$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: liWxh73wlYM1GPJJk4Ks41mAI3wHhN2tlPQCaKblHJ0= Subject key identifier: AD:D7:66:4E:11:E4:9B:11:C8:F5:45:D7:F0:C8:51:CD:A3:20:1B:80 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 010A Signing time: Wed 02 Jul 2025 20:31:42 +0000 Manifest this update: Wed 02 Jul 2025 20:31:42 +0000 Manifest next update: Wed 09 Jul 2025 20:31:42 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: 7j4pOyKhS77Fv1b2f8zz3wCgbnpuuFmo2mTfdhX/n1E=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Jul 2 20:31:42 2025 GMT Not After : Jul 9 20:31:42 2025 GMT Subject: CN=6865972e-b674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:88:35:e4:8e:ac:5b:3a:35:3e:b2:66:80:37: 36:b6:53:30:f2:c7:1e:83:1a:2c:2d:14:e0:0e:bd: f1:04:11:32:9f:00:b6:1e:2d:3a:da:b1:3c:fb:5d: 4e:d4:12:64:f9:6f:6e:61:3c:b0:7d:fc:19:87:89: b4:a8:11:36:f0:a6:59:5c:ce:9c:cd:cf:8a:36:80: b4:61:59:68:ef:4c:3a:0e:1d:06:a5:cf:a9:8b:47: a9:ec:e5:d0:30:c0:ab:90:f1:fa:d7:7b:0b:24:07: bd:26:a6:84:8d:d4:c7:21:9a:2d:47:72:34:9c:e1: 6c:48:2e:cd:e8:02:7c:ca:60:33:e1:13:e4:4f:a4: 49:2d:83:ec:df:2c:16:2b:30:30:f9:35:16:10:45: 5c:37:2f:7d:28:43:d3:d3:9b:55:33:62:0d:ea:01: 13:7e:2e:f6:0f:53:ff:0c:bc:b0:74:ca:b1:0d:7d: bf:2d:7e:ef:57:c0:88:df:90:0b:5b:51:bd:c4:7f: 3c:cf:05:74:b1:48:84:c1:22:26:d9:e9:45:9a:59: 57:d3:40:c7:eb:82:0a:40:4d:20:5e:3e:88:f0:55: 50:46:3a:17:ad:3b:c6:55:c8:7f:e0:d4:d2:cc:63: 12:57:44:5f:fa:d6:9e:3f:c9:38:4c:02:6a:46:8c: cf:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D7:66:4E:11:E4:9B:11:C8:F5:45:D7:F0:C8:51:CD:A3:20:1B:80 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:3a:0a:a2:eb:78:09:8a:06:bd:5a:ed:68:18:30:ec:e6:e5: e0:1e:b6:84:bc:ba:30:3f:45:54:13:8f:35:b6:b2:a4:7b:32: 56:a8:f5:09:87:e0:56:71:37:1c:ae:2c:53:c8:0f:4f:e9:56: 6f:c4:6a:0d:92:1c:63:b7:24:08:64:3f:84:b0:43:1d:a8:bc: d7:3b:6b:d6:98:73:b1:f2:7c:36:ef:a9:1e:e4:56:e6:3d:60: f5:1d:3a:27:ba:de:15:01:fd:67:0b:70:53:c3:69:97:b2:78: 7e:51:3f:6e:f9:85:24:95:a3:ef:72:e7:0d:d3:f7:d9:b3:1c: 92:fb:8f:27:cc:f2:41:15:b9:9b:9c:cb:f3:38:97:ec:3d:88: ce:a9:43:d8:0c:0e:7a:2c:7c:67:3f:f1:ef:18:6f:99:68:2d: 4a:0a:c3:21:65:8e:07:08:3e:4f:08:15:00:8d:83:ed:39:e9: 77:bc:b5:c0:2a:70:03:c3:89:8b:a2:10:0d:a3:69:d5:56:89: 05:9d:ae:77:0d:a2:fe:cb:f3:de:7b:b0:3e:5d:e1:d7:a3:fb: e8:0c:cb:df:e0:5c:8d:24:9a:e6:0e:28:2b:98:de:f5:8f:05: 96:55:92:a5:09:31:2e:01:5d:4b:32:3e:fa:c1:ab:bb:6e:cc: 20:1a:72:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNzAyMjAzMTQyWhcNMjUwNzA5MjAzMTQyWjAYMRYwFAYD VQQDEw02ODY1OTcyZS1iNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIg15I6sWzo1PrJmgDc2tlMw8scegxosLRTgDr3xBBEynwC2Hi062rE8+11O 1BJk+W9uYTywffwZh4m0qBE28KZZXM6czc+KNoC0YVlo70w6Dh0Gpc+pi0ep7OXQ MMCrkPH613sLJAe9JqaEjdTHIZotR3I0nOFsSC7N6AJ8ymAz4RPkT6RJLYPs3ywW KzAw+TUWEEVcNy99KEPT05tVM2IN6gETfi72D1P/DLywdMqxDX2/LX7vV8CI35AL W1G9xH88zwV0sUiEwSIm2elFmllX00DH64IKQE0gXj6I8FVQRjoXrTvGVch/4NTS zGMSV0Rf+taeP8k4TAJqRozPxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3XZk4R 5JsRyPVF1/DIUc2jIBuAMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Ogqi63gJiga9Wu1oGDDs5uXgHraEvLowP0VUE481trKkezJWqPUJ h+BWcTccrixTyA9P6VZvxGoNkhxjtyQIZD+EsEMdqLzXO2vWmHOx8nw276ke5Fbm PWD1HTonut4VAf1nC3BTw2mXsnh+UT9u+YUklaPvcucN0/fZsxyS+48nzPJBFbmb nMvzOJfsPYjOqUPYDA56LHxnP/HvGG+ZaC1KCsMhZY4HCD5PCBUAjYPtOel3vLXA KnADw4mLohANo2nVVokFna53DaL+y/Pee7A+XeHXo/voDMvf4FyNJJrmDigrmN71 jwWWVZKlCTEuAV1LMj76wau7bswgGnIC -----END CERTIFICATE-----Generated at Fri Jul 4 06:17:14 2025 by rpki-client