$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: AdPfySQkjyE80yYZTcRvGGOtn125U/1B5elLOkKpHaI= Subject key identifier: 29:5B:9B:FF:3F:64:AB:F2:A8:35:8F:C5:55:35:A6:7D:E3:31:33:AA Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34B1 Signing time: Fri 18 Jul 2025 14:31:30 +0000 Manifest this update: Fri 18 Jul 2025 14:31:29 +0000 Manifest next update: Fri 25 Jul 2025 14:31:29 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: aXYWwVcQmnzBHWh+TfvB3c5zliS4ZcEQQlugxWOucvc=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13507 (0x34c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Jul 18 14:31:29 2025 GMT Not After : Jul 25 14:31:29 2025 GMT Subject: CN=687a5ac2-f54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:82:2f:bc:ef:e5:4d:90:d4:f0:88:95:08:86: c0:9c:1c:85:8f:12:9b:3d:1f:cd:d3:74:28:6b:4a: c0:9b:d6:e5:1c:6e:15:3c:77:03:d5:38:6b:2b:82: ca:69:3b:e9:b2:17:1f:14:7a:77:83:9e:fb:1a:45: c3:71:53:d6:95:1c:12:f9:95:53:b8:40:f6:21:96: 8b:f0:9c:29:5b:1c:99:c9:6d:7f:39:29:59:af:d5: a9:d4:dc:ee:9c:0a:c6:8b:b4:be:b5:03:3d:ca:35: 0b:29:25:4e:ba:12:21:07:bf:f1:c5:9f:73:6f:d6: 56:9d:aa:6d:0b:a2:4c:69:4d:fd:73:6b:d8:da:c8: 48:e8:d8:23:f8:cc:74:16:0f:6d:1f:21:59:10:f3: 4a:cf:12:13:84:0c:bf:48:49:b0:df:5d:18:07:72: ad:56:6b:17:64:11:ab:d3:c4:13:0b:3e:83:f9:ba: 99:e7:06:81:bb:76:e1:0a:b3:01:5e:54:f0:ae:c1: 6c:d1:5a:2e:c4:25:a5:7a:31:28:d1:e7:63:19:3f: b1:9d:a9:5f:87:4a:84:2a:12:07:11:ca:52:4d:6f: 0c:86:4d:70:0f:ef:f4:96:0d:67:43:04:44:d4:bb: e5:e3:bd:a3:3c:fe:5b:59:f7:67:e0:e8:9a:f5:db: 1f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5B:9B:FF:3F:64:AB:F2:A8:35:8F:C5:55:35:A6:7D:E3:31:33:AA X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:94:2b:53:c2:83:cf:f2:7e:3d:e5:73:56:8d:a4:8b:b3:50: 9d:e5:58:05:a5:57:cf:6e:c8:fb:e0:fb:b5:52:78:db:5d:33: 6b:5e:1c:db:1a:fe:ea:29:30:3a:dc:87:9f:f1:aa:9e:cb:33: b0:a4:8b:a5:8c:b5:d4:21:37:70:f1:4c:fd:d0:d0:6d:49:53: ce:7f:f4:0d:7a:2f:49:1d:db:ad:71:6a:90:9b:4b:58:db:bf: fd:cc:1e:cc:b6:22:ec:63:35:6e:06:76:d0:ba:a5:b5:bc:ab: 05:7b:ff:ef:8c:b3:bd:7a:ba:21:d7:fd:d3:ff:45:e8:44:43: f2:71:2c:7c:6a:81:68:20:3b:39:2a:93:9d:b7:6d:ad:c4:d2: 62:11:a2:23:4b:69:26:96:10:82:7a:bd:b0:a0:12:a0:d2:5e: 0a:12:66:a8:95:0a:13:a9:b0:c2:8f:0b:1a:75:64:c7:ed:1e: 6b:e7:5e:7c:b8:8f:c4:64:06:bd:0c:4f:a1:86:1b:06:43:a3: 6d:ef:96:20:1d:92:8f:fb:3e:d4:54:cf:75:ea:0e:f0:d1:5f: 56:fa:6a:3c:10:b2:9c:69:4d:a5:db:13:9b:e4:fa:bc:2f:f6: ca:25:6b:b5:9c:0a:4d:2e:21:ef:47:47:9f:84:6e:15:70:a6: 2f:02:0d:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwNzE4MTQzMTI5WhcNMjUwNzI1MTQzMTI5WjAYMRYwFAYD VQQDEw02ODdhNWFjMi1mNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YIvvO/lTZDU8IiVCIbAnByFjxKbPR/N03Qoa0rAm9blHG4VPHcD1ThrK4LK aTvpshcfFHp3g577GkXDcVPWlRwS+ZVTuED2IZaL8JwpWxyZyW1/OSlZr9Wp1Nzu nArGi7S+tQM9yjULKSVOuhIhB7/xxZ9zb9ZWnaptC6JMaU39c2vY2shI6Ngj+Mx0 Fg9tHyFZEPNKzxIThAy/SEmw310YB3KtVmsXZBGr08QTCz6D+bqZ5waBu3bhCrMB XlTwrsFs0VouxCWlejEo0edjGT+xnalfh0qEKhIHEcpSTW8Mhk1wD+/0lg1nQwRE 1Lvl472jPP5bWfdn4Oia9dsfCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClbm/8/ ZKvyqDWPxVU1pn3jMTOqMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtlCtTwoPP8n495XNWjaSLs1Cd5VgFpVfPbsj74Pu1UnjbXTNrXhzb Gv7qKTA63Ief8aqeyzOwpIuljLXUITdw8Uz90NBtSVPOf/QNei9JHdutcWqQm0tY 27/9zB7MtiLsYzVuBnbQuqW1vKsFe//vjLO9eroh1/3T/0XoREPycSx8aoFoIDs5 KpOdt22txNJiEaIjS2kmlhCCer2woBKg0l4KEmaolQoTqbDCjwsadWTH7R5r5158 uI/EZAa9DE+hhhsGQ6Nt75YgHZKP+z7UVM916g7w0V9W+mo8ELKcaU2l2xOb5Pq8 L/bKJWu1nApNLiHvR0efhG4VcKYvAg2A -----END CERTIFICATE-----Generated at Sun Jul 20 06:32:27 2025 by rpki-client