$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: kqGG+bzasNDch9M3LA9ZwKujX/l/kHQHdnwQO6rdbrs= Subject key identifier: 22:4F:1A:00:A6:4D:3C:51:8D:87:6A:93:08:CA:1B:CC:E4:BD:C0:7C Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01B4 Signing time: Thu 23 Oct 2025 04:19:40 +0000 Manifest this update: Thu 23 Oct 2025 04:19:39 +0000 Manifest next update: Thu 30 Oct 2025 04:19:39 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: T1cTyDDVchyf6XLpIMPfqk8dCReM+JbbDUJqP85ZmWs=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Oct 23 04:19:39 2025 GMT Not After : Oct 30 04:19:39 2025 GMT Subject: CN=68f9acdb-7ece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e2:1d:ff:fd:70:4a:66:c6:c2:f4:50:f3:43: f3:6d:2f:d2:ed:5a:78:b2:00:b2:c4:c4:91:8d:14: fa:cb:3e:db:7f:6e:d3:e3:55:df:49:d0:52:7b:a5: bf:aa:15:91:87:51:44:46:77:03:e8:99:36:f8:77: 05:75:9f:f1:dc:55:75:10:33:c6:65:9b:6c:ce:9b: a5:40:9f:79:02:69:8e:ad:ce:3b:af:39:12:b4:73: b1:52:40:85:d1:8a:2c:8e:cc:f0:68:0d:61:75:24: a5:48:5f:69:01:e4:9e:f8:5d:d6:c3:a8:e3:97:fd: 1c:21:10:7a:fb:07:23:a5:36:69:0c:cd:80:1a:3c: 7d:8c:14:df:22:c8:05:8e:a5:fb:ae:98:25:ac:9e: 83:bb:77:f2:47:17:ad:b2:11:fb:30:1a:c9:fd:04: e9:2d:07:b3:5f:11:4d:f5:a9:6d:e0:25:fc:d2:4b: 69:74:a8:c4:7d:e6:18:94:7d:cd:88:6d:92:63:f9: 1a:df:87:98:a9:90:49:c5:2f:63:f5:ca:a5:e4:ce: db:de:2c:a2:db:54:8c:52:0a:42:cb:1f:44:73:ab: 72:ec:c7:5e:b2:a5:e3:dc:93:21:20:26:f9:ff:78: bc:8d:f1:62:e5:06:f4:fd:63:d0:36:bf:1f:32:c2: 25:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4F:1A:00:A6:4D:3C:51:8D:87:6A:93:08:CA:1B:CC:E4:BD:C0:7C X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f2:0d:78:fc:ef:a4:85:b5:00:66:4d:6b:79:ac:a2:12:b3: 09:a7:e9:37:7b:b6:49:72:85:9c:f5:6a:11:9a:06:44:1b:b5: 6b:c6:9a:c8:09:bc:b8:06:8d:18:95:3b:6e:4d:c7:d5:f7:65: c9:13:95:13:f3:77:db:7c:10:60:38:7f:56:2d:93:bc:14:9b: be:99:66:b6:d9:69:16:07:9e:a8:f8:be:c8:f0:d0:c6:a8:88: d4:33:5b:b1:37:a2:05:56:08:b1:85:7e:0e:d8:f1:c0:4a:7f: 4e:41:32:d6:0a:2c:99:d7:81:45:53:8a:54:22:ab:ed:f8:5a: d9:2a:9b:6b:66:33:7c:8c:a9:45:f9:8a:49:d9:92:0e:03:d3: 5a:32:c5:08:35:d8:7c:61:48:ba:a2:ed:0b:7a:12:2f:16:78: cd:98:87:e6:a8:88:d2:3c:f0:57:9a:63:40:10:5a:a8:c0:ed: 41:02:98:fb:d6:be:7d:ed:97:af:4c:27:b5:cd:3f:91:22:ec: 7c:df:8e:51:2e:32:69:b0:ce:c4:8e:3a:41:0c:21:2b:87:ba: 5b:88:73:e3:cc:16:db:08:b3:4a:d6:eb:8c:bb:c6:e1:21:b8: 42:46:2c:ee:0f:60:b0:38:03:b2:c8:6b:bb:b7:67:54:49:2a: a9:81:61:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMDIzMDQxOTM5WhcNMjUxMDMwMDQxOTM5WjAYMRYwFAYD VQQDEw02OGY5YWNkYi03ZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOId//1wSmbGwvRQ80PzbS/S7Vp4sgCyxMSRjRT6yz7bf27T41XfSdBSe6W/ qhWRh1FERncD6Jk2+HcFdZ/x3FV1EDPGZZtszpulQJ95AmmOrc47rzkStHOxUkCF 0YosjszwaA1hdSSlSF9pAeSe+F3Ww6jjl/0cIRB6+wcjpTZpDM2AGjx9jBTfIsgF jqX7rpglrJ6Du3fyRxetshH7MBrJ/QTpLQezXxFN9alt4CX80ktpdKjEfeYYlH3N iG2SY/ka34eYqZBJxS9j9cql5M7b3iyi21SMUgpCyx9Ec6ty7MdesqXj3JMhICb5 /3i8jfFi5Qb0/WPQNr8fMsIlAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJPGgCm TTxRjYdqkwjKG8zkvcB8MB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB68g14/O+khbUAZk1reayiErMJp+k3e7ZJcoWc9WoRmgZEG7VrxprI Cby4Bo0YlTtuTcfV92XJE5UT83fbfBBgOH9WLZO8FJu+mWa22WkWB56o+L7I8NDG qIjUM1uxN6IFVgixhX4O2PHASn9OQTLWCiyZ14FFU4pUIqvt+FrZKptrZjN8jKlF +YpJ2ZIOA9NaMsUINdh8YUi6ou0LehIvFnjNmIfmqIjSPPBXmmNAEFqowO1BApj7 1r597ZevTCe1zT+RIux8345RLjJpsM7EjjpBDCErh7pbiHPjzBbbCLNK1uuMu8bh IbhCRizuD2CwOAOyyGu7t2dUSSqpgWFz -----END CERTIFICATE-----Generated at Thu Oct 23 20:31:36 2025 by rpki-client