$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: ch85d6KgZt7t6I7hc1kGSo79+4CDqyjj6H1aTVZ2aJs= Subject key identifier: C6:FE:D2:1B:3F:DD:A7:E5:91:46:FC:4F:52:39:AC:C3:AF:DE:39:42 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 0124 Signing time: Fri 22 Aug 2025 20:21:00 +0000 Manifest this update: Fri 22 Aug 2025 20:20:59 +0000 Manifest next update: Fri 29 Aug 2025 20:20:59 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: 8Y2P2unnrVT7XQ9nh83mYY3DslQrfTgXi/WwhzKRepM=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Aug 22 20:20:59 2025 GMT Not After : Aug 29 20:20:59 2025 GMT Subject: CN=68a8d12b-ac67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:fc:53:82:9c:68:d2:cd:4e:1a:65:03:02: a1:43:8a:25:23:07:44:a8:06:b1:25:6b:d9:ab:66: 30:1b:07:cf:3d:aa:a2:af:4a:81:2b:04:fd:d0:3c: 78:36:75:e2:97:4d:59:88:f7:38:86:f8:4e:b5:fb: 88:48:9b:21:2c:53:af:6d:da:80:11:a7:eb:39:c5: a3:9c:b6:96:aa:a5:9e:80:52:0c:e7:49:4f:3c:25: 88:1b:56:ea:04:94:91:1d:b0:3b:dc:37:33:8b:1b: 19:6e:4e:86:f9:0b:c6:99:dd:89:03:ee:a4:9f:0e: 8f:f7:b2:6c:85:84:eb:57:5b:31:0f:80:b7:59:85: 91:97:2c:f4:3f:28:58:6b:07:6e:f2:18:5a:89:e8: 12:34:2f:e9:94:bc:a2:c5:ed:77:43:10:3a:6c:78: 64:ab:91:af:7d:38:f9:6f:77:1c:40:2a:4b:76:03: 5f:05:f3:ae:c6:4f:7f:4c:a2:c6:c0:22:09:a2:a7: 53:2b:37:e7:54:53:ce:e5:91:f1:c7:bd:38:92:66: 83:5c:e1:35:08:a7:9d:98:07:7c:b2:dd:04:31:9e: a9:82:35:22:9f:93:61:60:e7:15:ff:b2:63:11:7e: 90:af:83:71:9f:ba:8d:2a:cb:c7:e9:51:3e:f7:43: a1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:FE:D2:1B:3F:DD:A7:E5:91:46:FC:4F:52:39:AC:C3:AF:DE:39:42 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ca:b6:d2:5a:d0:27:e7:c7:53:ee:92:82:8d:f1:b0:9c:6d: 72:bc:d2:f3:e1:45:39:94:a3:14:8a:55:92:c9:10:1a:57:94: 74:da:29:df:25:a7:2a:a2:8c:14:59:07:ed:50:5e:4b:24:aa: 6b:25:c0:13:90:7c:bd:48:76:32:40:79:84:b2:2c:e0:e0:ca: d3:b9:16:b3:ee:15:5e:24:d7:72:f9:76:7b:5e:9c:f8:43:d2: 22:4f:05:74:c9:ac:40:3d:14:b5:ec:3f:ef:fa:0b:c4:e2:fb: d2:ec:50:4a:25:60:31:29:76:1c:0d:24:52:74:5e:3b:dd:d5: ab:bc:40:bd:30:1b:09:ad:16:df:ab:0d:3a:69:dd:83:f7:3f: f1:20:a6:f4:b6:64:68:28:8f:90:2c:43:43:1a:89:f9:a2:20: ec:06:d3:c8:64:b9:72:92:16:63:9d:1a:c2:61:8c:4a:81:b0: 04:fd:80:23:f0:87:3d:59:20:48:2a:09:8a:62:df:9b:ff:5d: a2:63:49:d4:1e:51:eb:f2:75:78:a5:ee:49:8e:d5:c5:01:b9: e3:1b:fc:3c:1b:d7:31:c0:65:19:a6:5e:1c:82:7d:06:b1:e1: 53:e8:e4:96:50:fd:98:55:41:d4:0c:f7:ea:0f:2f:6f:1f:b4: 80:a6:63:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwODIyMjAyMDU5WhcNMjUwODI5MjAyMDU5WjAYMRYwFAYD VQQDEw02OGE4ZDEyYi1hYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDv8U4KcaNLNThplAwKhQ4olIwdEqAaxJWvZq2YwGwfPPaqir0qBKwT90Dx4 NnXil01ZiPc4hvhOtfuISJshLFOvbdqAEafrOcWjnLaWqqWegFIM50lPPCWIG1bq BJSRHbA73DczixsZbk6G+QvGmd2JA+6knw6P97JshYTrV1sxD4C3WYWRlyz0PyhY awdu8hhaiegSNC/plLyixe13QxA6bHhkq5GvfTj5b3ccQCpLdgNfBfOuxk9/TKLG wCIJoqdTKzfnVFPO5ZHxx704kmaDXOE1CKedmAd8st0EMZ6pgjUin5NhYOcV/7Jj EX6Qr4Nxn7qNKsvH6VE+90OhbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMb+0hs/ 3aflkUb8T1I5rMOv3jlCMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwyrbSWtAn58dT7pKCjfGwnG1yvNLz4UU5lKMUilWSyRAaV5R02inf JacqoowUWQftUF5LJKprJcATkHy9SHYyQHmEsizg4MrTuRaz7hVeJNdy+XZ7Xpz4 Q9IiTwV0yaxAPRS17D/v+gvE4vvS7FBKJWAxKXYcDSRSdF473dWrvEC9MBsJrRbf qw06ad2D9z/xIKb0tmRoKI+QLENDGon5oiDsBtPIZLlykhZjnRrCYYxKgbAE/YAj 8Ic9WSBIKgmKYt+b/12iY0nUHlHr8nV4pe5JjtXFAbnjG/w8G9cxwGUZpl4cgn0G seFT6OSWUP2YVUHUDPfqDy9vH7SApmPc -----END CERTIFICATE-----Generated at Sat Aug 23 16:28:08 2025 by rpki-client