$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: 9F8WlGAWLUSo/p8eg5fw6gS001sCcyAt7ZuJSdyFsmI= Subject key identifier: BC:A9:E8:23:C9:2B:94:CC:32:B3:62:E4:96:0A:01:24:8B:39:41:B7 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 0266 Signing time: Sat 23 Aug 2025 01:59:58 +0000 Manifest this update: Sat 23 Aug 2025 01:59:58 +0000 Manifest next update: Sat 30 Aug 2025 01:59:58 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: bJqE5TAUiWsjLPMULxY5mp91xsOiqB12lDKzkLJ5bHA=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: J01BFnUaU0xtnZuM7Va9qQmT/vUQNXlVHCchEwi5LNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Aug 23 01:59:58 2025 GMT Not After : Aug 30 01:59:58 2025 GMT Subject: CN=68a9209e-49df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:51:7c:78:bd:b6:16:ee:26:fc:aa:e3:ff: 47:61:d3:08:11:1e:66:9e:85:dc:af:16:6c:43:8c: aa:90:bb:f2:26:09:c8:b1:8d:7b:3b:04:23:40:08: fb:25:d6:2a:4e:a5:69:d0:ae:8f:33:9b:d4:ce:8f: ba:02:44:87:d8:cf:ac:26:af:a6:4b:fc:6b:fe:56: 6b:69:c1:71:3e:0e:83:d7:59:9b:06:6f:17:3c:de: 93:40:b4:5f:b2:a5:c1:b7:20:91:53:be:67:f3:f1: 51:02:be:af:3f:38:16:26:ca:85:ab:87:68:89:09: 17:6b:9b:40:0a:8c:e0:6e:9c:f1:21:78:05:59:f4: b8:9b:f3:36:1b:79:24:05:64:56:12:06:be:24:a3: 1a:3e:e5:05:87:36:b9:ba:49:f6:35:af:84:80:c2: fb:4d:81:37:7b:b9:eb:92:2a:60:a4:45:39:34:fa: 47:00:63:7c:aa:5b:83:6d:64:2f:a7:5b:33:c6:6d: fd:1a:0c:50:6b:45:99:05:5f:4a:f3:27:4b:67:6f: 68:95:c9:c0:1c:d6:cc:fd:f2:d4:8b:69:ea:cc:f0: b1:95:5f:36:46:45:7d:8a:f6:26:a9:e6:84:52:24: 60:ed:da:89:07:50:7e:c7:e6:29:2d:63:52:b8:6c: de:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A9:E8:23:C9:2B:94:CC:32:B3:62:E4:96:0A:01:24:8B:39:41:B7 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:43:d4:9b:75:2e:48:10:ca:93:f0:a7:01:dd:22:07:14:66: 3e:b6:6b:72:4b:1c:dc:8a:b3:2f:35:bd:aa:6f:d9:f3:49:ee: 01:db:cc:89:58:bf:0b:e9:8e:7c:db:56:2d:e5:dc:76:f3:45: 6a:03:7d:d2:21:27:e3:00:b8:7b:fd:17:1f:fa:b6:5f:7a:a6: ed:4d:f7:57:4f:6e:ad:50:55:e7:43:9c:0f:75:58:2e:7b:a8: f0:a9:29:56:34:c8:9e:c2:29:37:35:d9:37:fe:fa:ef:a5:4a: 89:d5:49:06:61:47:eb:d9:49:92:d4:75:91:9c:01:dd:38:b3: 15:49:dc:99:1b:18:d1:0c:b5:60:20:85:a0:3e:7b:96:99:69: 1d:f8:63:34:71:3b:42:fd:2c:b7:4b:61:fc:49:01:78:15:24: 60:4e:67:fb:1a:c8:f7:ad:99:55:d8:e4:f5:09:f7:74:36:fe: 8d:34:1d:d0:4f:9b:7b:37:11:41:42:7d:d3:d9:ee:94:41:ab: 40:16:ab:58:78:9b:6d:02:e9:96:ac:33:ef:7f:a8:50:e1:42: 78:85:15:66:1c:c0:ff:d5:9c:66:02:43:20:18:76:b2:79:ee: 7f:f6:f4:b5:f6:39:9c:9f:b4:5d:17:dc:a6:ab:45:2a:ca:40: 7f:6b:1d:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwODIzMDE1OTU4WhcNMjUwODMwMDE1OTU4WjAYMRYwFAYD VQQDEw02OGE5MjA5ZS00OWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkNRfHi9thbuJvyq4/9HYdMIER5mnoXcrxZsQ4yqkLvyJgnIsY17OwQjQAj7 JdYqTqVp0K6PM5vUzo+6AkSH2M+sJq+mS/xr/lZracFxPg6D11mbBm8XPN6TQLRf sqXBtyCRU75n8/FRAr6vPzgWJsqFq4doiQkXa5tACozgbpzxIXgFWfS4m/M2G3kk BWRWEga+JKMaPuUFhza5ukn2Na+EgML7TYE3e7nrkipgpEU5NPpHAGN8qluDbWQv p1szxm39GgxQa0WZBV9K8ydLZ29olcnAHNbM/fLUi2nqzPCxlV82RkV9ivYmqeaE UiRg7dqJB1B+x+YpLWNSuGzeAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyp6CPJ K5TMMrNi5JYKASSLOUG3MB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbQ9SbdS5IEMqT8KcB3SIHFGY+tmtySxzcirMvNb2qb9nzSe4B28yJ WL8L6Y5821Yt5dx280VqA33SISfjALh7/Rcf+rZfeqbtTfdXT26tUFXnQ5wPdVgu e6jwqSlWNMiewik3Ndk3/vrvpUqJ1UkGYUfr2UmS1HWRnAHdOLMVSdyZGxjRDLVg IIWgPnuWmWkd+GM0cTtC/Sy3S2H8SQF4FSRgTmf7Gsj3rZlV2OT1Cfd0Nv6NNB3Q T5t7NxFBQn3T2e6UQatAFqtYeJttAumWrDPvf6hQ4UJ4hRVmHMD/1ZxmAkMgGHay ee5/9vS19jmcn7RdF9ymq0UqykB/ax12 -----END CERTIFICATE-----Generated at Sun Aug 24 00:13:46 2025 by rpki-client