$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: J5I1sdR2zU+EK+UzWnzTC3Wsu/+HZabr2RikK7nwKKw= Subject key identifier: 65:7D:56:09:37:21:18:00:1C:45:FE:5A:EC:9E:E6:71:EB:FD:3E:D9 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0197 Signing time: Mon 25 Aug 2025 03:17:54 +0000 Manifest this update: Mon 25 Aug 2025 03:17:54 +0000 Manifest next update: Mon 01 Sep 2025 03:17:54 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: vhNOvOwKaDYG/EKr2uebSb+iXIsI+yGT42mPfA0VDjA=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 03:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Aug 25 03:17:54 2025 GMT Not After : Sep 1 03:17:54 2025 GMT Subject: CN=68abd5e2-9717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d3:c2:91:7e:c8:63:bd:73:81:40:b8:d9:42: 3e:50:fd:64:56:36:e0:0d:66:78:f7:dd:69:6f:4b: d4:b8:9a:f1:e7:6e:10:54:29:aa:75:48:54:15:4a: e9:c2:b9:a8:ad:f0:ad:23:0a:1d:5e:f6:d0:88:57: 7b:ae:1b:aa:b5:55:86:e9:68:02:aa:39:4b:2d:bb: 74:54:b2:f7:69:f2:7e:97:ed:29:93:3a:1c:4b:1e: 71:66:7d:2f:27:a0:4b:79:f7:b0:f7:ea:1b:c5:93: b3:4c:64:ba:4a:5b:9b:80:3c:c0:aa:4b:f8:5b:64: c5:42:1d:5d:5d:33:b0:76:c6:b2:e4:5e:37:71:56: 91:1d:a7:8a:0b:66:7e:ed:dc:6d:73:6c:45:72:3e: 7d:a0:1c:f9:e9:6e:b3:bb:7a:56:48:d5:9b:36:aa: de:14:35:b4:d1:17:c4:68:61:ed:18:1d:20:8f:52: da:a6:a3:8e:17:b6:b9:71:59:57:48:14:74:49:ae: 8f:d2:e3:a6:51:8d:ba:4f:c4:ff:ab:dd:d5:f6:6d: bf:3a:4f:a8:36:3b:e5:31:53:93:99:66:50:71:8e: 05:ed:0d:33:c8:d1:e9:a3:08:46:f4:7b:c1:f0:31: 98:61:97:70:58:ed:0e:e7:c9:9c:ae:61:52:7e:b9: b4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7D:56:09:37:21:18:00:1C:45:FE:5A:EC:9E:E6:71:EB:FD:3E:D9 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:4c:c7:72:b4:f5:07:10:36:c7:fc:ff:d3:12:13:bd:52:29: 5a:b8:e0:b7:d4:36:fb:ac:57:c2:8e:f2:af:72:e9:34:0e:94: 22:3a:63:ca:e7:0f:e2:3b:33:39:c3:35:90:76:5a:d0:18:7d: 85:34:e6:9f:4d:68:96:2e:40:90:5a:c0:a0:4b:c1:04:05:32: a2:56:03:fb:2f:fe:4e:6d:15:5a:1e:15:ef:77:f1:f7:28:44: 11:37:c2:1b:26:cb:08:49:68:e7:80:83:c2:9d:90:b7:73:fc: 8e:17:ba:6f:7b:f8:8b:76:9c:ee:36:78:2b:28:25:ec:e4:58: 42:cd:33:83:85:57:22:5d:9e:24:fb:ee:2e:4d:cf:d2:40:dc: e5:fa:5c:98:bd:20:9a:53:8a:20:04:fe:de:bc:9f:04:33:39: 50:3b:20:b4:9e:6d:a1:3c:af:d4:4f:89:70:63:0d:c9:ed:30: 1e:b0:9d:ee:3b:26:38:c3:bf:24:eb:42:74:96:98:c3:48:a3: 33:89:b8:e9:a0:54:d0:5e:80:e2:5b:86:53:60:ac:a6:8f:cf: c7:f8:38:32:6f:9d:ba:3b:87:c4:91:31:2e:e8:68:c6:84:d0: 0f:06:e1:2e:f7:fa:2d:4e:e4:a6:36:fa:4c:4d:a5:dd:48:6d: 3d:40:f7:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwODI1MDMxNzU0WhcNMjUwOTAxMDMxNzU0WjAYMRYwFAYD VQQDEw02OGFiZDVlMi05NzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNPCkX7IY71zgUC42UI+UP1kVjbgDWZ4991pb0vUuJrx524QVCmqdUhUFUrp wrmorfCtIwodXvbQiFd7rhuqtVWG6WgCqjlLLbt0VLL3afJ+l+0pkzocSx5xZn0v J6BLefew9+obxZOzTGS6SlubgDzAqkv4W2TFQh1dXTOwdsay5F43cVaRHaeKC2Z+ 7dxtc2xFcj59oBz56W6zu3pWSNWbNqreFDW00RfEaGHtGB0gj1LapqOOF7a5cVlX SBR0Sa6P0uOmUY26T8T/q93V9m2/Ok+oNjvlMVOTmWZQcY4F7Q0zyNHpowhG9HvB 8DGYYZdwWO0O58mcrmFSfrm0iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGV9Vgk3 IRgAHEX+Wuye5nHr/T7ZMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCTMdytPUHEDbH/P/TEhO9UilauOC31Db7rFfCjvKvcuk0DpQiOmPK 5w/iOzM5wzWQdlrQGH2FNOafTWiWLkCQWsCgS8EEBTKiVgP7L/5ObRVaHhXvd/H3 KEQRN8IbJssISWjngIPCnZC3c/yOF7pve/iLdpzuNngrKCXs5FhCzTODhVciXZ4k ++4uTc/SQNzl+lyYvSCaU4ogBP7evJ8EMzlQOyC0nm2hPK/UT4lwYw3J7TAesJ3u OyY4w78k60J0lpjDSKMzibjpoFTQXoDiW4ZTYKymj8/H+Dgyb526O4fEkTEu6GjG hNAPBuEu9/otTuSmNvpMTaXdSG09QPeZ -----END CERTIFICATE-----Generated at Tue Aug 26 02:54:52 2025 by rpki-client