiQbC2xKhOGj 9r9OJVM2+5sVp+sBt5NZJX+IsGL2mpgtk4jtz9fXBhLRZV3zL7/ibLzDVKGl7agm 9qsERgP3WNL5fdUvW6KprWqXPzhNPhcU -----END CERTIFICATE-----Generated at Sun Jul 20 04:00:29 2025 by rpki-client