$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: W37On1DWe7+CKx6DWaH6U6zFcY70veX+mGINSURvbYo= Subject key identifier: 08:84:1D:2D:8A:D8:AB:CD:E3:1D:9F:5E:8F:1C:F2:82:BE:33:CC:75 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34ED Signing time: Sun 02 Nov 2025 14:29:11 +0000 Manifest this update: Sun 02 Nov 2025 14:29:11 +0000 Manifest next update: Sun 09 Nov 2025 14:29:11 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: 6VS5XOIsik9o6mGGyA1bNKMHio0jvSNyW13epw9FzZk=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: ApP9kmn+5JHiG5SuT5S92MP3i+OCCKbJEPxMhqV6acY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Nov 2 14:29:11 2025 GMT Not After : Nov 9 14:29:11 2025 GMT Subject: CN=69076ab7-bd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:59:55:d6:81:56:69:29:f7:49:0a:55:d7:2d: 2b:26:e0:68:5d:84:3f:ff:52:29:85:27:66:3a:60: 84:75:02:af:60:d7:05:09:f7:50:b8:ce:32:7a:73: 3e:97:20:f6:b0:ba:b6:be:2e:11:11:5f:cc:d5:54: 04:93:79:e1:87:07:ed:60:81:00:91:15:51:a4:08: 93:70:cb:bd:fd:12:24:75:55:6e:72:ff:be:1e:af: 8c:6d:80:21:62:c3:24:81:c6:04:1f:e7:5f:ad:df: 9e:57:01:f3:3f:95:6a:2c:f3:87:e2:6c:ca:1b:af: a6:59:40:6d:8e:ae:a2:d7:a6:e7:e3:c1:49:b1:04: 37:8d:67:b9:8a:89:f1:ee:6e:8d:78:11:36:7d:1c: 78:f3:b1:b0:d9:1e:6b:d8:7b:1e:b8:a8:25:4c:22: ad:53:4d:19:27:16:f2:03:ce:a4:da:56:10:08:3d: fa:5f:71:f1:0c:8c:3f:c7:1e:41:ad:2d:2c:94:86: 38:d4:7e:ed:d3:c1:69:75:c1:83:fb:91:dc:a7:8b: 67:7c:0b:35:ce:d3:46:0e:30:61:75:f0:f4:ce:7a: 0f:97:42:1a:d4:e6:78:6c:59:14:84:a0:b5:e7:72: 2e:da:3b:6d:e0:de:87:bc:91:f3:3e:f6:a4:10:a2: a3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:84:1D:2D:8A:D8:AB:CD:E3:1D:9F:5E:8F:1C:F2:82:BE:33:CC:75 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:c1:9a:69:e8:a5:84:82:d5:ce:b3:98:92:4c:c8:50:d8:f0: e2:dd:94:f5:b4:0a:0d:55:ab:fc:d1:6d:d8:b2:50:ff:b8:8e: 63:bb:de:59:8f:fb:06:f5:d1:7c:df:8b:d5:90:11:08:9b:e1: 14:47:09:5c:26:ef:57:6b:a8:3a:32:e4:a2:e6:9d:89:73:27: a7:26:9d:ec:3d:5a:25:0c:b5:71:21:c7:9a:60:25:2b:b4:92: 37:7f:f8:c5:79:bf:d2:e1:e0:69:d9:1e:0e:5f:b0:21:02:dd: 9d:f8:0f:68:57:14:7d:52:d4:c3:3a:be:b5:03:d3:6b:19:0a: 4e:27:b0:8e:02:0f:e2:9d:fb:dd:9b:4f:d0:e1:76:68:5b:e5: 1f:70:d6:5b:b9:19:93:83:72:fe:a2:c7:89:13:fd:f8:00:a1: 13:a6:76:4a:c3:f1:c4:41:18:a7:05:da:d9:92:18:42:0c:01: d1:30:2f:55:6e:ae:f0:4d:44:fc:bf:fe:33:63:d6:c4:a9:4e: 3e:1f:b0:da:1a:80:b9:38:5d:44:47:ae:f5:2a:9a:c8:c4:9f: 91:8b:f4:c0:ad:c6:92:b7:e0:0c:23:68:09:52:3c:21:47:86: 2f:ed:6e:a0:46:7a:39:a6:29:dd:3f:c7:5e:39:35:f6:ad:60: 16:af:a4:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUxMTAyMTQyOTExWhcNMjUxMTA5MTQyOTExWjAYMRYwFAYD VQQDEw02OTA3NmFiNy1iZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFlV1oFWaSn3SQpV1y0rJuBoXYQ//1IphSdmOmCEdQKvYNcFCfdQuM4yenM+ lyD2sLq2vi4REV/M1VQEk3nhhwftYIEAkRVRpAiTcMu9/RIkdVVucv++Hq+MbYAh YsMkgcYEH+dfrd+eVwHzP5VqLPOH4mzKG6+mWUBtjq6i16bn48FJsQQ3jWe5ionx 7m6NeBE2fRx487Gw2R5r2HseuKglTCKtU00ZJxbyA86k2lYQCD36X3HxDIw/xx5B rS0slIY41H7t08FpdcGD+5Hcp4tnfAs1ztNGDjBhdfD0znoPl0Ia1OZ4bFkUhKC1 53Iu2jtt4N6HvJHzPvakEKKjLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiEHS2K 2KvN4x2fXo8c8oK+M8x1MB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQwZpp6KWEgtXOs5iSTMhQ2PDi3ZT1tAoNVav80W3YslD/uI5ju95Z j/sG9dF834vVkBEIm+EURwlcJu9Xa6g6MuSi5p2JcyenJp3sPVolDLVxIceaYCUr tJI3f/jFeb/S4eBp2R4OX7AhAt2d+A9oVxR9UtTDOr61A9NrGQpOJ7COAg/infvd m0/Q4XZoW+UfcNZbuRmTg3L+oseJE/34AKETpnZKw/HEQRinBdrZkhhCDAHRMC9V bq7wTUT8v/4zY9bEqU4+H7DaGoC5OF1ER671KprIxJ+Ri/TArcaSt+AMI2gJUjwh R4Yv7W6gRno5pindP8deOTX2rWAWr6SM -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:01 2025 by rpki-client