$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: iiCKIw9aaKr0qiASjyEjnp1yIURVnnd+svfvfG5gY2E= Subject key identifier: 6D:C1:F6:1B:F5:32:5F:9B:F5:AC:9F:0E:A2:75:EA:0E:D8:63:4B:8D Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01A9 Signing time: Sat 23 Aug 2025 00:59:54 +0000 Manifest this update: Sat 23 Aug 2025 00:59:54 +0000 Manifest next update: Sat 30 Aug 2025 00:59:54 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: 71/n9mtznaJYa6yAoHivXGKhiup7b5gGiv6XafZ5X+0=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Aug 23 00:59:54 2025 GMT Not After : Aug 30 00:59:54 2025 GMT Subject: CN=68a9128a-7c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8b:1d:68:59:4e:ba:ff:9d:40:6c:c4:15:eb: 99:ef:26:47:e7:44:33:a8:e1:cc:56:18:07:bd:cf: f4:f2:6d:27:dd:45:a4:40:be:b0:65:17:7a:db:29: a4:6a:16:e9:10:20:58:79:0b:b4:9b:43:10:ae:86: bb:d3:f1:1c:36:f1:24:27:2c:b7:47:95:d1:a9:3d: 60:09:7a:25:72:ab:4c:cb:e9:b1:59:ff:5b:6d:c2: 5c:4b:d5:3f:b7:f9:17:78:81:c2:04:61:4c:42:1e: c5:58:07:7a:6d:3b:6a:51:11:27:e7:3a:d3:17:3a: f4:f0:a8:d9:66:77:ca:12:b3:e8:60:44:14:53:5c: 78:c0:b8:a3:99:66:ba:de:ac:59:94:3c:b2:99:e0: e3:1f:4b:d8:19:1d:b1:b0:7f:05:f3:61:5c:db:f0: a7:e3:f8:10:e1:14:15:59:f3:bc:1a:3f:04:44:a6: 50:89:68:fd:01:d4:ec:89:c9:13:13:97:48:14:f9: 64:39:fd:f6:69:d8:4c:d1:18:1c:08:41:08:d2:07: d3:e0:bd:ea:fd:3d:3b:30:0d:18:7c:7a:0d:21:ef: ea:79:3f:19:a3:d3:aa:5f:4a:8c:30:c6:59:32:ea: 62:29:af:8b:14:6c:1c:78:5a:86:d9:57:1f:e7:68: 87:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C1:F6:1B:F5:32:5F:9B:F5:AC:9F:0E:A2:75:EA:0E:D8:63:4B:8D X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:1d:d5:43:af:ad:c8:48:9e:b4:54:b9:a2:fd:ee:50:c3:fe: f5:51:a0:6d:be:6f:f2:ad:e8:37:12:a3:37:12:b2:57:e3:b2: a6:94:e0:63:fc:b6:d4:59:1b:3e:29:35:9b:f7:c6:07:07:f0: 32:71:e0:73:68:26:6d:ab:e4:30:e8:6e:06:5c:39:6f:97:1d: 2d:75:59:9c:89:72:b8:1d:eb:76:fb:62:e6:36:95:4c:ac:17: 7f:a2:4f:06:f8:f4:4a:07:70:7a:dd:ca:d9:b2:64:d4:c7:fb: 7d:d6:f3:1b:82:bf:12:04:9f:9e:5c:8c:15:2c:c9:f4:45:d7: 4f:49:a2:b8:7e:e0:d3:06:97:e5:8b:66:a4:43:d4:93:b4:28: 4d:db:3e:48:2c:e8:ba:af:42:4b:4e:76:b3:3d:2b:e4:15:69: 01:c5:92:a0:15:36:72:c9:76:46:aa:c2:29:85:58:e1:30:b7: 13:6e:8e:1f:62:fe:20:48:c4:76:f4:67:f9:f7:2c:ba:37:a3: 3c:f6:a4:2d:fa:51:dc:c2:1d:5e:e1:ae:2c:fb:cc:89:4e:bf: 09:d4:4f:72:5c:93:2a:42:c3:82:90:68:f9:9f:71:69:0c:85: 14:22:da:60:66:51:14:28:a8:18:47:f4:5a:8e:04:3a:bf:e9: 5f:40:f0:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjUwODIzMDA1OTU0WhcNMjUwODMwMDA1OTU0WjAYMRYwFAYD VQQDEw02OGE5MTI4YS03Yzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYsdaFlOuv+dQGzEFeuZ7yZH50QzqOHMVhgHvc/08m0n3UWkQL6wZRd62ymk ahbpECBYeQu0m0MQroa70/EcNvEkJyy3R5XRqT1gCXolcqtMy+mxWf9bbcJcS9U/ t/kXeIHCBGFMQh7FWAd6bTtqUREn5zrTFzr08KjZZnfKErPoYEQUU1x4wLijmWa6 3qxZlDyymeDjH0vYGR2xsH8F82Fc2/Cn4/gQ4RQVWfO8Gj8ERKZQiWj9AdTsickT E5dIFPlkOf32adhM0RgcCEEI0gfT4L3q/T07MA0YfHoNIe/qeT8Zo9OqX0qMMMZZ MupiKa+LFGwceFqG2Vcf52iHoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3B9hv1 Ml+b9ayfDqJ16g7YY0uNMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDHdVDr63ISJ60VLmi/e5Qw/71UaBtvm/yreg3EqM3ErJX47KmlOBj /LbUWRs+KTWb98YHB/AyceBzaCZtq+Qw6G4GXDlvlx0tdVmciXK4Het2+2LmNpVM rBd/ok8G+PRKB3B63crZsmTUx/t91vMbgr8SBJ+eXIwVLMn0RddPSaK4fuDTBpfl i2akQ9STtChN2z5ILOi6r0JLTnazPSvkFWkBxZKgFTZyyXZGqsIphVjhMLcTbo4f Yv4gSMR29Gf59yy6N6M89qQt+lHcwh1e4a4s+8yJTr8J1E9yXJMqQsOCkGj5n3Fp DIUUItpgZlEUKKgYR/RajgQ6v+lfQPDX -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:11 2025 by rpki-client