$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: bcJs7af9R0auAFevhOo5zpYjy7Cb3mtXGen2FexLiQk= Subject key identifier: 54:4E:95:C4:9E:89:1A:70:E6:97:1C:A3:87:20:E1:69:F8:9B:08:AC Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 04D4 Signing time: Sun 07 Sep 2025 00:10:34 +0000 Manifest this update: Sun 07 Sep 2025 00:10:34 +0000 Manifest next update: Sun 14 Sep 2025 00:10:34 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: /JMVUt8E8xW1dCEtt9cgpMK65oBPVoBCVXh/kdLhayQ=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Sep 7 00:10:34 2025 GMT Not After : Sep 14 00:10:34 2025 GMT Subject: CN=68bccd7a-264c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e4:28:16:77:d0:b5:db:17:24:97:14:99:ca: 01:a6:43:00:b9:ff:b5:86:1e:90:fd:fb:c6:3b:8a: 36:f5:59:cb:76:de:26:0c:c9:13:aa:e6:fd:65:3e: fc:b1:12:57:17:ce:f7:65:20:31:25:a9:8c:95:9b: 57:70:5b:af:ef:eb:b8:84:3e:25:cf:14:91:e5:22: 05:43:14:64:bb:9a:f1:08:3b:35:30:be:41:6d:91: 10:cb:79:a9:49:e1:2d:91:fa:6c:bb:a4:cf:be:20: bd:5d:b7:16:73:c4:4d:47:56:71:b7:c3:11:cc:f4: 05:99:1d:9c:58:75:68:dc:e7:be:36:08:80:5e:46: 08:80:8c:5e:96:5d:ad:1c:75:c2:38:13:88:fb:4e: ef:5a:de:c4:f4:82:45:0f:9d:33:46:34:c8:84:0d: a1:24:16:d2:dd:90:e8:88:c2:d1:bb:3a:a6:8e:b7: a7:88:c3:5b:df:de:d1:80:ef:34:d7:7d:60:a8:62: 8d:23:70:44:05:b7:ee:40:ae:86:92:a5:c9:ea:da: 7e:5a:bf:61:3c:75:10:cd:d1:b1:51:a5:e8:21:7b: 8a:75:56:63:e3:f5:03:e4:46:a8:bd:37:29:26:4e: 74:0b:4a:b3:65:88:d5:1a:7b:dd:8f:49:b9:76:ad: fc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4E:95:C4:9E:89:1A:70:E6:97:1C:A3:87:20:E1:69:F8:9B:08:AC X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:87:a4:dc:ed:e4:66:7e:02:d2:88:6c:14:02:a1:16:1b:1d: f0:f9:a7:bc:e8:5c:f8:3a:a4:96:89:b4:4c:9a:ba:9a:48:8b: e5:4c:34:80:9e:84:25:3a:6e:5e:fd:f2:07:2c:03:c1:55:3e: 7f:33:33:04:56:ba:a2:f0:3c:6b:9a:f2:24:c1:e3:ba:5e:06: 61:ef:41:d9:60:3b:14:a7:db:19:d8:03:7c:78:b8:46:c2:be: c0:4f:27:5f:1a:da:9f:fb:09:8e:c0:ec:c1:f1:12:5a:7b:70: a1:f9:f5:6c:30:6e:21:6a:69:6d:7e:17:b4:7c:62:6a:be:6f: ac:31:79:9f:6a:68:cb:89:2f:60:d9:a4:3f:48:1c:48:48:a7: 3f:56:54:00:45:b3:54:ca:cc:3f:98:a6:e7:c6:05:d8:e6:c5: e3:19:57:4d:9b:03:a6:77:19:11:4c:48:4e:28:cf:44:76:41: 74:3e:6f:a3:0d:fe:fc:20:48:a0:d5:fe:55:76:b0:c4:b8:da: 55:ec:f8:7f:e1:0f:5a:ce:77:1b:8d:af:be:39:2d:35:87:48: 2a:64:4e:af:6b:9e:5d:6f:f3:dc:9d:e9:b5:3c:87:2e:fc:50: 46:12:27:c9:0a:e1:b0:9e:a9:6b:7f:41:59:75:9c:3d:af:c6: b7:19:79:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUwOTA3MDAxMDM0WhcNMjUwOTE0MDAxMDM0WjAYMRYwFAYD VQQDEw02OGJjY2Q3YS0yNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OQoFnfQtdsXJJcUmcoBpkMAuf+1hh6Q/fvGO4o29VnLdt4mDMkTqub9ZT78 sRJXF873ZSAxJamMlZtXcFuv7+u4hD4lzxSR5SIFQxRku5rxCDs1ML5BbZEQy3mp SeEtkfpsu6TPviC9XbcWc8RNR1Zxt8MRzPQFmR2cWHVo3Oe+NgiAXkYIgIxell2t HHXCOBOI+07vWt7E9IJFD50zRjTIhA2hJBbS3ZDoiMLRuzqmjreniMNb397RgO80 131gqGKNI3BEBbfuQK6GkqXJ6tp+Wr9hPHUQzdGxUaXoIXuKdVZj4/UD5EaovTcp Jk50C0qzZYjVGnvdj0m5dq38TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFROlcSe iRpw5pcco4cg4Wn4mwisMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBph6Tc7eRmfgLSiGwUAqEWGx3w+ae86Fz4OqSWibRMmrqaSIvlTDSA noQlOm5e/fIHLAPBVT5/MzMEVrqi8DxrmvIkweO6XgZh70HZYDsUp9sZ2AN8eLhG wr7ATydfGtqf+wmOwOzB8RJae3Ch+fVsMG4hamltfhe0fGJqvm+sMXmfamjLiS9g 2aQ/SBxISKc/VlQARbNUysw/mKbnxgXY5sXjGVdNmwOmdxkRTEhOKM9EdkF0Pm+j Df78IEig1f5VdrDEuNpV7Ph/4Q9azncbja++OS01h0gqZE6va55db/Pcnem1PIcu /FBGEifJCuGwnqlrf0FZdZw9r8a3GXkE -----END CERTIFICATE-----Generated at Mon Sep 8 21:38:31 2025 by rpki-client