$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: nX8ZAjDJeGPRw+ngO3Fq9LwhImbgkodAAx/Mm7C4SWc= Subject key identifier: 57:D9:EA:B9:30:70:DC:B7:06:DD:5C:0C:03:35:69:2C:86:1D:92:E1 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0435 Signing time: Sat 23 Aug 2025 00:31:07 +0000 Manifest this update: Sat 23 Aug 2025 00:31:07 +0000 Manifest next update: Sat 30 Aug 2025 00:31:07 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: YghsiW8AzEQjaLpmLXX6nq85OjGLNslVEi0343V3mWc=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Aug 23 00:31:07 2025 GMT Not After : Aug 30 00:31:07 2025 GMT Subject: CN=68a90bcb-596f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:61:97:c6:6c:fb:fc:16:1f:c6:bb:6b:d9: 29:1c:28:e8:4b:67:75:e4:46:9b:85:ec:dc:3e:4a: 72:ea:ba:ce:12:bd:c9:3f:48:ae:1a:ec:df:cf:53: 30:22:98:56:d2:95:56:12:92:dc:2b:cd:91:2e:b0: 40:84:b2:f4:26:e7:87:4c:79:53:97:1e:bb:c4:b5: 5e:be:fe:f2:e6:f2:f6:ce:3e:89:7a:b8:a5:a3:32: a7:4c:84:e2:9a:a0:88:9e:1a:d2:f1:e1:d6:dd:79: 38:8c:04:20:7a:e8:0a:d5:e3:89:e8:64:eb:a2:40: 96:b9:5d:68:ab:0e:1a:43:87:98:a0:57:52:49:37: 1f:a5:98:4f:74:d6:a4:12:98:0e:f8:c0:b5:45:9e: 1d:8c:1c:7f:0a:1b:b7:8c:84:db:77:14:26:f8:e4: 77:ca:9f:37:d6:a4:ad:fb:36:ed:e1:cf:c7:f3:2c: b8:55:41:31:20:73:26:d3:f7:a0:50:9f:0c:a3:fa: 8c:98:d3:af:0f:cb:7b:18:ac:28:bf:54:6b:fa:e2: 5f:7f:c7:2a:94:fa:0e:41:8c:13:7e:46:9d:ca:6e: d7:24:03:88:de:60:fa:27:cb:da:3b:b7:94:ae:fd: 4e:e7:57:03:ca:0c:5f:34:63:fc:6a:1b:85:41:2f: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D9:EA:B9:30:70:DC:B7:06:DD:5C:0C:03:35:69:2C:86:1D:92:E1 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:83:12:c0:b4:31:6a:dd:21:43:f3:ac:af:ac:c1:24:e3:ce: 0c:6e:7b:f0:92:f2:47:6c:87:2e:57:83:88:75:d3:38:91:cc: 04:2a:08:94:d2:55:e5:f5:27:41:67:1e:24:48:2d:9c:5f:5e: ab:19:7a:f2:dd:32:40:fa:9e:be:0d:48:e7:e2:d0:c3:47:54: 09:22:51:63:ad:fa:45:c2:e8:fd:c7:df:87:89:4b:a1:8b:f9: 68:f6:61:f6:b4:9d:99:69:8b:0d:c0:a7:fd:41:fd:ee:1d:c0: 72:76:d5:f2:fb:8c:e2:80:c9:d9:07:7a:69:51:a6:c4:80:45: c0:a0:3d:6f:7d:7a:d2:61:ce:aa:87:68:08:6e:42:3e:f7:69: 8f:e4:63:c2:85:28:04:fa:60:27:13:85:a0:3b:9a:42:70:0f: 82:43:dc:7d:e8:8f:2c:72:23:ac:d8:c6:7a:42:7c:c2:1c:f1: 8d:d4:6e:46:1c:20:d9:0d:42:0d:4a:2d:1d:52:2d:5e:8b:a6: d7:5a:0d:11:07:cc:46:5a:e2:10:88:44:cf:9e:e8:22:5f:77: 7c:f3:9b:ec:da:b6:3a:c8:ec:1f:cf:91:28:e3:14:c8:52:bd: 77:14:c9:f1:6d:cd:90:58:66:1a:35:91:9b:5e:d0:84:bf:ba: 8a:ea:52:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwODIzMDAzMTA3WhcNMjUwODMwMDAzMTA3WjAYMRYwFAYD VQQDEw02OGE5MGJjYi01OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqNhl8Zs+/wWH8a7a9kpHCjoS2d15EabhezcPkpy6rrOEr3JP0iuGuzfz1Mw IphW0pVWEpLcK82RLrBAhLL0JueHTHlTlx67xLVevv7y5vL2zj6JerilozKnTITi mqCInhrS8eHW3Xk4jAQgeugK1eOJ6GTrokCWuV1oqw4aQ4eYoFdSSTcfpZhPdNak EpgO+MC1RZ4djBx/Chu3jITbdxQm+OR3yp831qSt+zbt4c/H8yy4VUExIHMm0/eg UJ8Mo/qMmNOvD8t7GKwov1Rr+uJff8cqlPoOQYwTfkadym7XJAOI3mD6J8vaO7eU rv1O51cDygxfNGP8ahuFQS/QPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfZ6rkw cNy3Bt1cDAM1aSyGHZLhMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYgxLAtDFq3SFD86yvrMEk484MbnvwkvJHbIcuV4OIddM4kcwEKgiU 0lXl9SdBZx4kSC2cX16rGXry3TJA+p6+DUjn4tDDR1QJIlFjrfpFwuj9x9+HiUuh i/lo9mH2tJ2ZaYsNwKf9Qf3uHcBydtXy+4zigMnZB3ppUabEgEXAoD1vfXrSYc6q h2gIbkI+92mP5GPChSgE+mAnE4WgO5pCcA+CQ9x96I8sciOs2MZ6QnzCHPGN1G5G HCDZDUINSi0dUi1ei6bXWg0RB8xGWuIQiETPnugiX3d885vs2rY6yOwfz5Eo4xTI Ur13FMnxbc2QWGYaNZGbXtCEv7qK6lIi -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:51 2025 by rpki-client