$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: PirXvmcyhLnsI+xkPB7hgF+IdeZ6pQgv3yBbA8PQWdc= Subject key identifier: DB:CC:4B:45:32:65:62:8F:60:15:DE:C2:F7:DD:53:FF:1D:C1:49:88 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 0118 Signing time: Tue 09 Sep 2025 04:56:54 +0000 Manifest this update: Tue 09 Sep 2025 04:56:54 +0000 Manifest next update: Tue 16 Sep 2025 04:56:54 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: Uvl5z2Az33gHL9Lc4HHmg0Wy6qdifOwTFCiMC+LZZ/w=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Sep 9 04:56:54 2025 GMT Not After : Sep 16 04:56:54 2025 GMT Subject: CN=68bfb396-4241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:6f:ec:44:46:45:15:91:8d:4b:59:ca:43: fc:51:72:30:85:2b:99:ef:26:3b:55:c6:cc:57:0a: be:0f:59:cb:f5:5d:33:13:ec:64:fa:a4:17:48:12: 0a:c2:fe:87:5e:03:7a:d8:cd:ac:e3:9a:1c:06:31: 6e:72:2f:3c:c4:be:db:61:dd:7f:2a:5b:35:7f:3a: b7:07:f3:b0:fa:71:26:83:dc:2c:49:7b:85:e8:7f: bc:37:af:3f:ed:20:98:64:02:f8:e9:41:0d:d4:3b: 09:5e:09:9f:45:5a:bf:d9:87:33:34:2f:f3:6c:70: c1:75:8c:8e:83:eb:d6:e0:52:fb:aa:ea:a0:ba:2d: 2d:14:9c:ad:59:34:04:4a:80:81:4e:d5:49:14:95: b7:71:a1:74:4c:25:1f:5d:b9:ac:77:18:29:6f:22: 8b:53:b9:a1:c7:eb:a4:67:a0:c9:4d:c3:ee:eb:41: 2f:bf:26:7c:8f:17:9b:a6:21:6a:ba:ca:c7:7a:4c: 79:6c:61:26:26:ef:b8:96:43:ed:a3:0b:c9:f7:e7: 9b:7d:5a:ac:ec:e1:9d:8b:b5:c2:d3:b3:2d:f1:79: e3:41:4f:17:04:e2:1c:4a:44:bc:02:63:09:c9:56: 5d:0e:18:29:a3:8b:69:3f:3a:23:47:55:80:a7:da: a8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:CC:4B:45:32:65:62:8F:60:15:DE:C2:F7:DD:53:FF:1D:C1:49:88 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:21:f0:57:86:a5:1f:44:46:db:cc:6d:47:76:cb:8b:36:b1: 47:a2:37:7d:21:87:39:b9:75:0e:27:b0:3e:58:a8:77:fa:8b: 7d:f6:03:15:5d:b0:9d:ad:fe:7f:f0:5b:f8:5c:5d:62:1c:6e: 2f:c6:1f:ad:94:70:b8:9a:2f:9a:86:55:2d:c0:71:ac:89:f7: c3:f8:53:6f:48:32:52:a4:71:52:d3:4a:64:09:d6:85:78:d9: 8d:8b:72:d7:86:25:98:f7:cb:09:08:63:9b:79:6a:20:ad:c4: 88:8c:a8:38:9b:11:5f:e0:64:9b:26:65:ce:ea:d6:d1:6b:af: 88:25:9c:55:bb:c9:9c:e1:91:16:54:02:be:54:f1:c0:38:54: 6b:80:fe:8b:d3:01:e9:8d:48:a8:39:af:ac:f5:04:ff:2b:94: cd:1d:0c:05:81:fa:2a:2a:54:cf:6f:4a:d7:83:c0:a3:01:86: bc:b1:43:e0:59:0c:5b:4c:3b:3a:35:d3:9a:18:a6:52:19:3f: 62:fc:02:98:7f:fe:6b:d4:33:d4:a2:33:0c:92:3d:d1:1e:54: 85:c9:fc:08:a8:18:a7:63:b3:e3:47:2d:c3:3f:db:0d:e5:40: 62:fb:1e:16:56:b4:62:07:9b:45:7d:92:e7:87:71:06:83:bd: 90:6a:5d:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUwOTA5MDQ1NjU0WhcNMjUwOTE2MDQ1NjU0WjAYMRYwFAYD VQQDEw02OGJmYjM5Ni00MjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjRv7ERGRRWRjUtZykP8UXIwhSuZ7yY7VcbMVwq+D1nL9V0zE+xk+qQXSBIK wv6HXgN62M2s45ocBjFuci88xL7bYd1/Kls1fzq3B/Ow+nEmg9wsSXuF6H+8N68/ 7SCYZAL46UEN1DsJXgmfRVq/2YczNC/zbHDBdYyOg+vW4FL7quqgui0tFJytWTQE SoCBTtVJFJW3caF0TCUfXbmsdxgpbyKLU7mhx+ukZ6DJTcPu60EvvyZ8jxebpiFq usrHekx5bGEmJu+4lkPtowvJ9+ebfVqs7OGdi7XC07Mt8XnjQU8XBOIcSkS8AmMJ yVZdDhgpo4tpPzojR1WAp9qoqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvMS0Uy ZWKPYBXewvfdU/8dwUmIMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuIfBXhqUfREbbzG1HdsuLNrFHojd9IYc5uXUOJ7A+WKh3+ot99gMV XbCdrf5/8Fv4XF1iHG4vxh+tlHC4mi+ahlUtwHGsiffD+FNvSDJSpHFS00pkCdaF eNmNi3LXhiWY98sJCGObeWogrcSIjKg4mxFf4GSbJmXO6tbRa6+IJZxVu8mc4ZEW VAK+VPHAOFRrgP6L0wHpjUioOa+s9QT/K5TNHQwFgfoqKlTPb0rXg8CjAYa8sUPg WQxbTDs6NdOaGKZSGT9i/AKYf/5r1DPUojMMkj3RHlSFyfwIqBinY7PjRy3DP9sN 5UBi+x4WVrRiB5tFfZLnh3EGg72Qal2r -----END CERTIFICATE-----Generated at Tue Sep 9 18:29:29 2025 by rpki-client