$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: UpewgsFGikuh1GuTrZb9rGcndhkcQOwQz/+zAhYMoGc= Subject key identifier: 1C:DC:88:21:B7:A1:B5:23:A2:4F:84:0E:97:82:EB:12:9C:87:31:CE Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0196 Signing time: Sat 23 Aug 2025 03:10:10 +0000 Manifest this update: Sat 23 Aug 2025 03:10:09 +0000 Manifest next update: Sat 30 Aug 2025 03:10:09 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: czXJ84/pNvQCcMpBgDlbUafYST7SFSWfqhniV1xKjFk=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Aug 23 03:10:09 2025 GMT Not After : Aug 30 03:10:09 2025 GMT Subject: CN=68a93111-75a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:be:c4:3f:6c:d1:f4:16:77:b4:a1:4b:3b:2a: ce:df:08:ca:e4:52:33:3b:e5:a4:8d:2d:be:c9:83: aa:8a:e7:be:cd:b2:9e:37:3a:31:6f:b7:50:e3:18: cf:04:0e:ac:c7:ab:91:95:f4:46:5e:d7:a4:c9:f1: c5:63:2e:54:26:cf:7c:a9:bf:d6:7f:cf:b5:58:5a: 74:d4:e4:db:0b:12:56:da:6b:19:52:84:23:7f:55: 07:f1:d7:75:ed:c1:61:8c:04:2a:9b:96:82:72:9b: 44:0e:c6:4a:dd:c3:1c:ea:22:c6:8f:67:de:1b:4b: 44:47:12:57:6c:e5:30:69:ec:cd:43:69:38:91:1b: 96:6d:2e:aa:f2:e7:bc:75:7a:ab:02:16:af:87:fc: cd:4a:e6:11:db:13:b5:a0:73:f9:0b:47:2f:f6:20: 61:58:d8:54:bf:ed:5b:f7:f0:57:a4:be:c9:07:0b: a7:5e:84:8d:1f:a9:94:99:01:72:4d:81:3d:1f:89: 4c:57:c7:0b:eb:22:04:2d:72:aa:fd:b0:32:7d:75: 3c:46:b1:cc:c8:25:1a:fe:47:04:68:c9:61:b3:2e: fc:f4:d8:74:5c:19:6c:fd:21:a3:cb:a9:56:56:e8: 8e:7c:fc:88:c4:94:e7:03:b5:0c:bb:01:d6:62:32: 67:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DC:88:21:B7:A1:B5:23:A2:4F:84:0E:97:82:EB:12:9C:87:31:CE X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2e:4c:7f:e0:7a:c0:aa:52:0f:33:50:d7:02:61:d0:d6:9a: 50:85:e2:fc:4a:cb:6c:76:35:72:45:b1:38:f0:f2:3d:79:94: 7b:1c:16:3f:ff:0b:3a:67:71:fe:a9:93:6a:69:ad:36:54:64: 91:a2:c3:38:b3:f1:82:01:21:9f:3a:35:9b:af:8e:04:5d:87: 49:41:fe:d4:fc:75:ff:1c:b2:57:8b:df:7f:9b:98:b4:76:99: 86:33:78:2d:14:c6:7f:80:b6:80:82:12:c6:9c:c2:f8:58:6b: c2:c8:c3:ee:32:47:10:0b:3d:ce:ba:ca:3e:8a:86:d5:15:45: 42:67:52:42:f7:83:69:7b:bb:05:ba:ed:c9:6d:42:c2:da:46: 2b:a6:20:c4:a5:b4:34:a1:e8:88:7b:64:fb:51:3c:b7:e2:43: d4:bb:1c:8e:3d:00:e7:72:95:60:46:f2:b2:af:82:49:16:91: 56:ba:d3:1e:ef:dd:c9:4d:16:df:50:c3:ef:c4:3c:7c:8f:8f: 8d:af:c0:64:8d:87:5f:d8:32:db:62:31:98:7c:3f:93:35:9f: 3b:52:58:7e:db:cf:72:ec:74:c9:63:ee:b7:52:cc:09:82:2d: f5:8d:bb:45:d4:33:86:79:92:50:52:dd:5d:95:6c:a0:ba:4b: a8:c8:3c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwODIzMDMxMDA5WhcNMjUwODMwMDMxMDA5WjAYMRYwFAYD VQQDEw02OGE5MzExMS03NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8L7EP2zR9BZ3tKFLOyrO3wjK5FIzO+WkjS2+yYOqiue+zbKeNzoxb7dQ4xjP BA6sx6uRlfRGXtekyfHFYy5UJs98qb/Wf8+1WFp01OTbCxJW2msZUoQjf1UH8dd1 7cFhjAQqm5aCcptEDsZK3cMc6iLGj2feG0tERxJXbOUwaezNQ2k4kRuWbS6q8ue8 dXqrAhavh/zNSuYR2xO1oHP5C0cv9iBhWNhUv+1b9/BXpL7JBwunXoSNH6mUmQFy TYE9H4lMV8cL6yIELXKq/bAyfXU8RrHMyCUa/kcEaMlhsy789Nh0XBls/SGjy6lW VuiOfPyIxJTnA7UMuwHWYjJniQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzciCG3 obUjok+EDpeC6xKchzHOMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOLkx/4HrAqlIPM1DXAmHQ1ppQheL8SstsdjVyRbE48PI9eZR7HBY/ /ws6Z3H+qZNqaa02VGSRosM4s/GCASGfOjWbr44EXYdJQf7U/HX/HLJXi99/m5i0 dpmGM3gtFMZ/gLaAghLGnML4WGvCyMPuMkcQCz3Ouso+iobVFUVCZ1JC94Npe7sF uu3JbULC2kYrpiDEpbQ0oeiIe2T7UTy34kPUuxyOPQDncpVgRvKyr4JJFpFWutMe 793JTRbfUMPvxDx8j4+Nr8BkjYdf2DLbYjGYfD+TNZ87Ulh+289y7HTJY+63UswJ gi31jbtF1DOGeZJQUt1dlWygukuoyDx/ -----END CERTIFICATE-----Generated at Sat Aug 23 21:24:29 2025 by rpki-client