$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: jfEfi7DLIZbqmJAd3dUbECysLdBQVktNllvWP66hESc= Subject key identifier: 41:54:AE:2F:F0:80:67:47:26:40:DD:30:79:7E:3F:89:32:D1:0E:E7 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 01C8 Signing time: Mon 11 Aug 2025 03:00:23 +0000 Manifest this update: Mon 11 Aug 2025 03:00:22 +0000 Manifest next update: Mon 18 Aug 2025 03:00:22 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: KcDs+lt3RVU3OmgT6xrCOwBSPOGnDuOEphWoMY+m/2E=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: 285R3oYGxnsmMAJjm1+eYdJApQO5EQQ/gOWcq+lr5pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Aug 11 03:00:22 2025 GMT Not After : Aug 18 03:00:22 2025 GMT Subject: CN=68995cc7-d406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:64:d8:75:c1:bc:b5:40:8f:64:d4:31:ec:82: e3:09:32:65:91:53:cf:c4:64:f4:cb:8e:f2:77:5f: 64:94:c7:38:5e:8e:9b:3e:7a:42:dd:f9:19:ba:fc: 65:37:a2:22:f5:74:cc:46:d6:07:34:bd:79:e1:a4: 0a:9c:04:ea:8d:2f:f8:bc:69:83:cd:6b:c6:03:d1: b3:8c:6a:ff:2b:c9:24:5e:3f:42:2c:06:5a:50:de: e1:24:b1:15:70:f0:57:ad:93:46:1f:77:0c:5d:60: 12:35:46:ca:23:3f:f6:25:df:af:b2:e0:ed:e0:c1: c6:f7:00:a8:9e:69:44:e3:bc:6c:93:77:c2:42:99: 52:98:8a:5c:1f:59:16:5c:03:d5:e6:36:61:0f:8a: ef:f4:e8:6d:1a:a0:b6:f0:fb:20:61:da:1b:bb:26: 20:d6:22:dc:51:15:49:5e:a6:cd:dc:64:57:73:96: b4:a8:b4:25:2e:0b:e0:18:dc:af:45:35:2e:ab:07: 74:cc:1d:4f:42:19:04:df:5b:8f:a9:85:55:d4:8f: d2:89:80:60:da:3d:11:c2:77:ae:42:9d:0d:6c:73: 2b:b5:2e:33:05:33:6e:6f:6b:44:66:db:cf:f3:17: a2:4c:dd:37:9e:e5:1e:c4:85:09:b9:3c:39:47:cf: a3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:54:AE:2F:F0:80:67:47:26:40:DD:30:79:7E:3F:89:32:D1:0E:E7 X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:31:ee:e3:96:75:e4:15:15:69:33:07:55:34:0e:f0:63:6e: 0b:93:90:cd:e4:91:94:58:58:36:a5:4e:94:b9:f5:49:46:48: b2:cc:24:79:e2:84:51:16:e3:48:ca:b5:73:d3:58:60:79:2a: 12:13:f0:74:e1:6f:b4:7c:b7:00:52:f0:2c:a5:97:63:1f:2a: ca:a6:5b:4d:97:83:8c:73:29:21:3d:8a:6c:0e:fd:0a:27:44: fc:f8:ad:69:4f:cc:ba:44:99:bc:f2:28:c5:ef:f1:9d:95:97: 17:97:3b:d6:d1:c8:ac:60:63:e6:d7:35:c5:39:4e:f0:7c:0f: 8a:8a:53:4a:f0:7c:da:4b:9d:55:6c:29:a8:af:9d:1c:ea:fd: 85:8d:93:0b:2c:eb:43:39:3c:4b:44:c6:e4:46:fd:48:00:a4: 90:b9:10:e3:60:e1:60:ea:0a:16:53:7a:bd:e9:f8:35:3f:f5: ea:ed:c3:f1:88:c1:be:7d:2a:b1:a6:15:61:92:b4:d0:fe:1b: 0e:e6:ab:c8:f2:1f:a7:c6:52:e3:28:51:18:23:38:f7:2b:ca: 58:4d:ad:dc:75:96:c8:49:73:ae:c0:a5:e3:be:19:c8:f8:6f: 0b:46:24:31:d6:23:a4:ee:3f:b8:ad:f2:b8:c8:71:54:fa:2d: e4:21:52:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUwODExMDMwMDIyWhcNMjUwODE4MDMwMDIyWjAYMRYwFAYD VQQDEw02ODk5NWNjNy1kNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2TYdcG8tUCPZNQx7ILjCTJlkVPPxGT0y47yd19klMc4Xo6bPnpC3fkZuvxl N6Ii9XTMRtYHNL154aQKnATqjS/4vGmDzWvGA9GzjGr/K8kkXj9CLAZaUN7hJLEV cPBXrZNGH3cMXWASNUbKIz/2Jd+vsuDt4MHG9wConmlE47xsk3fCQplSmIpcH1kW XAPV5jZhD4rv9OhtGqC28PsgYdobuyYg1iLcURVJXqbN3GRXc5a0qLQlLgvgGNyv RTUuqwd0zB1PQhkE31uPqYVV1I/SiYBg2j0RwneuQp0NbHMrtS4zBTNub2tEZtvP 8xeiTN03nuUexIUJuTw5R8+jTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFUri/w gGdHJkDdMHl+P4ky0Q7nMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkMe7jlnXkFRVpMwdVNA7wY24Lk5DN5JGUWFg2pU6UufVJRkiyzCR5 4oRRFuNIyrVz01hgeSoSE/B04W+0fLcAUvAspZdjHyrKpltNl4OMcykhPYpsDv0K J0T8+K1pT8y6RJm88ijF7/GdlZcXlzvW0cisYGPm1zXFOU7wfA+KilNK8HzaS51V bCmor50c6v2FjZMLLOtDOTxLRMbkRv1IAKSQuRDjYOFg6goWU3q96fg1P/Xq7cPx iMG+fSqxphVhkrTQ/hsO5qvI8h+nxlLjKFEYIzj3K8pYTa3cdZbISXOuwKXjvhnI +G8LRiQx1iOk7j+4rfK4yHFU+i3kIVJW -----END CERTIFICATE-----Generated at Tue Aug 12 22:46:30 2025 by rpki-client