$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: zutxXN5HxGcTyRzS7WrPnq6q5h4ZlV7hVHMK2qvs7YA= Subject key identifier: 0D:F1:CA:5B:86:75:1A:8D:40:1A:45:08:FE:AB:DD:1D:4A:32:5D:8C Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34A2 Signing time: Wed 18 Jun 2025 14:29:13 +0000 Manifest this update: Wed 18 Jun 2025 14:29:12 +0000 Manifest next update: Wed 25 Jun 2025 14:29:12 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: VNqexNoe4QsN9dED2XpsFlG8MiHha1cT9EJ6yHL5mOE=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13492 (0x34b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Jun 18 14:29:12 2025 GMT Not After : Jun 25 14:29:12 2025 GMT Subject: CN=6852cd39-b6e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:2b:77:6d:07:f0:70:2e:a0:c5:2b:78:66: 4c:c2:9e:f8:79:d6:8d:1a:15:84:69:2e:1a:4c:74: d8:6e:8c:ff:96:14:ef:c7:24:77:03:78:7f:cc:4c: ef:cf:f0:c5:94:20:43:35:d6:a8:fc:e9:00:a9:87: 75:21:36:b2:5f:1b:f4:80:cd:1a:91:b5:f3:b6:d7: b8:39:e1:a1:d2:68:57:76:44:66:4f:7a:3b:f8:08: db:1c:93:4a:e1:41:ac:bc:0a:09:19:4d:37:55:7e: 2c:38:48:45:a9:70:cc:c5:22:8c:7c:ad:0b:fc:5c: 3d:37:21:a8:4b:06:4a:16:08:c2:8e:43:e5:07:e9: 8c:1f:6f:f2:64:13:26:70:12:be:5b:2d:20:ef:ee: 1f:cf:06:41:ea:2c:d0:54:fb:a1:a2:4d:f5:fc:3a: dd:18:ad:b2:f6:73:a8:4a:82:b9:80:f7:be:f9:54: b6:dc:03:fb:c6:bd:98:ff:88:b1:11:ed:78:5d:09: ab:40:f2:62:e4:1b:c7:ab:02:e2:8c:8c:fc:e3:f9: 64:81:15:f9:d8:38:07:9d:52:20:65:c8:a0:ee:59: d5:ae:2d:58:99:b4:84:f9:08:b9:19:e5:c8:75:be: f9:a2:f8:9f:af:15:9c:8e:b9:3f:a6:41:bb:16:a1: 2f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F1:CA:5B:86:75:1A:8D:40:1A:45:08:FE:AB:DD:1D:4A:32:5D:8C X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:50:c7:55:b1:69:66:d7:8e:42:cf:ea:e5:22:71:a3:db:1b: 16:f4:d3:21:9a:b7:c8:cb:7f:f2:95:89:86:7d:eb:1d:e1:9e: 4a:53:6c:32:91:25:44:5f:d4:20:23:2c:30:b6:66:18:b7:1d: 6d:92:fc:6c:ba:e5:b8:23:c9:26:c7:74:3b:5d:e1:c7:4d:c1: 73:72:e0:4a:1b:05:0c:08:c9:b3:73:8f:a5:8a:ba:c4:f9:70: b8:0f:08:7e:15:a4:12:43:52:ca:22:e3:a7:85:66:c1:27:04: 01:9d:e5:55:e0:50:41:b4:2c:70:11:73:01:01:31:02:75:ac: d3:71:f2:7b:c7:52:45:a5:74:40:6c:22:46:26:5c:fd:84:5c: 6c:3c:e3:81:3e:a6:fa:1f:2b:43:36:8a:eb:58:e6:92:40:6d: 33:1a:6c:5d:bb:00:b7:fd:ba:e2:b1:48:c7:5d:26:c4:06:49: fb:49:b0:10:4c:34:e4:9b:d8:05:f0:dd:64:7a:2b:dc:6c:ba: 9d:90:7a:a7:22:fe:a5:f5:a9:c8:a2:d2:36:93:28:78:b9:f6: cc:71:04:06:f1:00:0d:a4:15:4a:8b:46:39:04:f4:7a:07:85: ae:14:4f:1f:e5:68:52:d2:3d:9c:da:17:55:be:71:d0:a1:a5: d0:0b:0b:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwNjE4MTQyOTEyWhcNMjUwNjI1MTQyOTEyWjAYMRYwFAYD VQQDEw02ODUyY2QzOS1iNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApasrd20H8HAuoMUreGZMwp74edaNGhWEaS4aTHTYboz/lhTvxyR3A3h/zEzv z/DFlCBDNdao/OkAqYd1ITayXxv0gM0akbXztte4OeGh0mhXdkRmT3o7+AjbHJNK 4UGsvAoJGU03VX4sOEhFqXDMxSKMfK0L/Fw9NyGoSwZKFgjCjkPlB+mMH2/yZBMm cBK+Wy0g7+4fzwZB6izQVPuhok31/DrdGK2y9nOoSoK5gPe++VS23AP7xr2Y/4ix Ee14XQmrQPJi5BvHqwLijIz84/lkgRX52DgHnVIgZcig7lnVri1YmbSE+Qi5GeXI db75ovifrxWcjrk/pkG7FqEvkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3xyluG dRqNQBpFCP6r3R1KMl2MMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYUMdVsWlm145Cz+rlInGj2xsW9NMhmrfIy3/ylYmGfesd4Z5KU2wy kSVEX9QgIywwtmYYtx1tkvxsuuW4I8kmx3Q7XeHHTcFzcuBKGwUMCMmzc4+lirrE +XC4Dwh+FaQSQ1LKIuOnhWbBJwQBneVV4FBBtCxwEXMBATECdazTcfJ7x1JFpXRA bCJGJlz9hFxsPOOBPqb6HytDNorrWOaSQG0zGmxduwC3/brisUjHXSbEBkn7SbAQ TDTkm9gF8N1keivcbLqdkHqnIv6l9anIotI2kyh4ufbMcQQG8QANpBVKi0Y5BPR6 B4WuFE8f5WhS0j2c2hdVvnHQoaXQCwu5 -----END CERTIFICATE-----Generated at Fri Jun 20 00:24:51 2025 by rpki-client