$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: cxeySGutqPI7U9BL+j47LRklv7k5uV2Ahh5+YeK09mY= Subject key identifier: 51:71:F0:C3:81:CE:2D:A8:25:ED:F8:D6:97:78:A8:23:97:D6:99:BA Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34EE Signing time: Tue 04 Nov 2025 14:32:23 +0000 Manifest this update: Tue 04 Nov 2025 14:32:22 +0000 Manifest next update: Tue 11 Nov 2025 14:32:22 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: 3Tr22+yr5YIxY/mfvY8WPsyFqPsFLQZDhZYj3KbT5D4=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: ApP9kmn+5JHiG5SuT5S92MP3i+OCCKbJEPxMhqV6acY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13570 (0x3502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Nov 4 14:32:22 2025 GMT Not After : Nov 11 14:32:22 2025 GMT Subject: CN=690a0e76-072c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:eb:93:50:b0:67:40:68:76:95:72:4a:aa:08: 0b:dc:66:f7:6f:eb:19:48:cf:b3:72:60:1d:b7:23: ba:b5:84:fc:77:61:d8:e4:0f:c6:76:6b:81:39:88: 3b:b5:6e:a4:09:4d:68:d5:9c:af:91:cd:35:9f:1e: 6f:73:cb:1e:7d:9a:6b:7a:ec:39:27:c8:b0:94:da: b8:9c:cb:b9:60:49:71:ab:8d:38:c6:c9:31:65:9b: ed:3c:eb:8f:e6:0c:ee:14:48:d7:c0:c1:d5:ed:06: f9:75:85:95:1e:7f:d9:39:cf:ac:8f:f6:fb:4e:7c: ca:83:a1:b4:68:92:90:0b:76:91:f0:1e:f8:16:e5: 78:45:c2:06:93:a4:6b:0e:72:92:b7:57:fa:8e:8b: 1a:df:24:68:a3:2c:16:fc:68:8f:cb:c4:a2:f3:04: 3e:8d:55:b4:17:f6:45:f4:8a:e8:27:03:85:62:4d: f2:4a:8d:df:57:b6:fa:81:d5:9b:67:65:14:c1:5c: 40:39:b5:96:e3:1e:fd:98:3a:fb:ba:4d:32:43:be: 2c:93:11:f7:9f:a0:ea:1d:3f:f5:3b:55:32:ff:77: 77:ac:ea:6b:d2:47:6a:b8:cf:cf:1b:52:f3:bc:91: c8:d4:2d:30:30:42:b0:e5:33:c9:7f:38:d7:9a:f4: 43:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:71:F0:C3:81:CE:2D:A8:25:ED:F8:D6:97:78:A8:23:97:D6:99:BA X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:e4:b4:74:9b:4c:45:a1:d4:44:e6:31:8a:cd:83:ef:1a:eb: 16:f2:7d:e6:68:27:b9:05:14:01:ae:e0:99:8a:cb:7b:f5:60: fe:27:33:1d:58:0e:0d:79:1c:67:20:43:39:96:36:61:3e:03: 77:72:cf:df:11:2e:d4:33:99:ea:27:c7:82:e4:50:88:8f:2b: 3a:c4:c1:e4:f7:64:71:62:a3:11:4f:f2:45:c8:32:22:63:d2: 28:df:e9:7c:0a:ca:e9:18:c4:cc:97:6d:3c:73:82:d2:8b:93: 7c:37:96:44:06:37:19:f5:31:2d:d6:aa:32:62:00:7b:00:c9: 9c:04:44:05:67:54:71:33:92:a0:74:d2:15:79:4f:5e:f1:8b: 02:03:f4:b3:02:48:22:6b:22:a5:3b:90:64:7f:0b:4c:14:97: cc:08:36:25:3d:e7:94:5e:6f:8f:5c:86:c6:49:c7:36:0d:3d: 21:50:f9:f3:26:5e:0d:e8:70:14:b0:59:b0:f2:aa:9a:d4:9c: 85:a4:98:eb:64:a6:97:95:f0:83:6f:ad:9d:24:bb:49:c4:4c: 1a:3e:4a:75:99:8e:60:dc:05:24:a2:9a:2d:74:d9:78:d2:60: 76:86:87:11:86:b4:88:ce:7a:00:a8:e0:d8:d1:9b:88:08:8d: 93:d6:97:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUxMTA0MTQzMjIyWhcNMjUxMTExMTQzMjIyWjAYMRYwFAYD VQQDEw02OTBhMGU3Ni0wNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2euTULBnQGh2lXJKqggL3Gb3b+sZSM+zcmAdtyO6tYT8d2HY5A/GdmuBOYg7 tW6kCU1o1Zyvkc01nx5vc8sefZpreuw5J8iwlNq4nMu5YElxq404xskxZZvtPOuP 5gzuFEjXwMHV7Qb5dYWVHn/ZOc+sj/b7TnzKg6G0aJKQC3aR8B74FuV4RcIGk6Rr DnKSt1f6josa3yRooywW/GiPy8Si8wQ+jVW0F/ZF9IroJwOFYk3ySo3fV7b6gdWb Z2UUwVxAObWW4x79mDr7uk0yQ74skxH3n6DqHT/1O1Uy/3d3rOpr0kdquM/PG1Lz vJHI1C0wMEKw5TPJfzjXmvRDxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFx8MOB zi2oJe341pd4qCOX1pm6MB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA45LR0m0xFodRE5jGKzYPvGusW8n3maCe5BRQBruCZist79WD+JzMd WA4NeRxnIEM5ljZhPgN3cs/fES7UM5nqJ8eC5FCIjys6xMHk92RxYqMRT/JFyDIi Y9Io3+l8CsrpGMTMl208c4LSi5N8N5ZEBjcZ9TEt1qoyYgB7AMmcBEQFZ1RxM5Kg dNIVeU9e8YsCA/SzAkgiayKlO5BkfwtMFJfMCDYlPeeUXm+PXIbGScc2DT0hUPnz Jl4N6HAUsFmw8qqa1JyFpJjrZKaXlfCDb62dJLtJxEwaPkp1mY5g3AUkopotdNl4 0mB2hocRhrSIznoAqODY0ZuICI2T1pf5 -----END CERTIFICATE-----Generated at Wed Nov 5 10:30:48 2025 by rpki-client