$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: DCC16m2sNOJtRNleQjXupW0kF9CVCqgx8QFFJ9QZPT4= Subject key identifier: 55:1D:0A:16:2C:40:61:F9:C8:F5:58:DD:0A:7E:73:60:20:55:98:09 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 34D6 Signing time: Thu 18 Sep 2025 14:30:19 +0000 Manifest this update: Thu 18 Sep 2025 14:30:18 +0000 Manifest next update: Thu 25 Sep 2025 14:30:18 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: VSMEupuuZ2ahwiXVyAVzkCqTbFh8JuYKEzhvk4S9noI=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: ApP9kmn+5JHiG5SuT5S92MP3i+OCCKbJEPxMhqV6acY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Sep 18 14:30:18 2025 GMT Not After : Sep 25 14:30:18 2025 GMT Subject: CN=68cc177b-0afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cc:36:23:bc:5d:d6:8e:18:cc:bf:02:a4:aa: 55:18:3f:2c:f1:c0:04:2a:fb:ed:c8:2a:e0:d6:38: fd:30:1b:71:16:38:6a:ed:59:ee:2a:42:cc:c7:5c: c0:e3:1a:0c:27:e8:0e:da:08:a7:8d:92:05:10:40: 5c:0f:34:60:62:13:f6:41:74:ac:e1:68:5e:5e:e1: 3c:6d:4d:53:a9:16:01:e0:46:73:4a:bb:02:b8:e1: 3b:41:d2:0c:4d:d3:47:8d:e2:4b:bd:bb:3b:06:a1: 5d:91:44:c1:ff:32:13:86:15:1f:cd:93:fb:88:3d: c2:74:58:29:d5:89:e6:ce:d6:f0:60:22:8d:d5:ed: ae:cc:f8:8a:55:d3:68:49:5b:f7:13:02:ed:20:15: 0f:08:2b:7c:40:c3:17:7f:a5:b3:a2:e0:0d:eb:76: c2:cc:8d:d7:39:80:37:4f:0e:5b:28:8c:8f:c9:3d: b1:c9:25:df:6e:ca:93:05:7d:c2:b4:ef:bb:49:3c: 4b:3e:95:5f:85:29:c5:c5:88:21:52:e1:bc:17:11: 0c:57:7a:ff:f4:91:ed:53:cf:f8:9d:b8:93:f8:75: 10:a3:87:8d:1e:59:4e:b5:60:63:04:36:70:78:58: e5:d0:7e:19:eb:bb:bd:b7:e3:1e:58:27:37:09:49: 76:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1D:0A:16:2C:40:61:F9:C8:F5:58:DD:0A:7E:73:60:20:55:98:09 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:18:3b:e6:2f:a0:3c:8c:fe:2e:37:ea:82:ac:e3:03:23:4b: 9d:0c:d6:05:91:a3:82:c8:6b:4b:1a:a1:d6:ce:23:62:4e:bc: a9:43:7e:14:d1:63:d1:63:b3:c3:54:42:80:a2:20:49:01:d0: e1:dd:e9:f9:12:7c:06:b1:1a:12:b8:a9:34:fd:8a:7f:02:c1: 91:53:78:c0:0c:59:5a:64:ca:ac:03:4f:b7:a5:bf:71:09:07: 36:f6:51:7e:23:51:5f:12:b9:71:d0:90:a4:c6:16:67:8e:de: 58:fc:d8:64:a4:02:f1:a2:bd:57:31:93:a7:9e:47:59:2d:03: eb:20:9d:c1:de:b9:1a:53:bb:6e:2e:4f:50:8a:81:0b:c5:7b: 63:50:29:02:3b:62:30:9d:ee:90:65:e6:36:33:8e:5c:a5:ed: 2b:9a:68:5c:d0:f2:1d:96:e8:13:09:cf:a8:6d:d6:cb:30:c5: f0:63:ea:3c:9d:21:cb:0b:a1:a6:41:33:4d:1c:ef:d9:e4:68: dd:07:fa:02:8d:ad:14:f7:44:40:7c:b8:bf:07:45:cc:13:e0: 3a:ee:5f:85:73:7c:a1:02:1c:15:dd:69:07:8f:80:cd:9e:92: 24:3a:d4:b5:6e:d9:56:e4:db:93:ea:64:06:f5:51:fa:d9:b1: 71:8c:43:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwOTE4MTQzMDE4WhcNMjUwOTI1MTQzMDE4WjAYMRYwFAYD VQQDEw02OGNjMTc3Yi0wYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMw2I7xd1o4YzL8CpKpVGD8s8cAEKvvtyCrg1jj9MBtxFjhq7VnuKkLMx1zA 4xoMJ+gO2ginjZIFEEBcDzRgYhP2QXSs4WheXuE8bU1TqRYB4EZzSrsCuOE7QdIM TdNHjeJLvbs7BqFdkUTB/zIThhUfzZP7iD3CdFgp1YnmztbwYCKN1e2uzPiKVdNo SVv3EwLtIBUPCCt8QMMXf6WzouAN63bCzI3XOYA3Tw5bKIyPyT2xySXfbsqTBX3C tO+7STxLPpVfhSnFxYghUuG8FxEMV3r/9JHtU8/4nbiT+HUQo4eNHllOtWBjBDZw eFjl0H4Z67u9t+MeWCc3CUl2lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUdChYs QGH5yPVY3Qp+c2AgVZgJMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMGDvmL6A8jP4uN+qCrOMDI0udDNYFkaOCyGtLGqHWziNiTrypQ34U 0WPRY7PDVEKAoiBJAdDh3en5EnwGsRoSuKk0/Yp/AsGRU3jADFlaZMqsA0+3pb9x CQc29lF+I1FfErlx0JCkxhZnjt5Y/NhkpALxor1XMZOnnkdZLQPrIJ3B3rkaU7tu Lk9QioELxXtjUCkCO2Iwne6QZeY2M45cpe0rmmhc0PIdlugTCc+obdbLMMXwY+o8 nSHLC6GmQTNNHO/Z5GjdB/oCja0U90RAfLi/B0XME+A67l+Fc3yhAhwV3WkHj4DN npIkOtS1btlW5NuT6mQG9VH62bFxjEO2 -----END CERTIFICATE-----Generated at Thu Sep 18 20:34:13 2025 by rpki-client