$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: VYIK65e1TUvT/E66Pf0EqIlh8vjeA+1/1ddBvPx/otM= Subject key identifier: 64:03:77:3A:D3:23:5C:07:C4:B6:0C:C9:29:76:8B:5D:1A:5B:16:9C Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 4A Signing time: Sat 23 Aug 2025 07:36:37 +0000 Manifest this update: Sat 23 Aug 2025 07:36:37 +0000 Manifest next update: Sat 30 Aug 2025 07:36:37 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: NaXgMHsgnA6aivmHb6GyQBbDiNQyAaJwgQN6B/9znJE=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Aug 23 07:36:37 2025 GMT Not After : Aug 30 07:36:37 2025 GMT Subject: CN=68a96f85-b2b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:73:f2:fe:d5:ce:51:cc:0f:d3:69:b8:a6:a6: e5:7f:fb:f0:63:57:31:7b:5a:17:f2:b0:d3:f2:25: a4:7f:04:7c:52:86:69:d9:a7:64:45:ce:3a:94:0d: f7:94:8f:00:9f:f6:a3:d6:86:a0:73:90:04:a1:ec: ea:c5:20:8b:71:6e:d0:99:aa:1c:3e:4a:ff:25:31: d4:e2:e2:a2:10:a8:dc:08:0d:21:57:af:3e:32:f3: 29:23:aa:73:a9:9e:d3:a8:27:2c:67:2e:c3:2f:55: 79:aa:22:89:d8:94:28:ca:89:4e:e4:84:79:76:e4: 8b:b0:83:4d:87:89:a8:cb:8d:74:29:46:53:9b:ff: c8:b2:4f:7b:94:1a:46:0d:fa:55:0d:e3:70:bd:df: 2e:09:df:34:bf:82:f3:b5:2c:05:bf:41:65:1b:02: 9a:74:f9:66:a7:16:8f:30:00:a5:1b:c7:e5:9e:99: 62:7a:b5:72:eb:5a:97:09:ce:f1:3d:d5:e7:22:ae: 39:25:bd:2f:a4:fc:ab:cc:51:85:33:68:d5:cc:63: cc:1d:0b:cc:71:2d:49:37:86:fd:d8:e9:3d:d7:ee: 18:e5:b9:b7:e0:95:de:a7:1c:5b:1f:27:aa:0c:66: 75:18:0a:1c:77:38:f7:a5:3e:4d:44:74:ff:61:65: d6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:03:77:3A:D3:23:5C:07:C4:B6:0C:C9:29:76:8B:5D:1A:5B:16:9C X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:fb:6c:c6:a9:44:fe:7d:70:b3:ab:7d:62:f0:92:34:30:f5: 30:a7:a8:98:29:8c:21:72:9a:dd:f9:dd:4e:b8:c0:c4:1f:40: 88:8c:59:51:18:48:f6:c4:d7:27:f9:1f:2e:78:16:70:2e:fc: 1a:19:2d:4e:46:34:3c:90:31:aa:a1:db:cc:19:d1:64:39:7d: 8f:37:19:39:6d:46:2c:b9:69:64:06:48:8c:52:80:e4:dd:36: 0e:e7:bb:e3:34:86:f2:12:ec:d9:96:76:af:ab:f2:40:0a:f0: c2:98:7e:57:d4:f6:95:3f:88:0b:82:ea:3b:36:79:9e:a1:60: 6f:a8:ae:6e:a0:c1:15:1c:be:45:3a:a1:be:ab:92:12:48:55: ed:28:02:e9:11:4b:81:9a:02:7a:90:fa:21:bc:94:d5:de:56: 04:7b:3a:62:f8:d4:fb:b7:fb:4d:44:2c:c8:2b:24:95:0e:df: 6e:a9:5c:36:76:3d:95:30:21:b7:f1:55:82:45:de:4c:fe:8f: 8e:f8:f3:f3:d1:cb:52:e4:f7:17:7c:2e:81:dc:15:25:2a:12: f5:d6:27:25:ff:f5:04:86:13:38:64:84:c0:f5:bc:e4:5c:44: 96:6f:4f:92:ca:00:3c:1a:c5:32:06:81:19:22:7b:c8:73:42: fc:3b:40:d1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTA4MjMwNzM2MzdaFw0yNTA4MzAwNzM2MzdaMBgxFjAUBgNV BAMTDTY4YTk2Zjg1LWIyYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrc/L+1c5RzA/TabimpuV/+/BjVzF7WhfysNPyJaR/BHxShmnZp2RFzjqUDfeU jwCf9qPWhqBzkASh7OrFIItxbtCZqhw+Sv8lMdTi4qIQqNwIDSFXrz4y8ykjqnOp ntOoJyxnLsMvVXmqIonYlCjKiU7khHl25Iuwg02HiajLjXQpRlOb/8iyT3uUGkYN +lUN43C93y4J3zS/gvO1LAW/QWUbApp0+WanFo8wAKUbx+WemWJ6tXLrWpcJzvE9 1ecirjklvS+k/KvMUYUzaNXMY8wdC8xxLUk3hv3Y6T3X7hjlubfgld6nHFsfJ6oM ZnUYChx3OPelPk1EdP9hZda3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZAN3OtMj XAfEtgzJKXaLXRpbFpwwHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGP7bMapRP59cLOrfWLwkjQw9TCnqJgpjCFymt353U64wMQfQIiMWVEY SPbE1yf5Hy54FnAu/BoZLU5GNDyQMaqh28wZ0WQ5fY83GTltRiy5aWQGSIxSgOTd Ng7nu+M0hvIS7NmWdq+r8kAK8MKYflfU9pU/iAuC6js2eZ6hYG+orm6gwRUcvkU6 ob6rkhJIVe0oAukRS4GaAnqQ+iG8lNXeVgR7OmL41Pu3+01ELMgrJJUO326pXDZ2 PZUwIbfxVYJF3kz+j4748/PRy1Lk9xd8LoHcFSUqEvXWJyX/9QSGEzhkhMD1vORc RJZvT5LKADwaxTIGgRkie8hzQvw7QNE= -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:58 2025 by rpki-client