$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft File: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft (raw, json) Hash identifier: WRjj8+JCyFB/eQ+LvqODJU8rmffZKTfjRauyEG6cqoI= Subject key identifier: 43:01:68:1F:FE:C9:69:12:25:81:49:80:28:17:70:E5:0B:C7:C6:37 Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Certificate serial: 1700 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft Manifest number: 16D7 Signing time: Fri 22 Aug 2025 16:47:07 +0000 Manifest this update: Fri 22 Aug 2025 16:47:07 +0000 Manifest next update: Fri 29 Aug 2025 16:47:07 +0000 Files and hashes: 1: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl (hash: kqw2kELJ4qgzma4JFo5iVHUyJcoGJC00Bfvlyp23Iqg=) 2: 24CFDABE00EC11E8AAC4DD6EC4F9AE02.roa (hash: ecERzKe4aH7s8rjg9Kt6Wo+1pU9CBduLgX3EVStj1rs=) 3: 0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa (hash: FZkT4Kxe1dq9738R7EN3qc8IS8Q1dJKnESpThw2bzlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5888 (0x1700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Validity Not Before: Aug 22 16:47:07 2025 GMT Not After : Aug 29 16:47:07 2025 GMT Subject: CN=68a89f0b-bc55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:4e:7e:23:10:5d:c8:83:93:b6:17:59:8f: 9d:f2:18:f3:35:1e:f5:28:cc:82:4e:c4:46:d0:45: d1:00:f5:17:69:ba:22:39:6c:22:65:a6:0f:f9:e0: 8d:be:45:fd:f8:ad:57:72:9c:a1:6f:ec:7b:d7:66: e0:b6:dc:25:3f:18:5e:a6:74:e5:b3:bc:fd:04:6f: a9:d7:49:bf:ab:69:2f:97:d2:7d:3b:50:b3:5b:81: 77:03:cf:70:e8:94:b3:50:d3:00:fb:d4:4f:39:c2: 49:aa:e3:83:bc:fd:31:4d:7c:85:1a:8c:8c:76:c7: b7:54:7e:4a:c4:97:31:aa:f8:55:ef:27:d8:66:b2: 0f:72:c4:dc:a8:d2:d9:91:e2:e7:44:f5:a9:ec:db: 94:0a:ab:80:9e:a8:2c:db:17:a1:34:05:e4:76:8b: 4d:e9:99:d7:03:73:fa:9c:5d:f9:fb:e1:b8:d0:db: 6f:21:82:e3:05:1c:a8:44:61:af:85:f4:db:ff:bd: 31:a7:be:ae:82:d3:0b:3d:eb:35:66:c0:72:b8:de: 08:28:63:4a:8e:af:03:ae:90:b7:7f:56:8d:d0:82: 80:1c:c0:d8:2c:ba:8d:17:d2:6a:f8:67:bc:96:3d: 6f:7a:5d:fc:9b:a5:07:a4:b3:db:84:4b:c8:d0:b7: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:01:68:1F:FE:C9:69:12:25:81:49:80:28:17:70:E5:0B:C7:C6:37 X509v3 Authority Key Identifier: keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:60:3a:11:08:85:86:03:12:59:be:5f:df:fb:fc:53:46:4f: ee:c5:f6:3b:a5:99:71:96:23:a9:54:17:a5:59:08:21:54:a6: 66:b5:b9:9d:f9:04:f6:61:eb:b3:fe:d3:f1:cc:e4:92:f2:8a: f9:be:9b:37:05:c9:4a:10:78:28:46:6c:8f:49:60:5c:1c:a2: 39:4e:20:20:21:07:a2:66:d5:98:59:b6:01:8e:32:35:5e:b9: 13:c2:07:fa:cf:b7:35:fe:0d:03:6f:b8:21:f8:b2:a6:da:cf: 78:f2:28:df:90:fc:fb:0f:b1:97:4b:32:6a:ef:ee:b6:9d:f1: e9:3a:aa:b2:58:8a:bb:13:58:3b:af:92:b9:cf:e8:2b:61:be: 44:fd:35:7b:53:0d:d7:19:bc:ba:be:77:f2:47:9d:1d:84:8d: bd:71:b2:61:e6:a1:b1:25:db:e5:c8:39:b4:66:ae:ff:e6:b9: 81:4f:4e:53:2f:2c:16:88:37:37:09:cd:89:7f:9f:43:fc:e3: e2:95:47:c1:b2:64:81:8a:83:ad:0f:28:c0:5b:48:83:db:4f: f6:e0:be:0f:cc:b9:24:52:78:be:d1:99:7e:5e:1b:e6:24:4e: 9f:7f:a9:54:81:d8:db:66:5e:4c:fa:ca:f3:60:28:30:27:25: 60:b3:13:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQ1NEJGMzk5QkUxQjY1OUIxMzIzMTRCODIxOTMzQTIw QkEzOEI5NkEwHhcNMjUwODIyMTY0NzA3WhcNMjUwODI5MTY0NzA3WjAYMRYwFAYD VQQDEw02OGE4OWYwYi1iYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxxOfiMQXciDk7YXWY+d8hjzNR71KMyCTsRG0EXRAPUXaboiOWwiZaYP+eCN vkX9+K1Xcpyhb+x712bgttwlPxhepnTls7z9BG+p10m/q2kvl9J9O1CzW4F3A89w 6JSzUNMA+9RPOcJJquODvP0xTXyFGoyMdse3VH5KxJcxqvhV7yfYZrIPcsTcqNLZ keLnRPWp7NuUCquAnqgs2xehNAXkdotN6ZnXA3P6nF35++G40NtvIYLjBRyoRGGv hfTb/70xp76ugtMLPes1ZsByuN4IKGNKjq8DrpC3f1aN0IKAHMDYLLqNF9Jq+Ge8 lj1vel38m6UHpLPbhEvI0LeWWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMBaB/+ yWkSJYFJgCgXcOULx8Y3MB8GA1UdIwQYMBaAFNVL85m+G2WbEyMUuCGTOiC6OLlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC9BMTA4N0QzNjAw RUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpac1RJeFM0SVpNNklMbzR1 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFVdnptYjRiWlpzVEl4UzRJWk02SUxvNHVXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC9BMTA4N0QzNjAwRUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpa c1RJeFM0SVpNNklMbzR1V28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAYDoRCIWGAxJZvl/f+/xTRk/uxfY7pZlxliOpVBelWQghVKZmtbmd +QT2Yeuz/tPxzOSS8or5vps3BclKEHgoRmyPSWBcHKI5TiAgIQeiZtWYWbYBjjI1 XrkTwgf6z7c1/g0Db7gh+LKm2s948ijfkPz7D7GXSzJq7+62nfHpOqqyWIq7E1g7 r5K5z+grYb5E/TV7Uw3XGby6vnfyR50dhI29cbJh5qGxJdvlyDm0Zq7/5rmBT05T LywWiDc3Cc2Jf59D/OPilUfBsmSBioOtDyjAW0iD20/24L4PzLkkUni+0Zl+Xhvm JE6ff6lUgdjbZl5M+srzYCgwJyVgsxNy -----END CERTIFICATE-----Generated at Sun Aug 24 00:51:06 2025 by rpki-client