$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: 1VUf+pxsfjDFW+VqsaHbqC6eEPEzgdFWIuumEY6VJrs= Subject key identifier: 10:EF:CC:E0:C8:B5:9C:68:9D:2C:02:EF:D0:82:98:9D:76:BF:46:58 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3499 Signing time: Sat 31 May 2025 14:29:44 +0000 Manifest this update: Sat 31 May 2025 14:29:43 +0000 Manifest next update: Sat 07 Jun 2025 14:29:43 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: qvgz6H6wV1r89JgpVfrwF9AO6T1NF0cT2YFz3Raat9U=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: May 31 14:29:43 2025 GMT Not After : Jun 7 14:29:43 2025 GMT Subject: CN=683b1258-877a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:56:19:81:5e:79:a9:22:5b:1f:69:ca:42:07: 1f:a0:51:e0:8e:35:b3:98:d4:74:4d:85:30:84:5c: 73:dd:8f:98:22:1a:0e:d7:ac:ca:d3:30:45:ff:e1: e0:58:2a:af:75:1f:cc:e8:f5:af:01:f7:9e:79:2a: 45:38:f9:71:55:b0:4a:40:18:21:43:2f:ce:d0:0b: 86:20:20:43:f1:35:bc:f9:c5:59:4e:9f:c6:e3:77: 03:94:63:94:02:7e:7f:ae:34:fb:a8:33:9c:da:e7: 4a:01:1a:53:cd:14:4e:b1:53:4d:de:45:7e:c6:bb: 37:e5:be:89:61:b3:13:5f:d8:95:f4:d1:ff:92:01: 41:f2:ae:af:96:eb:61:2c:a2:32:4c:41:72:19:f2: 13:4c:be:af:72:8b:36:63:e8:22:de:42:f3:d7:df: 0b:f6:b9:76:c0:c6:5b:91:fd:3a:12:e4:f8:28:9b: 00:7f:60:5c:64:2b:ae:56:26:d9:b5:6e:32:82:bf: d4:23:97:58:42:a1:05:61:ef:c2:ec:09:8d:81:f1: 20:4b:36:01:b5:4b:82:e1:cf:7a:3a:a5:53:70:91: 19:8e:6b:b0:b2:11:e4:af:0e:90:25:a2:47:6b:3c: 5d:d6:7e:da:33:32:4e:3b:b6:4a:1a:9a:3b:13:48: 35:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:EF:CC:E0:C8:B5:9C:68:9D:2C:02:EF:D0:82:98:9D:76:BF:46:58 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c7:b7:4c:2c:2e:b0:85:6a:3b:9b:54:fa:8c:6d:ef:7b:0c: e0:f1:dc:fb:1a:34:0d:f6:c0:fd:49:93:bd:18:42:4c:62:f3: 84:6c:0a:59:37:1b:e2:87:eb:54:32:6e:bf:b7:a1:45:94:ed: 7c:60:bc:46:06:4b:8e:c8:00:f1:da:b6:60:64:20:9b:8f:1f: 47:dc:ef:26:ab:63:ef:c4:95:37:dd:13:69:6c:d3:4a:bb:7b: cc:ac:00:00:16:f0:1a:b8:90:70:b9:01:d1:fc:99:a2:21:71: 9c:64:f1:e1:ce:6f:39:9c:97:50:be:8a:2b:2a:bf:d6:6d:dc: b9:d7:d5:76:92:ca:80:2f:6d:13:94:24:36:6a:dd:e7:6d:68: 7f:c2:07:6b:2b:cb:b7:43:13:76:d5:f6:37:b3:2a:ff:ae:94: 14:70:a1:07:95:c4:27:dd:1a:31:9e:df:3b:cd:59:c0:36:59: 2b:1f:fb:40:26:46:f1:b7:d5:67:6a:b0:00:49:c8:c8:9c:cb: b7:6e:e7:27:a9:01:fe:e0:14:ef:af:f4:17:fb:b6:a6:77:58: 2e:5f:8f:79:f0:4b:59:2d:a4:9a:39:3d:9f:35:e3:31:8d:eb: 4b:31:fb:a5:0b:c2:48:8e:6f:11:8c:18:64:b1:10:62:18:e6: 6b:78:5f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwNTMxMTQyOTQzWhcNMjUwNjA3MTQyOTQzWjAYMRYwFAYD VQQDEw02ODNiMTI1OC04NzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VYZgV55qSJbH2nKQgcfoFHgjjWzmNR0TYUwhFxz3Y+YIhoO16zK0zBF/+Hg WCqvdR/M6PWvAfeeeSpFOPlxVbBKQBghQy/O0AuGICBD8TW8+cVZTp/G43cDlGOU An5/rjT7qDOc2udKARpTzRROsVNN3kV+xrs35b6JYbMTX9iV9NH/kgFB8q6vluth LKIyTEFyGfITTL6vcos2Y+gi3kLz198L9rl2wMZbkf06EuT4KJsAf2BcZCuuVibZ tW4ygr/UI5dYQqEFYe/C7AmNgfEgSzYBtUuC4c96OqVTcJEZjmuwshHkrw6QJaJH azxd1n7aMzJOO7ZKGpo7E0g1ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDvzODI tZxonSwC79CCmJ12v0ZYMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvx7dMLC6whWo7m1T6jG3vewzg8dz7GjQN9sD9SZO9GEJMYvOEbApZ Nxvih+tUMm6/t6FFlO18YLxGBkuOyADx2rZgZCCbjx9H3O8mq2PvxJU33RNpbNNK u3vMrAAAFvAauJBwuQHR/JmiIXGcZPHhzm85nJdQvoorKr/Wbdy519V2ksqAL20T lCQ2at3nbWh/wgdrK8u3QxN21fY3syr/rpQUcKEHlcQn3Roxnt87zVnANlkrH/tA Jkbxt9VnarAAScjInMu3bucnqQH+4BTvr/QX+7amd1guX4958EtZLaSaOT2fNeMx jetLMfulC8JIjm8RjBhksRBiGOZreF+D -----END CERTIFICATE-----Generated at Sat May 31 17:01:19 2025 by rpki-client