$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: M13mIlos12ayh/R+L0JkUoXDsaCaS+u733zRW0rpV8c= Subject key identifier: 4C:0E:CA:3B:8B:41:59:B2:67:64:B0:5D:31:AE:09:1D:62:3E:51:2A Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 042D Signing time: Thu 07 Aug 2025 00:51:24 +0000 Manifest this update: Thu 07 Aug 2025 00:51:23 +0000 Manifest next update: Thu 14 Aug 2025 00:51:23 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: p745cC3OsQq+nm/scnFcz8VMW9XxLgi3TpHYOeH5A6Y=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Aug 7 00:51:23 2025 GMT Not After : Aug 14 00:51:23 2025 GMT Subject: CN=6893f88b-f52a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:97:59:ac:51:bd:bf:cd:7d:a6:3a:b9:1c: 4b:2f:dc:c2:fe:0c:4c:2d:eb:ae:68:df:13:8b:6a: ca:c6:2d:75:05:90:59:fb:e5:72:34:3f:ec:ef:64: e0:17:4d:23:1b:a7:d8:d0:a5:f2:b7:f1:42:43:45: eb:53:e2:3b:a0:02:7e:22:62:6d:ca:99:a9:18:91: 1e:89:0f:76:d1:51:41:08:cb:31:37:65:09:38:2c: 5d:a7:a7:53:17:67:b0:35:5d:09:0f:b3:c0:b9:3e: 75:e2:98:7a:94:49:74:0f:b1:44:dd:fe:76:50:f9: af:9b:99:8e:13:81:4e:5a:d1:f0:27:fb:4c:f4:90: d2:24:7f:3a:c2:55:eb:3b:86:f3:6b:33:03:39:c7: 4d:3e:85:7c:14:04:46:85:06:27:01:92:a5:21:05: 8e:c5:e9:b6:59:92:b6:cd:cb:de:6e:08:c9:0b:ca: 5e:20:c5:0b:fb:ec:5f:e9:63:d1:7c:7a:dd:68:d0: 0e:36:d2:db:29:30:39:18:95:48:5f:ba:5f:48:68: 20:9b:6d:55:9b:5f:8d:e4:5c:c0:29:09:3e:1b:52: 76:f9:3d:17:ff:04:7a:a1:03:15:28:8f:c7:8e:87: a1:3f:3c:4f:d0:7b:b2:99:4f:e7:47:99:cc:0e:0d: 70:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0E:CA:3B:8B:41:59:B2:67:64:B0:5D:31:AE:09:1D:62:3E:51:2A X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:cf:bc:4c:39:9c:0e:af:fe:d7:87:64:8d:f8:ce:e1:dc:6f: 1f:be:a5:62:38:5c:b4:01:6a:c4:f1:06:45:57:2c:58:4d:a1: 78:9b:2b:2c:87:9d:64:ed:88:29:9a:0d:d8:8c:f0:b2:09:e4: 4f:c4:55:61:12:36:2d:65:e5:95:81:cf:8b:50:b8:0a:ff:ef: 37:f0:b0:9b:b3:66:cd:a9:4c:2f:25:67:ef:6f:6c:92:81:60: 41:af:a2:9a:a8:22:b8:22:39:75:ef:4c:a2:40:5c:d8:80:a8: 7b:07:96:4e:bc:23:35:27:e7:24:b9:2f:d6:f6:a2:b5:19:04: 70:41:dc:d9:4b:bd:2f:b4:6d:2a:1b:99:ed:b2:41:65:f7:20: e9:ae:46:ab:b1:23:1e:fb:44:9e:53:03:de:fd:f0:13:fb:7f: fc:f1:61:7d:3b:04:d5:ba:c7:10:6a:14:86:21:7f:08:dd:c0: b9:a0:17:3f:93:aa:f1:61:d0:4d:1e:e1:53:a5:59:2f:95:1b: 53:b4:4b:44:c1:45:a2:49:32:fb:c7:a7:14:b7:e4:c1:97:d2: 04:63:58:8e:b9:17:10:bc:37:cd:7c:46:43:bc:30:72:e9:cd: db:3f:28:c6:55:11:80:9e:d1:64:41:83:4a:ec:11:c9:87:2f: 7f:9c:1c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwODA3MDA1MTIzWhcNMjUwODE0MDA1MTIzWjAYMRYwFAYD VQQDEw02ODkzZjg4Yi1mNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQmXWaxRvb/NfaY6uRxLL9zC/gxMLeuuaN8Ti2rKxi11BZBZ++VyND/s72Tg F00jG6fY0KXyt/FCQ0XrU+I7oAJ+ImJtypmpGJEeiQ920VFBCMsxN2UJOCxdp6dT F2ewNV0JD7PAuT514ph6lEl0D7FE3f52UPmvm5mOE4FOWtHwJ/tM9JDSJH86wlXr O4bzazMDOcdNPoV8FARGhQYnAZKlIQWOxem2WZK2zcvebgjJC8peIMUL++xf6WPR fHrdaNAONtLbKTA5GJVIX7pfSGggm21Vm1+N5FzAKQk+G1J2+T0X/wR6oQMVKI/H joehPzxP0HuymU/nR5nMDg1w9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwOyjuL QVmyZ2SwXTGuCR1iPlEqMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhz7xMOZwOr/7Xh2SN+M7h3G8fvqViOFy0AWrE8QZFVyxYTaF4myss h51k7Ygpmg3YjPCyCeRPxFVhEjYtZeWVgc+LULgK/+838LCbs2bNqUwvJWfvb2yS gWBBr6KaqCK4Ijl170yiQFzYgKh7B5ZOvCM1J+ckuS/W9qK1GQRwQdzZS70vtG0q G5ntskFl9yDprkarsSMe+0SeUwPe/fAT+3/88WF9OwTVuscQahSGIX8I3cC5oBc/ k6rxYdBNHuFTpVkvlRtTtEtEwUWiSTL7x6cUt+TBl9IEY1iOuRcQvDfNfEZDvDBy 6c3bPyjGVRGAntFkQYNK7BHJhy9/nBxg -----END CERTIFICATE-----Generated at Fri Aug 8 19:22:22 2025 by rpki-client