$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: WA8KaXOhL3PledEbH67hZGGMnUwQfkF4Xhzsf97fU2g= Subject key identifier: 5B:02:77:1A:17:7E:79:8C:FD:86:B2:81:2F:8C:57:AD:CE:34:9C:45 Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 43 Signing time: Sat 09 Aug 2025 07:57:33 +0000 Manifest this update: Sat 09 Aug 2025 07:57:32 +0000 Manifest next update: Sat 16 Aug 2025 07:57:32 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: BnxuYgfGQQ2oyXMNCU4OmL5eMRZ1fUoV2A1h5UUO3yc=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Aug 9 07:57:32 2025 GMT Not After : Aug 16 07:57:32 2025 GMT Subject: CN=6896ff6c-3361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:ff:b3:0f:99:3d:f4:6c:1a:63:28:2e:9c: 6e:bb:ba:d4:6b:ea:5d:6e:34:fb:a5:f0:a0:35:58: 00:37:a8:b7:cd:e4:9c:2b:08:84:fa:4c:bd:21:32: d4:a5:40:f4:d7:5f:4c:83:48:ca:81:69:e0:08:c0: 72:be:5e:e9:d5:a5:bd:5b:b2:2b:dd:c0:b3:62:19: 3c:53:2c:fe:b6:be:b0:ee:f4:42:d6:bf:ad:59:59: 32:fa:15:08:67:88:ab:7f:b9:24:8d:01:75:5b:28: 98:c5:69:64:93:15:53:1d:15:da:bc:1e:79:5e:05: ee:cf:b7:bd:8a:5a:68:04:52:8e:e9:1c:31:13:49: aa:ac:96:2a:ea:e9:ca:aa:b6:0c:42:30:f1:f6:61: 0a:8c:18:8a:db:de:cf:e1:3c:da:1e:d8:a5:7b:a4: cf:e3:5d:d3:59:2c:5c:59:66:09:62:45:81:a5:a8: 6a:0b:6f:1d:12:70:94:8b:ea:7b:01:ef:9d:9d:b3: be:91:ee:22:7b:92:23:ca:25:37:28:10:0a:3c:1a: 1c:de:41:f5:76:0a:fb:6f:0c:68:99:b8:20:51:52: bd:c5:b5:ba:b1:f9:94:24:b5:e6:c9:2a:c1:e6:11: a0:c5:ff:1d:b5:51:cf:81:62:70:e5:f3:2c:ee:c4: 8f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:02:77:1A:17:7E:79:8C:FD:86:B2:81:2F:8C:57:AD:CE:34:9C:45 X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:21:62:e2:23:00:5c:35:34:ba:3f:3c:a1:b5:71:02:98:da: 81:39:24:f4:b9:15:68:8f:d6:6a:cc:2e:c8:b4:13:94:18:64: de:e2:1d:69:78:b1:03:5c:48:ce:a2:70:a4:74:4c:f7:db:c9: 1f:9c:8b:9d:55:92:74:d0:c2:3f:96:fa:b1:3f:ec:6c:32:7f: 67:4a:aa:57:f8:4e:51:ce:c3:06:71:4e:83:f9:2b:41:af:20: 1e:79:f7:9a:4c:c7:42:1f:2c:0e:93:a1:0d:b7:ab:a9:6b:85: 00:f8:e4:6d:e2:ab:af:8c:84:85:70:41:dc:7c:19:da:16:73: b3:d3:f1:d8:0c:52:da:53:63:47:16:69:df:7f:9c:d1:dd:6a: 17:8f:ed:57:76:54:eb:78:e2:b9:4f:4f:e1:8a:c9:7c:f8:ae: fb:ae:31:21:68:00:7f:eb:a2:1c:47:22:96:5a:1b:5f:9f:68: 54:07:ae:b0:7f:24:65:36:5d:35:ed:61:7d:2d:7e:48:cf:80: 8e:c0:bd:e4:52:6c:3e:d9:3c:3a:65:b6:67:ac:fa:1a:1f:4b: cb:54:82:62:71:9c:f7:78:5d:eb:ce:37:87:8c:20:39:4f:21: 59:44:d6:fd:92:0d:bf:36:c8:a1:dd:dc:5a:38:39:83:24:00: 2e:27:32:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTA4MDkwNzU3MzJaFw0yNTA4MTYwNzU3MzJaMBgxFjAUBgNV BAMTDTY4OTZmZjZjLTMzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDce/+zD5k99GwaYygunG67utRr6l1uNPul8KA1WAA3qLfN5JwrCIT6TL0hMtSl QPTXX0yDSMqBaeAIwHK+XunVpb1bsivdwLNiGTxTLP62vrDu9ELWv61ZWTL6FQhn iKt/uSSNAXVbKJjFaWSTFVMdFdq8HnleBe7Pt72KWmgEUo7pHDETSaqslirq6cqq tgxCMPH2YQqMGIrb3s/hPNoe2KV7pM/jXdNZLFxZZgliRYGlqGoLbx0ScJSL6nsB 752ds76R7iJ7kiPKJTcoEAo8GhzeQfV2CvtvDGiZuCBRUr3Ftbqx+ZQktebJKsHm EaDF/x21Uc+BYnDl8yzuxI9zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWwJ3Ghd+ eYz9hrKBL4xXrc40nEUwHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIIhYuIjAFw1NLo/PKG1cQKY2oE5JPS5FWiP1mrMLsi0E5QYZN7iHWl4 sQNcSM6icKR0TPfbyR+ci51VknTQwj+W+rE/7Gwyf2dKqlf4TlHOwwZxToP5K0Gv IB5595pMx0IfLA6ToQ23q6lrhQD45G3iq6+MhIVwQdx8GdoWc7PT8dgMUtpTY0cW ad9/nNHdaheP7Vd2VOt44rlPT+GKyXz4rvuuMSFoAH/rohxHIpZaG1+faFQHrrB/ JGU2XTXtYX0tfkjPgI7AveRSbD7ZPDpltmes+hofS8tUgmJxnPd4XevON4eMIDlP IVlE1v2SDb82yKHd3Fo4OYMkAC4nMss= -----END CERTIFICATE-----Generated at Sat Aug 9 23:16:49 2025 by rpki-client