$ rpki-client -vvf rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft File: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft (raw, json) Hash identifier: PG2XHBmNJyK7q5IxWh7+HGBQNwP3MQ0leQch81Qydc8= Subject key identifier: CA:37:ED:CE:3F:9C:2D:77:54:A4:06:0F:8A:46:AD:FB:D5:72:CC:CF Authority key identifier: BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 Certificate issuer: /CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft Manifest number: 01D9 Signing time: Sat 23 Aug 2025 02:51:58 +0000 Manifest this update: Sat 23 Aug 2025 02:51:58 +0000 Manifest next update: Sat 30 Aug 2025 02:51:57 +0000 Files and hashes: 1: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl (hash: cI6Slk7LmyppghthnyxWBHsa3sO1wJ1h7toQM9Yp+Pw=) 2: 9E8DB380B2C611EDBC366A1DC4F9AE02.roa (hash: ztxAi6NVLvlOVRaY5LiA8lZVY+4GBUWq8sHQO2NcSn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189122, serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Validity Not Before: Aug 23 02:51:58 2025 GMT Not After : Aug 30 02:51:57 2025 GMT Subject: CN=68a92cce-3b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:84:4a:eb:14:ad:b0:40:27:40:3b:18:4f:32: 03:96:46:e6:31:88:69:8f:96:4b:6e:8e:f4:2f:75: 0c:89:17:5d:04:83:95:7a:a6:8d:6c:16:20:da:de: cf:e4:08:e9:87:6d:0b:74:ba:29:4f:98:fb:44:08: 59:46:9a:6b:ef:f8:5e:63:35:3f:49:83:e0:cd:28: d6:30:85:97:d2:36:a2:be:b0:85:2f:8d:c5:86:70: c0:a5:08:7f:f3:2b:de:3e:67:1e:75:00:f2:60:6d: 60:a1:71:96:fa:1b:ec:ab:3c:8c:f4:95:99:af:f9: ce:f7:ae:64:a2:8d:72:95:3c:a2:29:a6:4a:4f:fb: 0f:1b:ce:9c:e4:79:e7:b8:76:fc:39:4d:2f:7d:b2: f7:c0:5b:31:5c:5f:a9:1b:26:f2:e2:2c:03:f3:e0: e1:d5:2b:88:35:bd:60:a7:d1:fa:75:00:13:b7:0a: 35:93:80:08:30:e7:cd:e6:0a:9f:5f:58:c1:15:f3: 53:c6:d9:8e:b7:71:e6:7b:26:f5:26:cf:0e:aa:0e: 29:06:c1:fc:b9:9b:41:ac:52:1a:90:4c:bb:63:6e: d2:a7:76:49:b9:a4:d6:33:0c:1e:83:46:b4:ef:06: 11:e9:7b:ef:0f:fa:00:a4:f0:80:80:b8:99:9d:09: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:37:ED:CE:3F:9C:2D:77:54:A4:06:0F:8A:46:AD:FB:D5:72:CC:CF X509v3 Authority Key Identifier: keyid:BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:fb:02:48:21:3a:b8:d2:a5:30:29:16:6b:1e:af:e3:58:d6: 21:cb:eb:a1:c3:1a:2e:38:19:de:08:c9:64:5a:54:b3:e0:82: 22:f4:da:1e:42:ef:90:ac:cb:a9:c1:6a:14:80:4c:07:b4:ba: df:07:f1:2f:14:6c:94:3c:32:91:9d:05:1d:c0:ce:7f:a5:4e: 32:42:0d:0c:77:14:0e:db:98:c6:a3:b3:9f:47:da:9e:5b:bd: 1d:7a:5e:ac:07:25:e3:82:b7:58:30:73:74:2c:e2:4e:b7:54: db:c7:18:d7:a3:01:69:4f:bd:ae:c8:13:2f:0e:ac:25:f6:21: 49:18:0c:0a:20:15:a4:9b:65:b9:ba:05:64:d5:61:82:2e:d7: 25:71:29:b8:54:9e:af:28:71:1a:02:bd:ec:fd:26:73:f6:f1: 5d:2b:75:4f:3c:73:63:de:e4:ba:49:5b:2f:72:53:8d:a0:cf: d4:b9:8f:6c:59:f6:25:3c:ca:98:52:74:ce:18:17:ac:bc:a3: 5c:22:54:4a:e6:74:f3:dc:f4:53:42:9f:eb:95:7c:4f:7b:a2: 12:da:2a:54:9b:5d:4b:ad:10:e3:77:62:85:1b:41:b6:56:3f: 14:14:98:ba:6c:31:af:6b:18:29:f6:85:df:60:34:41:96:f5: a9:c2:7e:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMjIxMTAvBgNVBAUTKEJCNEZBRTg1NTQwQTVBRDlGOTNDQjQ4MkM0NUM5NTc2 RjUyQTNCRjQwHhcNMjUwODIzMDI1MTU4WhcNMjUwODMwMDI1MTU3WjAYMRYwFAYD VQQDEw02OGE5MmNjZS0zYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oRK6xStsEAnQDsYTzIDlkbmMYhpj5ZLbo70L3UMiRddBIOVeqaNbBYg2t7P 5Ajph20LdLopT5j7RAhZRppr7/heYzU/SYPgzSjWMIWX0jaivrCFL43FhnDApQh/ 8yvePmcedQDyYG1goXGW+hvsqzyM9JWZr/nO965koo1ylTyiKaZKT/sPG86c5Hnn uHb8OU0vfbL3wFsxXF+pGyby4iwD8+Dh1SuINb1gp9H6dQATtwo1k4AIMOfN5gqf X1jBFfNTxtmOt3Hmeyb1Js8Oqg4pBsH8uZtBrFIakEy7Y27Sp3ZJuaTWMwweg0a0 7wYR6XvvD/oApPCAgLiZnQkI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMo37c4/ nC13VKQGD4pGrfvVcszPMB8GA1UdIwQYMBaAFLtProVUClrZ+Ty0gsRclXb1Kjv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEyMi8wRkQ0RUY0RUFF RUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0bjVQTFNDeEZ5VmR2VXFP X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UwLXVoVlFLV3RuNVBMU0N4RnlWZHZVcU9fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEyMi8wRkQ0RUY0RUFFRUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0 bjVQTFNDeEZ5VmR2VXFPX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC++wJIITq40qUwKRZrHq/jWNYhy+uhwxouOBneCMlkWlSz4IIi9Noe Qu+QrMupwWoUgEwHtLrfB/EvFGyUPDKRnQUdwM5/pU4yQg0MdxQO25jGo7OfR9qe W70del6sByXjgrdYMHN0LOJOt1TbxxjXowFpT72uyBMvDqwl9iFJGAwKIBWkm2W5 ugVk1WGCLtclcSm4VJ6vKHEaAr3s/SZz9vFdK3VPPHNj3uS6SVsvclONoM/UuY9s WfYlPMqYUnTOGBesvKNcIlRK5nTz3PRTQp/rlXxPe6IS2ipUm11LrRDjd2KFG0G2 Vj8UFJi6bDGvaxgp9oXfYDRBlvWpwn7J -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:44 2025 by rpki-client