$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: 9u8/Aj81yA13rYgXiglFG3fAPS0GNz/ydyR23f9X0Is= Subject key identifier: 4C:39:D2:2D:A8:B3:99:BE:47:B6:21:93:ED:4D:52:51:13:36:98:8E Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 20C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 20A3 Signing time: Mon 08 Sep 2025 15:57:21 +0000 Manifest this update: Mon 08 Sep 2025 15:57:20 +0000 Manifest next update: Mon 15 Sep 2025 15:57:20 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: d54u5yPlUs1L1OeILYpvcql3G/EXWxfYcA1+gmzG6xw=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: ebbHAc3H1xs8yb83KOxdepldMzKZEG2KB/oj0PgrPl0=) 3: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (hash: ISWHnAnupcgdEe8p2mboULpSfRcbxX3lISCXNa8ynQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8387 (0x20c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: Sep 8 15:57:20 2025 GMT Not After : Sep 15 15:57:20 2025 GMT Subject: CN=68befce0-6781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:49:2a:d6:0b:6b:84:b9:b3:20:d3:31:b9:b3: f3:d5:5a:fd:00:6d:78:43:52:a5:04:66:fc:f7:9f: be:fa:5f:90:a6:00:90:9d:c1:28:78:cd:45:5d:d5: a5:a5:0a:02:04:09:5f:5a:cc:9c:d9:85:05:63:72: 90:49:67:85:47:09:c9:e6:5a:a4:a1:01:2e:25:87: 08:1d:62:b0:b1:01:83:fe:62:2c:f7:21:ad:ca:27: 5a:50:c1:48:e3:43:40:86:94:0e:8f:20:7e:14:5d: 56:19:c2:42:2b:65:51:4e:d7:16:e9:27:c3:1e:88: 2f:82:15:3e:8c:06:0d:64:7d:12:ab:ef:8a:5c:1e: 82:3f:11:ef:4f:ba:c3:db:87:68:95:c9:8a:fa:9c: f0:b4:94:28:c2:1a:7f:ed:83:4f:d0:06:e2:be:63: 9a:2c:f7:a6:ba:3c:f3:5d:e7:9f:b1:a8:a7:67:5c: dc:a7:2c:c2:ee:29:58:bc:fa:2e:6d:fc:d7:d2:ec: 6e:7e:1c:2a:32:fb:2a:9f:aa:12:41:d3:7f:ed:8a: f8:f8:fc:04:3f:b2:20:86:49:6b:93:8e:2c:62:2e: 40:7a:a5:8d:3c:5e:a9:08:69:c1:62:26:64:b8:21: cb:b4:26:8f:6f:13:19:b1:c3:cd:40:24:9b:8a:e6: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:39:D2:2D:A8:B3:99:BE:47:B6:21:93:ED:4D:52:51:13:36:98:8E X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:d0:23:6a:8b:46:9f:84:6b:24:2d:e2:6c:69:6e:60:3c:98: b1:fd:48:ea:37:3e:52:7f:74:7a:80:f1:3e:19:ce:39:0e:53: 66:67:c1:a7:2d:49:28:c5:f6:7f:42:3b:85:1c:66:6b:c4:7f: 5b:6d:0c:26:51:52:b7:42:17:16:b2:14:11:0d:1e:35:4a:94: cd:b4:cc:62:84:a8:a3:6b:c0:8d:ee:2b:50:c7:de:83:01:d7: 82:8a:3b:cc:39:9e:35:c9:17:2d:90:76:55:96:82:b0:e2:cb: 4a:cf:c3:b3:5c:0c:17:b8:5c:9e:09:c8:cc:06:14:25:a2:54: b3:d3:75:a2:82:4c:bc:aa:c8:d4:a4:21:f2:a7:3f:c0:ad:25: 61:58:fe:c0:0d:43:c0:f7:2a:88:c0:0c:1b:74:d9:2f:d4:d1: dc:3e:53:6c:dd:dc:b0:b6:7b:79:6f:f7:8f:45:5a:71:d1:a9: f7:b8:1f:58:c1:b1:ea:8c:52:26:25:ea:f8:53:3d:2b:e6:48: 15:b3:c9:c1:60:8a:19:79:c6:d0:ed:bf:8d:a3:98:d4:cb:8c: f7:f4:a0:df:59:cd:e8:7c:d2:66:2b:0c:04:5b:e4:fc:f8:40: a3:5b:d9:86:0c:a3:d4:c8:a1:33:b7:18:79:1f:6e:4e:7d:58: 4b:d6:6a:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjUwOTA4MTU1NzIwWhcNMjUwOTE1MTU1NzIwWjAYMRYwFAYD VQQDEw02OGJlZmNlMC02NzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ekq1gtrhLmzINMxubPz1Vr9AG14Q1KlBGb895+++l+QpgCQncEoeM1FXdWl pQoCBAlfWsyc2YUFY3KQSWeFRwnJ5lqkoQEuJYcIHWKwsQGD/mIs9yGtyidaUMFI 40NAhpQOjyB+FF1WGcJCK2VRTtcW6SfDHogvghU+jAYNZH0Sq++KXB6CPxHvT7rD 24dolcmK+pzwtJQowhp/7YNP0AbivmOaLPemujzzXeefsainZ1zcpyzC7ilYvPou bfzX0uxufhwqMvsqn6oSQdN/7Yr4+PwEP7Ighklrk44sYi5AeqWNPF6pCGnBYiZk uCHLtCaPbxMZscPNQCSbiuaKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEw50i2o s5m+R7Yhk+1NUlETNpiOMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB70CNqi0afhGskLeJsaW5gPJix/UjqNz5Sf3R6gPE+Gc45DlNmZ8Gn LUkoxfZ/QjuFHGZrxH9bbQwmUVK3QhcWshQRDR41SpTNtMxihKija8CN7itQx96D AdeCijvMOZ41yRctkHZVloKw4stKz8OzXAwXuFyeCcjMBhQlolSz03Wigky8qsjU pCHypz/ArSVhWP7ADUPA9yqIwAwbdNkv1NHcPlNs3dywtnt5b/ePRVpx0an3uB9Y wbHqjFImJer4Uz0r5kgVs8nBYIoZecbQ7b+No5jUy4z39KDfWc3ofNJmKwwEW+T8 +ECjW9mGDKPUyKEztxh5H25OfVhL1mrF -----END CERTIFICATE-----Generated at Tue Sep 9 07:15:03 2025 by rpki-client