$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft File: UylwC03drZ4_zcMnP00Y0-MEXcA.mft (raw, json) Hash identifier: FfbQzxkboEsWBVlA0lEuCK8w5SJ7aM/1xDd7btgkqos= Subject key identifier: CA:6E:E2:F8:1D:3A:97:13:56:B9:E5:03:24:59:C6:98:F6:08:1D:EF Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 08F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft Manifest number: 1966 Signing time: Sun 10 Aug 2025 17:20:41 +0000 Manifest this update: Sun 10 Aug 2025 17:20:41 +0000 Manifest next update: Sun 17 Aug 2025 17:20:41 +0000 Files and hashes: 1: UylwC03drZ4_zcMnP00Y0-MEXcA.crl (hash: n6rg70vpnhr5hMrFf3AkwqQDo4mbH08Hr6qg+cLlsEY=) 2: 31414558B0D511EFB17B942FC4F9AE02.roa (hash: mtUL6kpWcJ0s0WYAq9l26D9HLDGvLgZ5GCmZqFRcyjs=) 3: D9B56C8A7AB211EB99DAFE83C4F9AE02.roa (hash: F8NUI5IF7FjRVcKD/tqhJ5Q4QNzh0QGai7XMrRHjkus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2291 (0x8f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Aug 10 17:20:41 2025 GMT Not After : Aug 17 17:20:41 2025 GMT Subject: CN=6898d4e9-0716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:15:ff:6d:49:c6:6c:d5:18:40:8f:8f:85: f0:9a:33:66:c7:93:18:cb:16:b8:9e:74:80:92:73: 9e:fc:42:26:e6:05:f2:fa:9e:9e:78:ce:51:92:aa: 48:99:48:97:db:e9:f1:27:ca:77:2b:59:48:43:d9: bc:23:e8:84:b4:43:7b:f6:68:cd:f0:4d:87:54:91: 5b:e0:1d:10:84:be:12:86:bf:2e:9c:c5:7c:34:50: 4c:a9:9b:a2:5f:77:b7:4f:90:f7:85:67:01:d2:16: 8f:e1:0f:28:48:bf:98:09:5b:15:4e:14:14:2f:3f: 39:79:85:49:eb:f7:32:ff:cd:52:a3:b6:5d:47:8f: a8:13:ec:4a:cf:cd:a5:0b:71:3e:72:c3:ac:9a:69: 8a:7c:29:91:ce:29:0b:ee:64:de:fb:14:8f:6c:b4: b5:0d:6c:b3:38:bf:e9:a4:3e:fe:2b:c4:e4:91:0f: b8:70:25:c3:9d:a1:06:52:1d:e6:6d:bb:eb:c9:d0: 12:df:e4:e4:3e:b0:34:e9:b2:f6:d9:4e:b0:58:57: 4d:75:ca:b5:5b:e4:43:7e:90:67:37:ac:c3:e8:2d: 93:1a:c5:9a:e6:55:56:7b:1b:3f:8a:fb:55:fd:8d: 7c:c7:6b:61:e4:d7:44:5e:9d:eb:d0:cf:8f:72:19: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6E:E2:F8:1D:3A:97:13:56:B9:E5:03:24:59:C6:98:F6:08:1D:EF X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:18:28:d5:b8:94:d8:5d:5d:5a:9a:11:9e:2d:a5:48:8f:b3: 53:74:cc:45:19:55:87:a5:a4:da:da:ac:3e:77:d9:8e:86:41: 90:cb:9a:34:32:0b:ee:a7:16:3d:8d:4d:70:9d:ec:8d:02:38: e5:26:aa:8d:9c:e7:4c:89:3f:a5:4b:6a:a4:3b:5d:67:79:d0: fa:ee:f4:a6:89:e3:62:92:df:09:b6:5f:a1:85:c6:f7:ac:20: 1a:68:f2:f2:66:a4:c2:40:62:46:bd:79:20:d1:4b:de:72:0e: c5:bc:ed:4a:1c:db:26:0a:db:80:12:7e:de:40:f0:1d:5c:41: ec:d6:ec:3b:e1:32:74:5a:4d:0e:59:12:41:74:1a:11:5f:b9: be:93:b4:e1:26:02:c1:f4:7d:a7:f7:b2:6c:99:d0:58:ef:63: bb:0b:fa:e3:de:52:6e:e1:9f:ac:e9:70:5a:83:ae:81:21:43: 3d:d9:6e:d9:f4:03:cc:e2:eb:ed:4b:80:00:80:88:cf:dd:16: ca:16:a1:9f:f2:e8:f9:5d:cb:f5:8b:f3:1f:0b:5c:12:10:28: 85:61:08:9e:cb:82:ea:40:88:92:5a:fe:4a:7d:44:87:48:05: 68:77:42:dc:93:0a:e8:a8:b0:6c:f2:cb:43:c8:3a:e6:00:79: 68:c8:71:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjUwODEwMTcyMDQxWhcNMjUwODE3MTcyMDQxWjAYMRYwFAYD VQQDEw02ODk4ZDRlOS0wNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JMV/21JxmzVGECPj4XwmjNmx5MYyxa4nnSAknOe/EIm5gXy+p6eeM5RkqpI mUiX2+nxJ8p3K1lIQ9m8I+iEtEN79mjN8E2HVJFb4B0QhL4Shr8unMV8NFBMqZui X3e3T5D3hWcB0haP4Q8oSL+YCVsVThQULz85eYVJ6/cy/81So7ZdR4+oE+xKz82l C3E+csOsmmmKfCmRzikL7mTe+xSPbLS1DWyzOL/ppD7+K8TkkQ+4cCXDnaEGUh3m bbvrydAS3+TkPrA06bL22U6wWFdNdcq1W+RDfpBnN6zD6C2TGsWa5lVWexs/ivtV /Y18x2th5NdEXp3r0M+PchnE4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpu4vgd OpcTVrnlAyRZxpj2CB3vMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJa NF96Y01uUDAwWTAtTUVYY0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDGCjVuJTYXV1amhGeLaVIj7NTdMxFGVWHpaTa2qw+d9mOhkGQy5o0 MgvupxY9jU1wneyNAjjlJqqNnOdMiT+lS2qkO11nedD67vSmieNikt8Jtl+hhcb3 rCAaaPLyZqTCQGJGvXkg0Uvecg7FvO1KHNsmCtuAEn7eQPAdXEHs1uw74TJ0Wk0O WRJBdBoRX7m+k7ThJgLB9H2n97JsmdBY72O7C/rj3lJu4Z+s6XBag66BIUM92W7Z 9APM4uvtS4AAgIjP3RbKFqGf8uj5Xcv1i/MfC1wSECiFYQiey4LqQIiSWv5KfUSH SAVod0LckwroqLBs8stDyDrmAHloyHHU -----END CERTIFICATE-----Generated at Mon Aug 11 04:15:57 2025 by rpki-client