$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: eRNZbGcR//Kg1L7soFTRvvcpULa/y2TOYhqTF1ECmrU= Subject key identifier: 2D:F2:F1:85:F6:B3:B2:75:AF:82:E4:3F:95:1B:FD:A8:5E:6B:05:4B Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 012C Signing time: Sat 06 Sep 2025 20:24:09 +0000 Manifest this update: Sat 06 Sep 2025 20:24:09 +0000 Manifest next update: Sat 13 Sep 2025 20:24:09 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: DvUtjXpSQcNnlCbB5CqsC1DfUUXMWuZfWgdLRhcG5VY=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Sep 6 20:24:09 2025 GMT Not After : Sep 13 20:24:09 2025 GMT Subject: CN=68bc9869-0f21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:04:12:01:c9:29:3e:a6:6b:3a:f4:f7:3a:89: ab:2b:7b:90:cf:09:81:07:c2:2c:be:ec:39:3f:56: bb:cc:a2:5c:1c:d3:df:3f:d4:4c:17:68:26:fd:1d: a1:eb:43:18:2b:ee:b5:22:db:d4:a7:83:d3:cd:a2: bb:e6:e0:b0:73:da:0d:14:76:1d:bc:a6:bf:a2:95: cc:63:3f:71:ac:d0:ca:94:86:bc:4b:b8:e6:a3:2b: dc:41:9d:e4:89:ce:d1:5e:ce:05:a3:e1:eb:a0:cd: 35:a1:9b:d2:40:87:53:aa:d9:2a:f5:46:c7:da:2c: 35:a7:60:b6:9b:2d:79:28:82:4d:6b:c7:a2:27:f3: 5b:c5:69:3f:23:79:11:8e:69:de:8b:dd:bb:af:00: 17:7a:ca:46:ad:1b:6b:73:42:6c:bb:88:25:1f:f5: 0a:f2:3a:b5:ae:1f:2d:15:15:1d:9f:85:84:2e:4a: c8:3f:1a:d2:80:ca:60:e9:41:13:dd:63:ae:63:18: 34:a4:c6:4e:d4:4f:b9:47:22:0c:c0:29:21:a1:b8: 62:f7:ae:fa:50:df:9b:37:eb:af:e2:61:81:65:d1: 49:6e:41:d3:0b:6f:7b:df:ab:d3:ed:88:07:c7:ae: 87:ae:b2:85:58:79:94:d8:3c:e6:e9:a1:33:80:43: 62:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F2:F1:85:F6:B3:B2:75:AF:82:E4:3F:95:1B:FD:A8:5E:6B:05:4B X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ad:52:d3:76:fa:54:99:3d:c2:bc:3a:d7:64:3e:c9:52:10: 9b:d8:4c:77:f3:8a:49:ab:e8:d5:d1:31:99:ec:9b:da:ed:c3: 47:55:33:ae:95:4d:50:15:ab:96:65:b7:3f:d8:3b:1e:80:d9: 6a:e0:13:53:08:60:07:d3:c5:7d:d5:7e:cc:28:e0:ee:e7:26: e9:dc:d3:a0:e0:9f:f0:53:6c:83:48:b0:a3:31:b7:15:8e:a2: b9:bf:3a:54:d8:f0:e5:93:90:f7:92:9b:e5:b7:63:a3:3d:07: 22:6d:52:58:16:df:6e:b9:f9:32:e2:74:cd:51:10:fd:67:4d: e8:85:d9:21:4a:24:81:ed:34:b5:5d:2d:95:e7:52:c9:fa:49: 0d:59:1a:d0:1e:f7:58:52:fd:92:f5:06:7c:0b:c8:4c:5d:66: 5c:9e:ab:09:2f:66:0c:bd:1e:ed:4e:c2:e2:d9:06:18:63:bb: 7d:6a:17:01:bb:92:bb:d7:fd:a7:49:d3:db:ea:f5:70:f7:3f: 07:66:4e:5e:9c:1a:3b:33:d7:02:2d:4c:9c:79:44:13:54:6c: 07:8f:e8:b6:cd:1c:ae:6c:84:d2:8f:44:24:98:38:bc:77:dd: 88:2a:49:cd:84:e8:f1:43:51:4b:d7:0d:8b:8c:57:8f:84:8d: 6d:59:f7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwOTA2MjAyNDA5WhcNMjUwOTEzMjAyNDA5WjAYMRYwFAYD VQQDEw02OGJjOTg2OS0wZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AQSAckpPqZrOvT3OomrK3uQzwmBB8Isvuw5P1a7zKJcHNPfP9RMF2gm/R2h 60MYK+61ItvUp4PTzaK75uCwc9oNFHYdvKa/opXMYz9xrNDKlIa8S7jmoyvcQZ3k ic7RXs4Fo+HroM01oZvSQIdTqtkq9UbH2iw1p2C2my15KIJNa8eiJ/NbxWk/I3kR jmnei927rwAXespGrRtrc0Jsu4glH/UK8jq1rh8tFRUdn4WELkrIPxrSgMpg6UET 3WOuYxg0pMZO1E+5RyIMwCkhobhi9676UN+bN+uv4mGBZdFJbkHTC29736vT7YgH x66HrrKFWHmU2Dzm6aEzgENigQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3y8YX2 s7J1r4LkP5Ub/aheawVLMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/rVLTdvpUmT3CvDrXZD7JUhCb2Ex384pJq+jV0TGZ7Jva7cNHVTOu lU1QFauWZbc/2DsegNlq4BNTCGAH08V91X7MKODu5ybp3NOg4J/wU2yDSLCjMbcV jqK5vzpU2PDlk5D3kpvlt2OjPQcibVJYFt9uufky4nTNURD9Z03ohdkhSiSB7TS1 XS2V51LJ+kkNWRrQHvdYUv2S9QZ8C8hMXWZcnqsJL2YMvR7tTsLi2QYYY7t9ahcB u5K71/2nSdPb6vVw9z8HZk5enBo7M9cCLUyceUQTVGwHj+i2zRyubITSj0QkmDi8 d92IKknNhOjxQ1FL1w2LjFePhI1tWfcc -----END CERTIFICATE-----Generated at Mon Sep 8 16:11:35 2025 by rpki-client