$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft File: uYUInIuVHhACl2u9XU0d0kGB8Z8.mft (raw, json) Hash identifier: zEl35mTo9Ap5ZndCgH1XhZu9yQV/RQ+4df09KFsKZzY= Subject key identifier: D0:A7:D5:C7:43:FF:7D:BF:9A:7C:B2:7F:9C:29:E3:7F:26:0D:6F:C9 Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft Manifest number: 05FA Signing time: Thu 18 Sep 2025 23:13:33 +0000 Manifest this update: Thu 18 Sep 2025 23:13:33 +0000 Manifest next update: Thu 25 Sep 2025 23:13:33 +0000 Files and hashes: 1: uYUInIuVHhACl2u9XU0d0kGB8Z8.crl (hash: eD59T//nrN9qlkLdTxqf2lAyxx5IsXNQj8UlQC3OHA4=) 2: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (hash: hkJ88WsZE+BHMinN6yfbuiaAGQUAch41Smzi5V2G9DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C, serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Sep 18 23:13:33 2025 GMT Not After : Sep 25 23:13:33 2025 GMT Subject: CN=68cc921d-2c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f4:87:a3:fa:3d:72:12:5a:08:cf:f6:62:ad: 9d:b0:7f:ab:13:c3:c4:9e:96:fc:1b:9f:d2:5e:d5: 8b:a0:83:1d:e8:5f:eb:bf:16:75:21:10:d3:11:0b: 76:3f:1a:9e:d1:2a:6b:48:1d:f3:a2:da:2a:a6:67: a1:25:6d:37:a3:44:77:92:d1:50:89:96:e1:cc:68: 4b:f2:c2:a2:2a:d5:e0:60:1c:94:8e:6f:d1:7c:03: ad:43:fa:f0:a5:91:4e:38:f0:c6:09:d8:f6:31:ca: 6e:a0:7c:ca:8b:05:0b:f3:e6:31:d5:34:1e:81:12: 5b:01:fc:76:cb:45:1d:aa:9e:aa:17:7c:45:19:04: 36:f7:1a:d2:36:05:a5:78:c7:57:46:6d:ae:cc:f6: f1:4a:3d:15:28:d7:67:36:92:36:dd:03:ec:17:0a: 05:81:39:5d:c2:00:ac:6c:e9:24:30:18:9e:9c:c7: 02:12:00:34:a9:bf:ff:60:ca:a1:2d:b2:fe:df:08: 92:97:34:e9:af:eb:49:d3:73:cf:f7:eb:db:d2:96: df:ad:c9:49:58:89:a9:b9:bb:e2:10:4c:a5:60:72: 22:ed:5a:bb:58:08:13:98:c4:ff:9a:bb:17:4a:3f: f7:99:1f:e4:86:33:4a:31:db:e4:8b:1e:bb:b9:5c: 3f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A7:D5:C7:43:FF:7D:BF:9A:7C:B2:7F:9C:29:E3:7F:26:0D:6F:C9 X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:83:a0:8c:36:e6:0e:90:a4:af:1b:a7:ba:2d:28:53:9b:94: 0b:2c:5e:9e:d9:7b:62:25:b6:17:88:61:5d:74:b2:66:da:b5: e0:aa:3a:8a:8e:e3:85:b7:fa:54:82:cb:37:09:d8:f4:99:e0: cf:f5:4f:dc:c3:b0:44:d3:8d:65:80:65:44:03:d3:1a:a2:9a: 5a:41:5b:a7:e1:c0:2d:df:ac:6d:fb:77:8f:82:36:af:4a:6e: 54:f7:2d:02:98:93:f9:32:13:6a:75:9f:ca:3e:40:22:10:27: cc:e0:7c:4d:a2:68:db:31:3b:03:3e:8c:ef:b2:e6:b9:5e:60: 9f:14:91:d3:78:6f:d5:b4:ff:98:f1:d5:ba:22:1c:a5:3f:28: ea:ef:b8:8f:b5:9d:39:a3:b4:80:d1:57:1c:d4:21:b5:21:34: 95:d8:d1:ce:29:dc:87:7d:1d:a8:8d:5c:32:2e:df:e3:fd:f7: bb:fe:25:72:64:8d:0e:a4:96:b8:e2:12:c2:7e:dd:bf:af:bc: 92:94:13:c2:5a:73:4a:8f:78:49:e9:2a:f8:e1:4a:59:29:28: aa:91:5d:07:1c:43:de:d3:41:71:80:1d:53:c8:0d:8f:b2:f2: 97:08:fb:69:3b:a6:9f:97:57:70:d0:1c:ff:c8:03:86:54:0f: 7f:64:1a:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjUwOTE4MjMxMzMzWhcNMjUwOTI1MjMxMzMzWjAYMRYwFAYD VQQDEw02OGNjOTIxZC0yYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fSHo/o9chJaCM/2Yq2dsH+rE8PEnpb8G5/SXtWLoIMd6F/rvxZ1IRDTEQt2 Pxqe0SprSB3zotoqpmehJW03o0R3ktFQiZbhzGhL8sKiKtXgYByUjm/RfAOtQ/rw pZFOOPDGCdj2McpuoHzKiwUL8+Yx1TQegRJbAfx2y0Udqp6qF3xFGQQ29xrSNgWl eMdXRm2uzPbxSj0VKNdnNpI23QPsFwoFgTldwgCsbOkkMBienMcCEgA0qb//YMqh LbL+3wiSlzTpr+tJ03PP9+vb0pbfrclJWImpubviEEylYHIi7Vq7WAgTmMT/mrsX Sj/3mR/khjNKMdvkix67uVw/RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCn1cdD /32/mnyyf5wp438mDW/JMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0EzQy9EODM2NDZGRUMxRjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1Vkho QUNsMnU5WFUwZDBrR0I4WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACg6CMNuYOkKSvG6e6LShTm5QLLF6e2XtiJbYXiGFddLJm2rXgqjqK juOFt/pUgss3Cdj0meDP9U/cw7BE041lgGVEA9MaoppaQVun4cAt36xt+3ePgjav Sm5U9y0CmJP5MhNqdZ/KPkAiECfM4HxNomjbMTsDPozvsua5XmCfFJHTeG/VtP+Y 8dW6IhylPyjq77iPtZ05o7SA0Vcc1CG1ITSV2NHOKdyHfR2ojVwyLt/j/fe7/iVy ZI0OpJa44hLCft2/r7ySlBPCWnNKj3hJ6Sr44UpZKSiqkV0HHEPe00FxgB1TyA2P svKXCPtpO6afl1dw0Bz/yAOGVA9/ZBoi -----END CERTIFICATE-----Generated at Fri Sep 19 02:10:23 2025 by rpki-client