$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: QyU0SVFtsRWA/nvMdY8m8aLxhhZo7GID819wZEwsy38= Subject key identifier: E1:E4:CF:BE:8B:80:75:BD:3B:77:CF:56:55:33:32:3F:6E:F4:A9:02 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34BE Signing time: Sun 10 Aug 2025 14:29:43 +0000 Manifest this update: Sun 10 Aug 2025 14:29:42 +0000 Manifest next update: Sun 17 Aug 2025 14:29:42 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: 05aXVtpppxcSL/EqteUsE6hSXb/2fA/X1S6zP/mTshs=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: FLmPrtdNYA1lyMt3p7VIue3hrg8ncz0b4EpnqmxQ4Fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Aug 10 14:29:42 2025 GMT Not After : Aug 17 14:29:42 2025 GMT Subject: CN=6898acd6-b931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:3d:c4:42:c2:95:7a:30:f1:6f:88:48:1f: 0b:1d:8a:b2:9a:8c:da:dd:04:88:82:2e:f6:e0:76: 72:a6:f9:90:68:31:0e:f4:3c:b9:ba:d5:71:c3:c5: f7:09:13:13:31:25:5d:ef:0b:a7:34:99:4c:3f:82: f4:c6:88:f2:84:55:a7:b4:0f:ad:91:2e:eb:91:83: 3d:3a:37:e5:59:8b:27:7a:c0:cf:b0:53:a5:9c:d4: ae:7c:dc:8e:e3:2d:95:0e:e4:3b:e2:ef:fd:29:35: cb:0d:e4:ef:cf:4e:b5:4e:7d:1a:35:d2:2f:0d:84: db:79:fe:f1:67:21:1d:89:dc:55:59:05:ab:6b:7b: 58:4c:31:1b:f1:05:29:31:45:f6:a7:32:21:23:84: 82:7a:cb:28:eb:0b:88:c9:46:84:16:6f:cc:b4:5c: 5e:ba:7a:6b:34:f2:93:0d:7b:30:11:de:b2:7d:a4: ec:c0:30:39:26:8c:53:a9:43:b7:03:34:a4:7d:79: 07:83:f2:99:93:29:80:9d:d9:3e:30:23:a1:f5:76: c2:df:f6:f7:f7:e1:9b:c8:94:2c:22:44:cf:98:13: 99:25:43:f8:b9:96:7e:ac:a6:e8:f6:48:5d:18:3e: be:d3:a4:2e:db:09:f8:38:94:72:06:9d:2e:c5:1e: 47:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E4:CF:BE:8B:80:75:BD:3B:77:CF:56:55:33:32:3F:6E:F4:A9:02 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:54:c0:55:78:7b:ea:08:50:3a:4f:3e:bf:ba:71:c1:92:11: 45:98:b8:2f:23:41:ab:30:55:a2:5f:a7:31:45:8e:c4:40:31: b4:df:50:b1:af:30:1e:93:ff:d4:7f:fa:ab:fb:f7:43:45:11: a1:d9:ca:7b:4e:ea:ab:49:fe:a1:4f:18:a6:0c:e6:24:b4:45: 82:9b:08:f8:ab:99:5a:01:45:97:45:66:f9:a1:6f:0b:d9:11: 8e:61:14:b2:fa:e9:5f:eb:87:9c:93:24:66:f5:c8:3b:a5:9a: 49:aa:ed:72:86:df:9d:6f:61:72:6e:ff:c7:96:87:87:99:33: a0:67:28:b5:0d:66:0b:af:0a:97:83:2e:27:f3:33:e6:50:5f: 5e:fe:b4:ae:00:c4:99:57:b0:5b:3f:2b:cf:4c:e2:76:36:aa: 25:49:0c:cb:90:81:60:c4:5f:3f:8d:fe:97:b1:87:2e:6c:1f: 95:ab:b8:23:1b:79:4c:c3:79:5c:a3:56:0b:06:d5:4f:55:4c: 82:67:30:66:36:d4:03:84:81:bf:1f:2c:02:bb:5d:80:7b:e6: 96:51:06:5f:cc:be:4e:92:ff:9e:1f:8f:aa:73:c8:b7:da:df: 36:71:8a:e8:62:e9:98:60:eb:1a:73:11:c1:8a:bd:c4:ba:85: fb:02:d4:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwODEwMTQyOTQyWhcNMjUwODE3MTQyOTQyWjAYMRYwFAYD VQQDEw02ODk4YWNkNi1iOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/I9xELClXow8W+ISB8LHYqymoza3QSIgi724HZypvmQaDEO9Dy5utVxw8X3 CRMTMSVd7wunNJlMP4L0xojyhFWntA+tkS7rkYM9OjflWYsnesDPsFOlnNSufNyO 4y2VDuQ74u/9KTXLDeTvz061Tn0aNdIvDYTbef7xZyEdidxVWQWra3tYTDEb8QUp MUX2pzIhI4SCesso6wuIyUaEFm/MtFxeunprNPKTDXswEd6yfaTswDA5JoxTqUO3 AzSkfXkHg/KZkymAndk+MCOh9XbC3/b39+GbyJQsIkTPmBOZJUP4uZZ+rKbo9khd GD6+06Qu2wn4OJRyBp0uxR5HawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHkz76L gHW9O3fPVlUzMj9u9KkCMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQVMBVeHvqCFA6Tz6/unHBkhFFmLgvI0GrMFWiX6cxRY7EQDG031Cx rzAek//Uf/qr+/dDRRGh2cp7TuqrSf6hTximDOYktEWCmwj4q5laAUWXRWb5oW8L 2RGOYRSy+ulf64eckyRm9cg7pZpJqu1yht+db2Fybv/HloeHmTOgZyi1DWYLrwqX gy4n8zPmUF9e/rSuAMSZV7BbPyvPTOJ2NqolSQzLkIFgxF8/jf6XsYcubB+Vq7gj G3lMw3lco1YLBtVPVUyCZzBmNtQDhIG/HywCu12Ae+aWUQZfzL5Okv+eH4+qc8i3 2t82cYroYumYYOsacxHBir3EuoX7AtRs -----END CERTIFICATE-----Generated at Mon Aug 11 04:08:36 2025 by rpki-client