$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: WfRXOdP1a1p3B5JsuZbur2+Rx408pJPbyXQd8k0x13Q= Subject key identifier: BC:DC:C8:A6:DD:64:61:BE:EF:A8:D2:17:5E:FB:51:42:44:D4:A3:8A Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 0274 Signing time: Fri 19 Sep 2025 02:09:42 +0000 Manifest this update: Fri 19 Sep 2025 02:09:41 +0000 Manifest next update: Fri 26 Sep 2025 02:09:41 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: Z3ds2zfVcTtfCjmgSeGn/Z/tF/xTGnl2imM6uXFBV7g=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: J01BFnUaU0xtnZuM7Va9qQmT/vUQNXlVHCchEwi5LNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Sep 19 02:09:41 2025 GMT Not After : Sep 26 02:09:41 2025 GMT Subject: CN=68ccbb65-1406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:16:da:2c:5a:0e:9d:7d:97:00:ba:f0:ee:f7: b8:40:38:1f:ec:7a:b2:41:a2:98:ca:fc:14:0f:0b: 58:ae:96:69:b5:48:85:1a:c3:13:6e:80:94:9c:fa: ff:85:42:75:38:9c:15:89:80:59:e4:a8:97:27:03: 50:f2:34:b5:9d:8d:9b:48:c5:f6:a6:51:75:4d:07: b9:ff:ee:49:2f:71:0d:d6:8e:e7:63:24:34:b3:9e: 1d:b3:95:c8:00:4c:80:c7:fe:3d:bd:6e:2b:d5:8a: 2b:db:5f:97:19:3d:8b:f0:ff:ce:14:d3:8d:23:29: ac:f2:f3:6f:3e:3c:b0:5e:f0:69:bc:d5:17:ca:17: fe:1a:3d:e5:22:d6:46:44:12:8b:21:1a:db:65:af: f8:4d:f3:90:a3:7b:6a:2b:bf:60:77:59:09:6c:b4: 49:65:ca:00:12:6f:dc:15:e7:9f:af:15:31:aa:81: d3:af:2a:ab:f6:c4:02:79:18:b1:53:ca:a5:ae:75: d2:df:25:e5:6a:a7:68:85:bf:1a:26:4e:fc:82:8d: 44:38:83:07:ce:e4:c0:07:99:31:38:c0:e0:90:64: 4c:6a:b0:fa:34:42:86:e6:b5:d7:8c:b5:03:67:f2: 57:69:06:f8:d5:f7:1c:2d:ae:4d:c1:b1:7e:35:43: 3d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DC:C8:A6:DD:64:61:BE:EF:A8:D2:17:5E:FB:51:42:44:D4:A3:8A X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:49:d6:6a:f6:24:cb:0a:7a:59:7f:eb:4d:d4:da:35:53:40: ed:00:3b:db:fe:d0:9f:cc:6e:2c:35:5b:46:b8:e9:df:22:73: ef:fd:ee:78:a2:40:54:f5:e9:e6:4c:96:e4:f0:3a:1c:10:79: 6d:92:0f:3f:37:ef:e0:d6:c8:7a:14:69:cd:9b:bc:46:8c:fd: 06:12:d4:08:c5:70:29:18:9d:5a:99:f7:35:fa:23:21:41:e4: b1:62:e8:fd:21:83:3a:ce:e0:ac:bd:ec:27:7b:32:70:67:68: 88:66:fc:27:52:f0:55:91:c4:1c:54:67:a6:de:12:55:a9:79: e8:43:e0:eb:dc:d3:5d:b1:5d:9a:34:ca:70:0c:8d:2f:10:e0: d8:68:47:47:c4:cc:2d:db:03:67:86:da:43:21:ce:08:c3:7f: ad:e1:9a:a3:e8:c0:36:4a:39:3d:d8:db:65:32:c6:5c:ab:2e: c9:2b:ac:6b:a3:1a:08:3d:e3:6b:cb:b5:43:ff:ad:16:d2:5a: 38:27:32:96:a9:90:a0:79:aa:c7:bb:76:f9:9a:9f:bd:b0:89: 2a:d2:49:bb:74:6d:eb:a2:3c:42:a0:76:8d:cb:ef:55:f8:5a: 20:5a:11:01:3f:e9:8d:28:59:83:34:b7:8f:50:8e:55:fd:85: aa:62:b4:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwOTE5MDIwOTQxWhcNMjUwOTI2MDIwOTQxWjAYMRYwFAYD VQQDEw02OGNjYmI2NS0xNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlxbaLFoOnX2XALrw7ve4QDgf7HqyQaKYyvwUDwtYrpZptUiFGsMTboCUnPr/ hUJ1OJwViYBZ5KiXJwNQ8jS1nY2bSMX2plF1TQe5/+5JL3EN1o7nYyQ0s54ds5XI AEyAx/49vW4r1Yor21+XGT2L8P/OFNONIyms8vNvPjywXvBpvNUXyhf+Gj3lItZG RBKLIRrbZa/4TfOQo3tqK79gd1kJbLRJZcoAEm/cFeefrxUxqoHTryqr9sQCeRix U8qlrnXS3yXlaqdohb8aJk78go1EOIMHzuTAB5kxOMDgkGRMarD6NEKG5rXXjLUD Z/JXaQb41fccLa5NwbF+NUM9ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzcyKbd ZGG+76jSF177UUJE1KOKMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7SdZq9iTLCnpZf+tN1No1U0DtADvb/tCfzG4sNVtGuOnfInPv/e54 okBU9enmTJbk8DocEHltkg8/N+/g1sh6FGnNm7xGjP0GEtQIxXApGJ1amfc1+iMh QeSxYuj9IYM6zuCsvewnezJwZ2iIZvwnUvBVkcQcVGem3hJVqXnoQ+Dr3NNdsV2a NMpwDI0vEODYaEdHxMwt2wNnhtpDIc4Iw3+t4Zqj6MA2Sjk92NtlMsZcqy7JK6xr oxoIPeNry7VD/60W0lo4JzKWqZCgearHu3b5mp+9sIkq0km7dG3rojxCoHaNy+9V +FogWhEBP+mNKFmDNLePUI5V/YWqYrTC -----END CERTIFICATE-----Generated at Fri Sep 19 05:28:40 2025 by rpki-client