$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: oMAuwOWW3GdwfFbH3cV6HKJ8DNBy1GjJbxMKodBm77M= Subject key identifier: C7:63:19:1B:EC:CE:C3:FA:A7:52:9D:DB:20:24:FD:E3:C4:7B:E0:20 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01A2 Signing time: Sat 09 Aug 2025 01:17:58 +0000 Manifest this update: Sat 09 Aug 2025 01:17:57 +0000 Manifest next update: Sat 16 Aug 2025 01:17:57 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: 1RjKWESi9osb7u/SJHpA4sq6S8VOIviNVJXPfsfIfVg=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Aug 9 01:17:57 2025 GMT Not After : Aug 16 01:17:57 2025 GMT Subject: CN=6896a1c5-3626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:08:0d:d6:af:46:02:45:e7:49:c5:47:6e: d7:06:13:85:2e:e2:8e:62:84:55:71:7c:40:4c:77: 55:f5:29:70:1b:a0:4d:92:b3:05:10:34:76:fe:9e: 93:27:de:6a:ce:df:cd:b6:33:6b:5c:28:bb:ce:a2: 70:94:c0:c8:da:3f:24:fc:c0:2c:0f:d2:89:b0:a1: db:26:e0:9d:0b:b0:66:01:8a:32:d2:4e:1d:06:8d: 99:29:86:8c:35:83:2a:6a:c0:8e:05:13:9d:dd:02: 6c:06:06:0e:c2:2e:f7:25:36:d3:eb:00:2e:23:23: 11:50:ae:0a:d8:9f:50:e0:20:39:0c:bd:98:b4:6c: 3f:a3:56:cf:69:2e:39:eb:5c:1b:af:b9:54:36:90: ed:ea:2f:8d:8a:0b:8e:3c:ab:95:f4:90:70:49:db: 62:13:aa:df:c6:bb:73:95:c0:bb:64:56:2f:55:ea: 8d:07:43:e5:bd:7c:ee:ee:a4:2e:30:18:ac:3e:c9: 36:f6:77:58:ef:69:8c:ce:95:d5:01:f8:83:48:28: 74:3c:d0:da:51:9e:96:09:9f:85:8c:3e:90:d5:ef: de:bb:4d:71:ca:fb:88:ec:04:46:b6:fe:d9:ac:dc: af:d7:6d:49:81:b3:69:89:16:7d:d5:0e:f9:4d:48: 0c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:63:19:1B:EC:CE:C3:FA:A7:52:9D:DB:20:24:FD:E3:C4:7B:E0:20 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:13:c0:92:a9:39:df:f3:d5:e9:ab:ae:18:a5:e9:22:79:d4: 45:ae:93:74:fb:3b:a0:b7:d9:65:14:5a:31:7b:93:24:77:6e: f6:48:e8:8d:11:d6:a4:ab:f2:31:8c:27:38:62:7c:83:2b:d1: 41:ab:51:7c:80:45:73:de:ff:af:56:8f:ea:28:dd:81:49:95: cf:c8:a3:95:e8:c6:dd:44:50:29:7d:f0:de:c3:04:ee:03:98: ff:d2:60:ad:20:be:c8:2d:f1:eb:90:71:ca:20:c8:49:87:05: 40:21:fe:c1:23:6d:a4:e7:df:e1:01:a6:d6:24:33:18:fc:82: 58:f6:9e:89:e2:91:c6:28:a6:2a:90:9c:01:e8:48:11:c5:5a: 92:9d:80:98:50:ca:db:ff:f4:5b:58:b9:60:af:47:ed:38:10: a3:cb:d7:b2:50:82:e3:e2:48:98:db:8b:6b:9b:09:dc:80:6e: 11:87:ae:bc:2f:fd:4d:8c:a9:95:15:66:01:a7:58:52:61:0f: e5:e3:a5:4c:c3:e8:ed:cf:d8:97:b8:d8:c6:0b:77:67:77:48: 16:c8:44:9e:b7:bf:16:e7:75:18:23:8a:09:a7:91:c3:df:49: 92:0a:ee:9a:21:43:05:62:c3:4e:d3:4d:dc:70:d5:6c:60:f2: 3a:e9:19:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjUwODA5MDExNzU3WhcNMjUwODE2MDExNzU3WjAYMRYwFAYD VQQDEw02ODk2YTFjNS0zNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC0IDdavRgJF50nFR27XBhOFLuKOYoRVcXxATHdV9SlwG6BNkrMFEDR2/p6T J95qzt/NtjNrXCi7zqJwlMDI2j8k/MAsD9KJsKHbJuCdC7BmAYoy0k4dBo2ZKYaM NYMqasCOBROd3QJsBgYOwi73JTbT6wAuIyMRUK4K2J9Q4CA5DL2YtGw/o1bPaS45 61wbr7lUNpDt6i+NiguOPKuV9JBwSdtiE6rfxrtzlcC7ZFYvVeqNB0PlvXzu7qQu MBisPsk29ndY72mMzpXVAfiDSCh0PNDaUZ6WCZ+FjD6Q1e/eu01xyvuI7ARGtv7Z rNyv121JgbNpiRZ91Q75TUgMuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdjGRvs zsP6p1Kd2yAk/ePEe+AgMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3E8CSqTnf89Xpq64YpekiedRFrpN0+zugt9llFFoxe5Mkd272SOiN Edakq/IxjCc4YnyDK9FBq1F8gEVz3v+vVo/qKN2BSZXPyKOV6MbdRFApffDewwTu A5j/0mCtIL7ILfHrkHHKIMhJhwVAIf7BI22k59/hAabWJDMY/IJY9p6J4pHGKKYq kJwB6EgRxVqSnYCYUMrb//RbWLlgr0ftOBCjy9eyUILj4kiY24trmwncgG4Rh668 L/1NjKmVFWYBp1hSYQ/l46VMw+jtz9iXuNjGC3dnd0gWyESet78W53UYI4oJp5HD 30mSCu6aIUMFYsNO003ccNVsYPI66RnR -----END CERTIFICATE-----Generated at Sun Aug 10 16:13:23 2025 by rpki-client