$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: kazH6/iiKhNWkkg30Bbl8fs3yw+Kh5LuSeVN7XOpsNk= Subject key identifier: 8F:C2:7F:14:A0:27:B9:53:3F:CE:5A:43:61:6B:4A:8A:D0:36:D0:E6 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 018F Signing time: Sat 09 Aug 2025 03:29:16 +0000 Manifest this update: Sat 09 Aug 2025 03:29:15 +0000 Manifest next update: Sat 16 Aug 2025 03:29:15 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: QmJghcInrVwLlCi+ePTVMNc+b7wuVVwrliDez8QFMbU=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Aug 9 03:29:15 2025 GMT Not After : Aug 16 03:29:15 2025 GMT Subject: CN=6896c08b-2743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:64:a8:e4:90:77:cd:81:99:c9:e7:90:27: 25:56:99:4c:d3:2c:3e:f1:df:ef:60:c3:68:69:35: 3e:55:fd:25:cc:74:c7:4b:31:e6:31:cb:e3:2e:d2: 9b:03:4e:6e:13:e9:28:b6:b7:79:f2:15:11:06:1a: 82:04:0d:ec:71:02:c9:35:18:55:57:1a:a7:44:15: dd:c7:3a:02:39:44:eb:e2:c4:e2:13:b8:4b:30:2e: 3d:e8:9c:66:2c:90:47:03:cb:02:42:51:ab:22:60: 2b:f4:0a:58:13:ce:7f:2a:c6:53:38:c4:a5:b1:e7: 43:f3:ed:32:32:79:75:7b:9e:6b:2e:97:85:8c:e8: d6:1d:9a:eb:41:40:a5:98:40:7e:41:b0:ef:9b:4c: c6:d3:e3:be:f4:08:a3:65:9c:f1:f9:a8:2a:85:15: cb:f5:39:69:70:9b:25:33:ce:e4:20:7d:93:59:8b: 2f:87:de:98:44:8f:53:74:85:1f:28:dc:66:6b:45: 29:3e:f5:67:37:f7:4c:a5:d8:31:ce:11:e2:03:11: 73:8e:4e:d8:e9:f7:e0:03:50:8a:77:30:f4:79:51: 03:97:d7:d9:cd:3c:02:3f:ec:77:e5:74:3e:73:ca: 03:5d:6d:de:2e:9d:16:57:76:98:9f:7c:8f:e7:f0: e7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C2:7F:14:A0:27:B9:53:3F:CE:5A:43:61:6B:4A:8A:D0:36:D0:E6 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:2e:03:f0:19:c6:5d:6f:24:ec:6d:50:7d:fc:f8:57:7d:09: 16:cf:d8:8d:04:84:d1:5b:04:30:8b:a8:a5:43:d7:6e:7e:58: 74:a6:0d:7e:35:1f:95:2b:23:20:14:ff:d7:18:c0:76:a6:68: 96:6b:d5:b3:c9:18:1e:f5:6c:84:35:4c:c7:21:67:00:6d:7f: f0:44:2e:55:56:bc:14:1b:11:11:68:31:f3:41:d0:a5:13:6d: cf:ce:85:71:94:f3:8d:5d:b2:f3:9d:c4:ca:b1:e0:b0:03:d3: ad:ac:99:80:33:8d:50:2d:67:95:aa:c1:98:a8:e8:ca:75:ce: 4f:b6:a2:bc:51:af:ac:b6:e4:d2:b0:e5:97:13:47:61:a7:26: c0:1d:70:14:eb:bc:3c:a3:5f:18:9a:c8:7b:03:7d:d4:6c:1c: 5a:44:32:05:7a:1c:cd:9e:10:6d:34:ef:03:ad:c5:48:0e:da: 0d:4d:82:94:7d:5e:ad:d0:af:16:f3:88:72:32:18:50:82:a3: 42:3f:3a:fe:57:57:12:81:52:3a:74:fa:59:6f:55:fc:47:2d: 71:88:4f:99:f3:59:f6:7c:ad:76:0e:05:0f:c6:23:56:81:e0: f3:0d:77:34:32:2c:a9:d5:c7:4b:96:51:fb:3c:07:7f:99:c4: 62:85:5e:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwODA5MDMyOTE1WhcNMjUwODE2MDMyOTE1WjAYMRYwFAYD VQQDEw02ODk2YzA4Yi0yNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxj5kqOSQd82BmcnnkCclVplM0yw+8d/vYMNoaTU+Vf0lzHTHSzHmMcvjLtKb A05uE+kotrd58hURBhqCBA3scQLJNRhVVxqnRBXdxzoCOUTr4sTiE7hLMC496Jxm LJBHA8sCQlGrImAr9ApYE85/KsZTOMSlsedD8+0yMnl1e55rLpeFjOjWHZrrQUCl mEB+QbDvm0zG0+O+9AijZZzx+agqhRXL9TlpcJslM87kIH2TWYsvh96YRI9TdIUf KNxma0UpPvVnN/dMpdgxzhHiAxFzjk7Y6ffgA1CKdzD0eVEDl9fZzTwCP+x35XQ+ c8oDXW3eLp0WV3aYn3yP5/DngQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/CfxSg J7lTP85aQ2FrSorQNtDmMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyLgPwGcZdbyTsbVB9/PhXfQkWz9iNBITRWwQwi6ilQ9duflh0pg1+ NR+VKyMgFP/XGMB2pmiWa9WzyRge9WyENUzHIWcAbX/wRC5VVrwUGxERaDHzQdCl E23PzoVxlPONXbLzncTKseCwA9OtrJmAM41QLWeVqsGYqOjKdc5PtqK8Ua+stuTS sOWXE0dhpybAHXAU67w8o18Ymsh7A33UbBxaRDIFehzNnhBtNO8DrcVIDtoNTYKU fV6t0K8W84hyMhhQgqNCPzr+V1cSgVI6dPpZb1X8Ry1xiE+Z81n2fK12DgUPxiNW geDzDXc0Miyp1cdLllH7PAd/mcRihV5i -----END CERTIFICATE-----Generated at Sat Aug 9 05:40:16 2025 by rpki-client