$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: qZnzjCL7mo+f3iiSGwnE9YliRLVIwnDiMlhsO9EV/hw= Subject key identifier: A9:41:BB:A0:3A:86:2D:2D:28:A7:AA:B2:49:34:EF:39:76:D2:A6:C4 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 34CB Signing time: Thu 18 Sep 2025 14:47:57 +0000 Manifest this update: Thu 18 Sep 2025 14:47:56 +0000 Manifest next update: Thu 25 Sep 2025 14:47:56 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: bXjGaGcIvCRzBL9VkkRKlhe10IZsT/XClhxYwa3qbWk=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC, serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Sep 18 14:47:56 2025 GMT Not After : Sep 25 14:47:56 2025 GMT Subject: CN=68cc1b9c-dafa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5f:96:26:f8:59:23:e2:9b:f5:17:2a:e6:7e: 58:8c:f4:76:2c:a4:7e:9b:10:d2:55:1d:5e:8c:bb: 17:18:cf:08:e6:51:3d:90:2d:7a:a9:54:88:a5:d0: 41:da:50:06:01:70:5c:72:a9:fb:78:34:f8:99:c0: 88:00:ad:79:fc:a6:0e:a2:e8:63:fc:58:29:8a:79: 44:48:cb:93:20:dc:43:a8:91:53:dc:50:cc:75:a4: 5f:4e:4e:36:dd:16:c1:4d:14:05:f5:2e:92:cf:23: 32:d4:4d:ae:d1:c8:32:94:f5:cd:3e:0f:8a:1a:6a: 20:7b:df:2e:f7:75:14:68:f6:60:83:b2:5b:62:11: 94:ac:e6:cf:e3:42:59:4c:53:7f:c1:05:c2:62:0c: 2c:03:65:31:2c:3a:10:ca:eb:93:d0:df:e0:3a:7f: 58:d9:3e:25:e7:ec:91:5c:be:c4:4f:08:d4:e0:99: ce:17:0a:99:1b:1b:6b:97:39:8b:ee:cb:ae:09:38: 69:a8:f4:c7:56:cf:41:03:48:e9:1d:88:a3:9b:8c: e3:a1:dc:89:07:b1:61:ca:8d:38:f9:8f:84:ca:16: 38:cb:8b:e0:1a:99:d5:9c:44:0e:aa:ac:d6:8e:65: 67:0f:3e:18:4c:c7:89:3d:19:4e:d4:d0:6d:22:02: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:41:BB:A0:3A:86:2D:2D:28:A7:AA:B2:49:34:EF:39:76:D2:A6:C4 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c2:82:73:f1:8f:af:20:71:ed:94:26:c7:81:80:4f:2d:c4: d7:68:cc:04:0f:60:4e:70:28:c0:29:99:d8:ac:3b:80:6a:e5: f0:cc:08:af:86:46:af:94:3e:d4:b6:9c:38:da:a0:bb:a5:60: 7a:15:05:1d:af:af:59:78:02:31:65:c8:5d:b6:84:75:90:4e: 2e:41:ba:bf:14:84:b4:64:51:d1:06:6b:7f:9e:0c:81:7f:e1: 43:32:dd:68:c3:99:6f:b1:d1:4b:2c:f8:f5:80:ca:97:46:06: 64:c6:be:eb:f9:20:57:e3:bf:7b:a9:4d:50:a8:44:17:34:60: 43:73:2f:33:a5:25:f5:40:c6:7a:c1:48:c6:62:21:7d:5b:ef: 33:c8:47:fc:f3:77:7c:df:09:5e:e4:ce:3e:e7:c3:75:82:39: d5:e4:b1:74:6f:af:9d:f4:39:06:a8:07:21:44:f0:c9:f2:f4: 18:34:c3:e0:36:04:b6:75:cc:6a:31:6b:b9:46:f6:79:a2:6d: 7e:15:2c:93:26:57:40:9a:1a:cc:eb:f6:ff:6a:06:ef:6c:b8: 95:c3:fa:f3:2b:31:aa:81:34:33:13:49:76:2a:07:19:56:f6: ff:26:9c:ac:42:fa:45:3f:3b:e9:5e:e8:17:dd:66:0d:38:92: 21:f6:e0:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUwOTE4MTQ0NzU2WhcNMjUwOTI1MTQ0NzU2WjAYMRYwFAYD VQQDEw02OGNjMWI5Yy1kYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmF+WJvhZI+Kb9Rcq5n5YjPR2LKR+mxDSVR1ejLsXGM8I5lE9kC16qVSIpdBB 2lAGAXBccqn7eDT4mcCIAK15/KYOouhj/FgpinlESMuTINxDqJFT3FDMdaRfTk42 3RbBTRQF9S6SzyMy1E2u0cgylPXNPg+KGmoge98u93UUaPZgg7JbYhGUrObP40JZ TFN/wQXCYgwsA2UxLDoQyuuT0N/gOn9Y2T4l5+yRXL7ETwjU4JnOFwqZGxtrlzmL 7suuCThpqPTHVs9BA0jpHYijm4zjodyJB7Fhyo04+Y+EyhY4y4vgGpnVnEQOqqzW jmVnDz4YTMeJPRlO1NBtIgJPkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlBu6A6 hi0tKKeqskk07zl20qbEMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOwoJz8Y+vIHHtlCbHgYBPLcTXaMwED2BOcCjAKZnYrDuAauXwzAiv hkavlD7Utpw42qC7pWB6FQUdr69ZeAIxZchdtoR1kE4uQbq/FIS0ZFHRBmt/ngyB f+FDMt1ow5lvsdFLLPj1gMqXRgZkxr7r+SBX4797qU1QqEQXNGBDcy8zpSX1QMZ6 wUjGYiF9W+8zyEf883d83wle5M4+58N1gjnV5LF0b6+d9DkGqAchRPDJ8vQYNMPg NgS2dcxqMWu5RvZ5om1+FSyTJldAmhrM6/b/agbvbLiVw/rzKzGqgTQzE0l2KgcZ Vvb/JpysQvpFPzvpXugX3WYNOJIh9uAb -----END CERTIFICATE-----Generated at Fri Sep 19 02:14:41 2025 by rpki-client