$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: x/C1AK8tDpt6Mzu0ExbGsmbDkxNpjGDbTIVTd6QH7Zg= Subject key identifier: B9:D4:34:88:5F:A9:D4:EB:1C:C1:47:DE:DE:C2:D8:BF:B2:05:A9:D1 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 017C Signing time: Thu 03 Jul 2025 03:24:59 +0000 Manifest this update: Thu 03 Jul 2025 03:24:59 +0000 Manifest next update: Thu 10 Jul 2025 03:24:59 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: Ndn+/OZJ3wPXsC27OHSIpEdDgiKGel1Jy4m4e/VigB8=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Jul 3 03:24:59 2025 GMT Not After : Jul 10 03:24:59 2025 GMT Subject: CN=6865f80b-682b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:39:05:44:a5:c6:e0:05:c7:43:a6:23:f0: b8:8c:00:b9:a9:2f:ed:db:ce:0e:8a:18:88:6a:2f: 84:30:a7:d4:51:a5:9a:16:2d:ea:85:13:cc:9f:df: a7:76:88:17:97:33:a3:04:00:5f:d8:97:ac:33:83: 52:b8:76:7b:6b:84:ea:2b:aa:2f:c5:89:6b:ac:75: ab:f8:1f:0e:90:13:b7:e8:6f:e5:72:83:3f:d9:90: d2:0c:de:bc:c2:dd:f0:be:11:b6:35:82:ae:df:eb: 00:92:7a:05:73:fa:fc:9d:5d:4a:a8:32:82:c4:2c: 4e:1e:59:0d:72:40:98:68:ca:89:cf:ee:95:92:59: 4c:c0:b7:f6:74:4f:fe:30:8b:dd:a7:ea:32:3b:77: fc:0d:66:87:c3:41:2d:75:b7:d2:d8:55:d8:2b:fd: 48:ca:ac:dd:16:a3:e9:38:d9:a4:ad:2d:26:ec:2b: c4:df:0d:5b:0c:e8:2c:4f:08:24:9b:ca:96:4a:f8: 64:23:4e:ea:1d:62:33:71:56:00:42:25:10:9b:fd: d1:6d:a9:3f:86:ff:6c:1c:20:a5:62:05:dc:cd:32: 01:4b:e6:62:19:67:f1:56:a9:60:a3:63:d7:7d:9a: 39:42:98:dd:9c:ba:fd:8e:28:56:a8:6d:53:4e:06: 09:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D4:34:88:5F:A9:D4:EB:1C:C1:47:DE:DE:C2:D8:BF:B2:05:A9:D1 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:60:2a:b4:45:e8:20:29:ff:1b:b8:7c:11:85:1f:6f:de:94: 8b:32:ee:1e:c3:39:6f:6d:ba:0e:00:af:04:b6:6e:80:9e:b9: 20:88:42:ba:e1:d4:54:ed:11:90:82:47:8f:2e:6a:ec:04:68: f1:5e:90:27:71:e1:d1:02:4d:b6:0e:52:95:2c:5a:15:44:ef: 70:60:fa:dc:bf:7c:44:ee:c6:a7:89:fb:fd:44:49:34:88:d6: 1d:e7:05:f9:71:be:ad:41:61:7b:b2:a0:a6:bd:e0:b6:08:cf: 92:da:37:76:d4:9b:a0:ab:8b:1f:bd:10:08:b9:ec:88:d8:53: 06:c9:a4:d7:10:62:a5:4f:a9:5a:c1:c6:e7:f7:d6:b5:4e:de: 5a:17:cf:30:08:e1:88:77:aa:3b:6d:c1:b3:d5:38:88:b9:1e: 3b:2f:64:fd:b2:cf:69:85:20:cf:bc:05:38:02:d2:b5:e3:3f: 8b:93:b0:1f:a3:0c:74:9e:54:10:61:9a:66:28:b2:7e:6f:6a: f0:44:b5:2c:26:39:0f:56:36:1d:75:8a:f8:58:64:c9:6f:47: b3:e3:48:66:8b:59:e6:60:f0:56:6d:a0:9a:b4:9f:48:1f:ff: ac:d9:68:66:fb:30:b6:39:6f:e6:00:4a:01:51:13:4a:bf:d1: aa:60:5b:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwNzAzMDMyNDU5WhcNMjUwNzEwMDMyNDU5WjAYMRYwFAYD VQQDEw02ODY1ZjgwYi02ODJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw45BUSlxuAFx0OmI/C4jAC5qS/t284OihiIai+EMKfUUaWaFi3qhRPMn9+n dogXlzOjBABf2JesM4NSuHZ7a4TqK6ovxYlrrHWr+B8OkBO36G/lcoM/2ZDSDN68 wt3wvhG2NYKu3+sAknoFc/r8nV1KqDKCxCxOHlkNckCYaMqJz+6VkllMwLf2dE/+ MIvdp+oyO3f8DWaHw0EtdbfS2FXYK/1IyqzdFqPpONmkrS0m7CvE3w1bDOgsTwgk m8qWSvhkI07qHWIzcVYAQiUQm/3Rbak/hv9sHCClYgXczTIBS+ZiGWfxVqlgo2PX fZo5QpjdnLr9jihWqG1TTgYJ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnUNIhf qdTrHMFH3t7C2L+yBanRMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeYCq0ReggKf8buHwRhR9v3pSLMu4ewzlvbboOAK8Etm6AnrkgiEK6 4dRU7RGQgkePLmrsBGjxXpAnceHRAk22DlKVLFoVRO9wYPrcv3xE7sanifv9REk0 iNYd5wX5cb6tQWF7sqCmveC2CM+S2jd21Jugq4sfvRAIueyI2FMGyaTXEGKlT6la wcbn99a1Tt5aF88wCOGId6o7bcGz1TiIuR47L2T9ss9phSDPvAU4AtK14z+Lk7Af owx0nlQQYZpmKLJ+b2rwRLUsJjkPVjYddYr4WGTJb0ez40hmi1nmYPBWbaCatJ9I H/+s2Whm+zC2OW/mAEoBURNKv9GqYFsN -----END CERTIFICATE-----Generated at Thu Jul 3 23:17:20 2025 by rpki-client