$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: eMWJCXrJ430cVcyBgrdCAzd/QsgQtg7EZf5sjT5OBXE= Subject key identifier: 3E:E4:71:BA:C3:0A:33:A6:6A:FC:5F:6C:5D:52:AE:80:AD:E3:34:B1 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 043E Signing time: Tue 09 Sep 2025 00:19:59 +0000 Manifest this update: Tue 09 Sep 2025 00:19:58 +0000 Manifest next update: Tue 16 Sep 2025 00:19:58 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: lIDdgFVFyiH+KUR1fQae78tQqmGjfEdymgbFaJ+vmgM=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Sep 9 00:19:58 2025 GMT Not After : Sep 16 00:19:58 2025 GMT Subject: CN=68bf72af-c831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:dd:6f:3d:93:d0:28:a1:2b:9f:5b:f2:34:54: cf:6e:f0:bb:7f:8c:ff:c6:72:ae:cf:5b:e5:7a:95: 1a:2a:73:a2:18:e0:04:21:fe:81:ef:1a:9b:bb:e0: 4c:39:e7:a0:64:0c:4d:af:19:3c:8d:f9:1e:64:b9: df:13:d4:02:e8:f7:00:f7:00:10:4d:13:0a:25:07: cd:58:80:55:ac:01:2d:8d:99:b6:ef:1f:e6:d7:55: 49:a7:0e:b2:85:1b:70:01:c6:30:8e:66:bc:63:13: c7:6e:8e:3e:b8:47:86:1d:69:ed:fe:27:9b:d8:29: 3c:b2:17:ae:fb:af:43:f5:ca:e4:f4:0d:b3:7c:8d: f1:56:ff:1a:90:4b:d4:c2:c7:4f:48:16:48:66:e5: 0c:22:12:87:69:7e:1e:98:38:13:39:0a:d0:68:73: 0b:12:76:13:1d:7c:d1:a6:4e:b1:59:36:3f:86:5a: 61:c7:67:b9:95:2a:af:4f:c0:95:ef:e5:08:ec:f0: 54:49:b6:e6:30:f7:ce:b5:62:02:46:83:19:ca:aa: 22:9d:ee:9c:20:db:97:c1:8d:cb:e7:01:9d:b7:e4: 5b:a3:9c:d9:72:b0:89:2f:ba:54:0f:16:fb:2c:57: ed:9b:25:82:ff:7f:dc:a2:20:90:03:cc:be:62:bb: b1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E4:71:BA:C3:0A:33:A6:6A:FC:5F:6C:5D:52:AE:80:AD:E3:34:B1 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:e4:7b:c1:9f:bd:bd:9b:50:05:c0:04:c2:81:51:79:b5:f8: c5:41:31:77:2b:9f:29:81:fb:54:bb:c3:70:3b:a8:26:fe:93: 89:d9:cf:6f:bd:2d:70:88:c4:ae:26:91:cd:0e:e7:bd:bf:95: 89:f6:bf:a1:bd:34:87:1c:a9:c2:b0:05:3e:79:b7:2d:5a:0f: ce:2b:e9:91:45:98:bb:aa:db:d3:37:fe:83:ae:9a:5c:19:8a: 47:fc:a0:24:b0:34:3d:0c:bf:dc:f4:22:b7:c6:b8:b3:34:a5: 52:ea:a6:47:00:66:fe:d1:14:f8:d8:ee:41:21:27:f3:ff:2e: 96:01:e0:8f:80:60:61:d8:01:5c:cc:cd:22:9c:71:f2:d7:21: 29:c3:b4:72:dc:74:ff:a1:68:0d:78:10:f1:f4:c8:80:cf:89: 5d:fd:d0:7f:45:8c:d8:e6:26:60:c8:ec:3d:d4:61:79:0a:0a: 2d:3f:3f:e9:42:f6:72:b2:55:80:e8:06:89:a0:e8:ad:d8:4b: 18:d1:a8:c1:4a:c2:c9:96:0d:17:67:69:2f:ba:d4:88:02:60: 15:c6:a7:05:d0:db:e2:21:57:f3:a5:9b:51:70:85:5a:f9:33: 80:e4:43:86:cb:87:51:af:b6:c2:00:18:f2:d6:90:97:2b:d3: 18:05:6c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwOTA5MDAxOTU4WhcNMjUwOTE2MDAxOTU4WjAYMRYwFAYD VQQDEw02OGJmNzJhZi1jODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3N1vPZPQKKErn1vyNFTPbvC7f4z/xnKuz1vlepUaKnOiGOAEIf6B7xqbu+BM OeegZAxNrxk8jfkeZLnfE9QC6PcA9wAQTRMKJQfNWIBVrAEtjZm27x/m11VJpw6y hRtwAcYwjma8YxPHbo4+uEeGHWnt/ieb2Ck8sheu+69D9crk9A2zfI3xVv8akEvU wsdPSBZIZuUMIhKHaX4emDgTOQrQaHMLEnYTHXzRpk6xWTY/hlphx2e5lSqvT8CV 7+UI7PBUSbbmMPfOtWICRoMZyqoine6cINuXwY3L5wGdt+Rbo5zZcrCJL7pUDxb7 LFftmyWC/3/coiCQA8y+YruxfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7kcbrD CjOmavxfbF1SroCt4zSxMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY5HvBn729m1AFwATCgVF5tfjFQTF3K58pgftUu8NwO6gm/pOJ2c9v vS1wiMSuJpHNDue9v5WJ9r+hvTSHHKnCsAU+ebctWg/OK+mRRZi7qtvTN/6Drppc GYpH/KAksDQ9DL/c9CK3xrizNKVS6qZHAGb+0RT42O5BISfz/y6WAeCPgGBh2AFc zM0inHHy1yEpw7Ry3HT/oWgNeBDx9MiAz4ld/dB/RYzY5iZgyOw91GF5CgotPz/p QvZyslWA6AaJoOit2EsY0ajBSsLJlg0XZ2kvutSIAmAVxqcF0NviIVfzpZtRcIVa +TOA5EOGy4dRr7bCABjy1pCXK9MYBWyh -----END CERTIFICATE-----Generated at Tue Sep 9 07:55:20 2025 by rpki-client