$ rpki-client -vvf rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft File: uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft (raw, json) Hash identifier: awHmlt8+TLeVyhb3dnvvcOQh2K1OaqchzRVhBU1qEi0= Subject key identifier: 98:27:4B:A9:01:10:FD:96:14:4B:35:1B:67:62:B9:D9:F9:D3:30:5E Authority key identifier: BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB Certificate issuer: /CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft Manifest number: 01AD Signing time: Sun 19 Oct 2025 05:44:08 +0000 Manifest this update: Sun 19 Oct 2025 05:44:08 +0000 Manifest next update: Sun 26 Oct 2025 05:44:08 +0000 Files and hashes: 1: uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl (hash: Ps7KT6yaMTtePTE9H8UUl4X2iVX2cxMx9Qg7RZ9DXa8=) 2: 859871F2215D11EE963E9A52C4F9AE02.roa (hash: Z3peH/mE9SV9hvZtkmemszIcaOCUTsQPfGHf/GpQqto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113217, serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Validity Not Before: Oct 19 05:44:08 2025 GMT Not After : Oct 26 05:44:08 2025 GMT Subject: CN=68f47aa8-920f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dd:c2:c2:0c:bd:8d:13:e2:09:e7:6a:7e:0a: 67:63:e2:f4:d4:c7:dc:aa:1c:f3:e0:4d:b1:7e:80: 11:6b:88:4d:44:9f:be:91:fe:61:f0:eb:41:4b:06: 7d:a1:fd:09:eb:2f:6c:3f:d7:15:9d:bf:91:f4:b4: d7:fc:55:f8:d3:66:98:35:9e:0b:69:33:92:e1:0f: 02:61:83:54:2f:71:38:5a:47:a0:6d:ec:68:c1:e6: 0f:40:0f:09:45:fa:7e:14:84:92:e3:eb:2d:03:d2: e2:00:07:cc:04:48:b4:b2:b6:2b:82:70:47:78:8f: be:a3:f5:c6:61:d2:62:44:6f:af:a0:94:bc:a2:02: 69:6a:76:a4:05:98:4a:52:d2:fe:be:24:60:e2:21: 53:98:c4:4c:b2:14:db:bc:43:ea:79:36:d7:bb:7a: 1e:50:ca:0b:7d:81:f2:38:cf:84:35:31:85:ed:58: 9a:33:51:f7:4e:66:b2:5a:bd:8c:97:96:a9:da:f9: cd:bb:21:47:21:e1:ad:d1:ff:f6:7f:6d:a4:15:aa: 2b:fe:bf:90:4e:c9:73:21:70:2f:0f:74:65:26:66: a3:1f:cb:02:21:b4:48:47:4c:46:52:27:9e:a8:29: 05:1c:13:26:79:d4:33:eb:3a:0c:07:51:06:cd:19: e3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:27:4B:A9:01:10:FD:96:14:4B:35:1B:67:62:B9:D9:F9:D3:30:5E X509v3 Authority Key Identifier: keyid:BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:1f:87:00:54:73:2d:a8:75:12:89:7c:2e:16:5b:c4:df:a8: af:7b:14:d0:7d:00:a8:6a:88:f2:01:42:34:23:0d:87:cf:b2: cb:da:6d:60:28:58:a5:1f:28:e0:2c:dc:9a:7d:7c:20:71:46: 86:30:76:ce:8b:9f:a3:04:b1:9f:63:91:28:01:50:eb:9c:d9: 75:a7:c6:1a:94:d3:7a:99:12:d5:59:3b:17:13:52:e5:bb:37: 1d:f9:06:77:be:d5:2f:41:37:7c:21:36:6b:07:f4:4e:37:51: 2c:1b:05:ed:c2:3a:cc:f7:25:af:c0:49:07:f9:1f:c2:51:6d: c8:8a:ce:ee:7f:87:94:f9:ff:80:ee:05:d1:92:82:22:80:46: 83:fc:5c:6f:86:68:67:d9:af:15:d4:dc:b4:14:4b:b2:6c:4d: 21:ec:fc:4b:d1:44:82:d3:27:76:59:3e:ed:fc:32:e5:3b:1c: e4:7e:f5:c3:5c:ee:0d:54:d0:21:44:a9:68:01:79:bb:d2:5c: 80:75:f1:76:f3:bc:ae:fa:1e:db:f7:2b:db:6c:2c:05:d1:de: 76:20:c4:db:22:e2:60:2a:a0:66:08:2c:8a:ec:da:2d:39:92: 0a:32:c5:b0:dd:85:fa:19:82:31:a8:85:e5:1d:6a:ed:46:c5: e0:23:02:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMyMTcxMTAvBgNVBAUTKEJCMzAwNzhDRjY4Nzc4N0QzQTVCM0U1MzRDMDg5NzE2 QTg2QjEzQkIwHhcNMjUxMDE5MDU0NDA4WhcNMjUxMDI2MDU0NDA4WjAYMRYwFAYD VQQDEw02OGY0N2FhOC05MjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnt3Cwgy9jRPiCedqfgpnY+L01Mfcqhzz4E2xfoARa4hNRJ++kf5h8OtBSwZ9 of0J6y9sP9cVnb+R9LTX/FX402aYNZ4LaTOS4Q8CYYNUL3E4WkegbexoweYPQA8J Rfp+FISS4+stA9LiAAfMBEi0srYrgnBHeI++o/XGYdJiRG+voJS8ogJpanakBZhK UtL+viRg4iFTmMRMshTbvEPqeTbXu3oeUMoLfYHyOM+ENTGF7ViaM1H3TmayWr2M l5ap2vnNuyFHIeGt0f/2f22kFaor/r+QTslzIXAvD3RlJmajH8sCIbRIR0xGUiee qCkFHBMmedQz6zoMB1EGzRnjIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgnS6kB EP2WFEs1G2diudn50zBeMB8GA1UdIwQYMBaAFLswB4z2h3h9Ols+U0wIlxaoaxO7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzIxNy9ENzIxOTZEMDIx NUMxMUVFQkNCNUIyNEVDNEY5QUUwMi91ekFIalBhSGVIMDZXejVUVEFpWEZxaHJF N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V6QUhqUGFIZUgwNld6NVRUQWlYRnFockU3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzIxNy9ENzIxOTZEMDIxNUMxMUVFQkNCNUIyNEVDNEY5QUUwMi91ekFIalBhSGVI MDZXejVUVEFpWEZxaHJFN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFH4cAVHMtqHUSiXwuFlvE36ivexTQfQCoaojyAUI0Iw2Hz7LL2m1g KFilHyjgLNyafXwgcUaGMHbOi5+jBLGfY5EoAVDrnNl1p8YalNN6mRLVWTsXE1Ll uzcd+QZ3vtUvQTd8ITZrB/RON1EsGwXtwjrM9yWvwEkH+R/CUW3Iis7uf4eU+f+A 7gXRkoIigEaD/Fxvhmhn2a8V1Ny0FEuybE0h7PxL0USC0yd2WT7t/DLlOxzkfvXD XO4NVNAhRKloAXm70lyAdfF287yu+h7b9yvbbCwF0d52IMTbIuJgKqBmCCyK7Not OZIKMsWw3YX6GYIxqIXlHWrtRsXgIwKQ -----END CERTIFICATE-----Generated at Mon Oct 20 13:48:54 2025 by rpki-client