$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: WvGqWDc4JInlCT3rLlB3bWug8ZvMjrIb78BmYk+L6Pg= Subject key identifier: C4:2C:65:F1:34:E6:32:14:BC:38:CF:E9:3A:D7:3B:FF:B7:23:1E:13 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 0112 Signing time: Fri 18 Jul 2025 20:29:30 +0000 Manifest this update: Fri 18 Jul 2025 20:29:29 +0000 Manifest next update: Fri 25 Jul 2025 20:29:29 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: juADDUafKMyKKTGmwgEnOydmwKymnxkhC6FwR2ussQg=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Jul 18 20:29:29 2025 GMT Not After : Jul 25 20:29:29 2025 GMT Subject: CN=687aaeaa-e548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:53:3b:a9:cd:b2:51:32:d8:c9:2a:68:c6:e7: 9c:6a:3d:10:6b:a8:d2:af:0a:17:01:29:ac:75:ca: e5:2e:04:68:75:98:8f:63:19:bb:4a:33:f5:ae:1a: 11:97:3f:f6:02:e7:cb:a2:1b:13:ab:2d:8f:e5:2a: e9:bc:8a:e0:f4:35:8a:4c:6f:66:33:f1:51:b6:c5: 06:1a:ec:b4:9d:69:f1:3d:e8:31:a3:36:af:8c:76: 29:30:ce:11:83:a3:1f:f0:d4:f6:8c:fe:a7:ae:3e: 2a:bb:fe:ca:67:8e:33:7f:c6:3c:a7:c9:a3:29:4f: 8b:97:63:66:f0:29:1f:20:4b:ad:bb:48:6f:2f:dc: 9e:2b:85:7a:01:9a:f6:b9:62:c9:2f:6e:77:b8:4e: c9:bc:64:8f:29:c7:8b:ac:1f:90:91:e3:20:17:73: aa:73:5d:e7:cd:40:06:1c:67:2f:cd:f4:03:b5:13: 26:26:dc:12:fa:d4:2d:31:19:69:a2:66:94:ea:3b: df:f4:6c:89:b2:c8:ee:42:f2:4d:71:cb:ab:f2:be: 0d:b5:95:e9:89:24:80:76:1b:17:c4:f2:aa:1a:8f: db:a8:ee:ff:19:72:8a:ce:fb:e8:34:fd:6f:5a:7f: 11:e0:0d:ce:aa:4c:ee:87:46:ee:67:7e:b7:6a:9f: c5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2C:65:F1:34:E6:32:14:BC:38:CF:E9:3A:D7:3B:FF:B7:23:1E:13 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:87:c6:85:9a:6c:9a:75:61:13:76:08:92:48:a4:8f:c7:49: ca:44:da:f0:8f:95:b5:76:5d:31:d7:cd:a3:12:3f:68:dc:f9: ce:a3:8c:58:b1:37:0f:7d:43:23:e2:20:53:0c:09:bf:56:c1: e3:af:6f:89:e3:dd:5c:55:73:00:d5:16:3f:cf:ae:35:0a:9c: f4:d2:ab:9e:c9:1d:f5:ca:25:f0:7e:47:31:d3:c8:e8:1b:5e: 8b:3a:3c:52:7e:ef:9d:1d:ca:0f:28:cd:e7:25:91:ed:31:56: 0e:f2:39:79:93:af:80:97:a3:65:7c:f7:84:5b:42:73:25:97: c6:76:64:eb:24:cf:58:0c:95:84:17:bf:94:75:d6:bf:03:ab: 1f:5d:c6:57:a7:a5:da:34:92:36:55:44:b4:b3:1d:52:7d:2d: ab:6e:10:d7:3d:13:b2:25:c6:fb:26:79:99:17:53:7f:a2:b5: dd:3a:2b:30:eb:02:f8:f5:36:e7:50:1a:40:d2:93:a4:66:cd: 19:ad:8e:7f:55:d1:a9:e9:ef:3c:a0:9e:91:ff:44:db:8d:b8: d1:1f:0e:cb:9d:f2:20:db:17:2c:e0:1e:2b:c3:26:0e:c8:68: 30:f6:ef:94:db:37:0b:31:bb:6e:06:9c:d2:05:1e:0d:95:77: 54:57:a7:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNzE4MjAyOTI5WhcNMjUwNzI1MjAyOTI5WjAYMRYwFAYD VQQDEw02ODdhYWVhYS1lNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lM7qc2yUTLYySpoxuecaj0Qa6jSrwoXASmsdcrlLgRodZiPYxm7SjP1rhoR lz/2AufLohsTqy2P5SrpvIrg9DWKTG9mM/FRtsUGGuy0nWnxPegxozavjHYpMM4R g6Mf8NT2jP6nrj4qu/7KZ44zf8Y8p8mjKU+Ll2Nm8CkfIEutu0hvL9yeK4V6AZr2 uWLJL253uE7JvGSPKceLrB+QkeMgF3Oqc13nzUAGHGcvzfQDtRMmJtwS+tQtMRlp omaU6jvf9GyJssjuQvJNccur8r4NtZXpiSSAdhsXxPKqGo/bqO7/GXKKzvvoNP1v Wn8R4A3Oqkzuh0buZ363ap/F3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQsZfE0 5jIUvDjP6TrXO/+3Ix4TMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8h8aFmmyadWETdgiSSKSPx0nKRNrwj5W1dl0x182jEj9o3PnOo4xY sTcPfUMj4iBTDAm/VsHjr2+J491cVXMA1RY/z641Cpz00queyR31yiXwfkcx08jo G16LOjxSfu+dHcoPKM3nJZHtMVYO8jl5k6+Al6NlfPeEW0JzJZfGdmTrJM9YDJWE F7+Udda/A6sfXcZXp6XaNJI2VUS0sx1SfS2rbhDXPROyJcb7JnmZF1N/orXdOisw 6wL49TbnUBpA0pOkZs0ZrY5/VdGp6e88oJ6R/0TbjbjRHw7LnfIg2xcs4B4rwyYO yGgw9u+U2zcLMbtuBpzSBR4NlXdUV6et -----END CERTIFICATE-----Generated at Sun Jul 20 01:58:29 2025 by rpki-client