$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft File: uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft (raw, json) Hash identifier: dsM/AB33qwmYbnINriyMJDFfrbaNlm4lSoc7iWhbK/Y= Subject key identifier: 15:C9:0C:39:BD:6A:EB:FA:13:54:3E:3B:5C:B0:2C:71:2C:C7:AC:5D Authority key identifier: B9:A0:BE:FF:92:AF:7C:DE:19:00:85:05:2F:1F:4F:1F:92:BD:A4:F2 Certificate issuer: /CN=A9133E16/serialNumber=B9A0BEFF92AF7CDE190085052F1F4F1F92BDA4F2 Certificate serial: 0908 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft Manifest number: 0908 Signing time: Mon 04 Aug 2025 20:36:25 +0000 Manifest this update: Mon 04 Aug 2025 20:36:24 +0000 Manifest next update: Mon 11 Aug 2025 20:36:24 +0000 Files and hashes: 1: uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl (hash: q+h0OEJMsoY42FdyFcHJglsungR2RDSTknefxApWGy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16, serialNumber=B9A0BEFF92AF7CDE190085052F1F4F1F92BDA4F2 Validity Not Before: Aug 4 20:36:24 2025 GMT Not After : Aug 11 20:36:24 2025 GMT Subject: CN=689119c9-cf12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:29:df:39:cc:93:e0:a3:43:22:46:26:b0:cb: 4e:9f:22:fa:67:01:2f:13:f7:8a:45:2f:2f:e8:f5: d1:3b:60:81:e7:12:d9:6f:9b:e9:ba:5a:75:1a:9c: 11:f9:a2:93:9c:e5:2a:00:29:be:a9:eb:76:a1:22: 9f:66:ed:cd:c3:ef:61:f2:aa:89:b9:4a:19:65:40: c1:73:db:ae:9e:16:c3:6f:ff:2e:1c:62:3e:ee:4e: 1f:53:22:17:ad:0c:7e:69:1d:ab:1c:a2:5a:51:d2: 21:08:30:13:59:be:35:a2:e5:7d:07:11:80:e6:63: 62:90:a3:aa:0e:d5:f0:ee:7b:af:36:8b:6a:fe:c1: c0:91:49:e7:28:73:2a:ff:32:60:66:67:72:09:25: 53:4e:6d:2f:6f:56:d4:42:49:76:5f:3e:7d:bf:dd: 75:ed:0c:0e:34:77:9f:f1:c5:27:c5:b1:a3:31:6a: a9:05:42:66:e2:d1:f1:78:b0:6c:49:e3:c0:4d:63: e1:b9:16:02:e7:c5:83:ad:4f:db:08:3f:dc:3a:8a: a7:b3:51:a0:84:63:67:ee:5a:f0:4f:a8:26:ea:90: a2:a1:4e:36:57:c0:9c:35:37:0e:0a:dc:c6:d0:cb: 55:fa:29:b4:61:74:06:82:9d:78:b1:c4:78:fe:e9: 4a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C9:0C:39:BD:6A:EB:FA:13:54:3E:3B:5C:B0:2C:71:2C:C7:AC:5D X509v3 Authority Key Identifier: keyid:B9:A0:BE:FF:92:AF:7C:DE:19:00:85:05:2F:1F:4F:1F:92:BD:A4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:6e:9c:15:31:2b:50:e4:f9:37:bc:25:9d:98:33:bf:14:4d: 38:60:49:ea:76:bc:a2:4f:d5:49:90:2a:70:91:ae:6a:10:c6: d7:ba:ea:78:fc:d7:35:f6:c3:c6:fe:80:54:26:4d:6d:a5:57: 67:63:49:9f:d4:b9:3c:6e:c7:fb:a8:79:fc:f9:e3:41:00:39: 72:84:7d:65:19:5f:1a:31:c4:49:88:98:12:6a:0d:18:7f:c2: 46:34:29:06:d9:55:26:d5:a5:15:dc:7a:6d:7e:5e:92:ed:4e: a7:fb:96:f2:c3:a1:90:79:40:7e:f6:b4:70:48:89:6c:e0:96: 6d:76:2b:8f:ec:97:37:82:68:13:95:1a:a7:36:9d:59:78:a6: bc:b1:64:ff:e5:a1:26:24:50:71:89:1a:dc:45:e7:24:a4:2f: 9a:d7:97:b0:05:98:17:90:b2:97:81:79:6c:98:0f:32:d2:63: f1:99:23:1d:06:35:6e:b9:55:ac:6e:ab:68:f7:2a:73:e3:87: 91:b7:9a:6f:71:cb:6c:8c:cf:2b:86:18:22:fd:87:fb:c0:04: 6b:6a:f5:49:9d:4b:e0:47:77:6f:a1:07:f5:43:77:3d:f0:4a: 01:d7:f0:fd:03:52:42:6d:3d:3a:0d:9f:f1:b3:2b:56:f2:b9: d8:da:cb:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKEI5QTBCRUZGOTJBRjdDREUxOTAwODUwNTJGMUY0RjFG OTJCREE0RjIwHhcNMjUwODA0MjAzNjI0WhcNMjUwODExMjAzNjI0WjAYMRYwFAYD VQQDEw02ODkxMTljOS1jZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvynfOcyT4KNDIkYmsMtOnyL6ZwEvE/eKRS8v6PXRO2CB5xLZb5vpulp1GpwR +aKTnOUqACm+qet2oSKfZu3Nw+9h8qqJuUoZZUDBc9uunhbDb/8uHGI+7k4fUyIX rQx+aR2rHKJaUdIhCDATWb41ouV9BxGA5mNikKOqDtXw7nuvNotq/sHAkUnnKHMq /zJgZmdyCSVTTm0vb1bUQkl2Xz59v9117QwONHef8cUnxbGjMWqpBUJm4tHxeLBs SePATWPhuRYC58WDrU/bCD/cOoqns1GghGNn7lrwT6gm6pCioU42V8CcNTcOCtzG 0MtV+im0YXQGgp14scR4/ulKJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXJDDm9 auv6E1Q+O1ywLHEsx6xdMB8GA1UdIwQYMBaAFLmgvv+Sr3zeGQCFBS8fTx+SvaTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9ENTA5NEZBNkFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi91YUMtXzVLdmZONFpBSVVGTHg5UEg1Szlw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VhQy1fNUt2Zk40WkFJVUZMeDlQSDVLOXBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0UxNi9ENTA5NEZBNkFDNzQxMUVBODZFQTlGNDhDNEY5QUUwMi91YUMtXzVLdmZO NFpBSVVGTHg5UEg1SzlwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCbpwVMStQ5Pk3vCWdmDO/FE04YEnqdryiT9VJkCpwka5qEMbXuup4 /Nc19sPG/oBUJk1tpVdnY0mf1Lk8bsf7qHn8+eNBADlyhH1lGV8aMcRJiJgSag0Y f8JGNCkG2VUm1aUV3Hptfl6S7U6n+5byw6GQeUB+9rRwSIls4JZtdiuP7Jc3gmgT lRqnNp1ZeKa8sWT/5aEmJFBxiRrcReckpC+a15ewBZgXkLKXgXlsmA8y0mPxmSMd BjVuuVWsbqto9ypz44eRt5pvcctsjM8rhhgi/Yf7wARravVJnUvgR3dvoQf1Q3c9 8EoB1/D9A1JCbT06DZ/xsytW8rnY2stu -----END CERTIFICATE-----Generated at Wed Aug 6 16:14:07 2025 by rpki-client