$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: 2BGlgWbJh/jFhd9imGG5imhK6cCeFFwj2fOgBM5La0s= Subject key identifier: 0B:87:85:19:33:5B:40:10:43:0A:CE:28:F6:59:52:34:7E:F6:00:88 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 054F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 054F Signing time: Sun 20 Jul 2025 23:34:27 +0000 Manifest this update: Sun 20 Jul 2025 23:34:26 +0000 Manifest next update: Sun 27 Jul 2025 23:34:26 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: ANnEsqPQeAAAhoDHWXGudhBkFHkgVqJL1SMhug5B8MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Jul 20 23:34:26 2025 GMT Not After : Jul 27 23:34:26 2025 GMT Subject: CN=687d7d02-389a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:47:a4:6b:c9:75:ee:6f:45:9c:43:ce:b8:93: f7:e4:da:91:d8:5b:a1:b1:da:58:f8:24:cb:fb:7f: d4:fe:05:86:11:a0:ce:15:9a:69:bd:02:b6:5d:dc: 7b:a8:63:7b:34:53:d9:25:38:9d:b6:9a:32:52:7a: 61:e2:f8:30:9e:1b:af:db:b0:3d:ed:23:9b:38:21: f4:f3:f4:dc:7f:06:0a:ba:65:76:6d:0f:8c:d4:65: 85:29:ad:9c:1c:0d:86:3e:ea:87:b7:39:4a:9d:6a: 8f:2d:03:18:bf:b9:d0:2c:01:8d:44:af:f9:75:4b: c6:b9:1f:1e:ba:cb:60:87:20:87:50:60:75:4f:82: 51:ba:74:9e:90:3b:91:23:f3:2e:1e:8c:7b:b8:be: 77:76:bb:da:85:65:fc:79:b8:a0:d3:44:bf:32:31: 44:e1:3c:76:81:08:11:ab:9b:05:dc:fd:cd:7e:58: 53:5c:cf:f1:4a:20:6a:c6:5f:3e:47:dd:a9:f7:3a: 38:7e:15:0f:c1:28:e8:2b:38:dc:90:74:30:24:e8: a1:e1:60:16:0a:f8:54:ec:0e:e6:d8:92:ec:4e:74: 36:dc:d9:96:a4:ea:09:fe:92:f9:eb:52:d9:48:53: 52:da:b1:e5:aa:d7:ed:b6:fa:06:6a:a6:bc:06:25: 8f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:87:85:19:33:5B:40:10:43:0A:CE:28:F6:59:52:34:7E:F6:00:88 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2e:56:4e:9b:88:92:24:81:ee:76:2b:45:dc:3b:4d:aa:71: 9e:ef:45:eb:33:3f:9e:61:9c:21:f7:0b:66:16:4a:08:fd:93: 27:ad:d6:28:68:5b:20:90:09:bc:54:f6:af:58:c1:c5:e9:b1: 71:d7:20:8b:b8:12:8b:e2:f3:2f:43:4e:4d:e8:cb:8c:07:84: af:31:c5:9f:bb:89:4e:52:3f:ed:cc:b7:46:03:d6:dd:b3:16: e9:2a:9a:e5:84:1b:c0:3a:15:ff:c4:af:6a:85:4d:72:1a:21: ca:d3:14:d5:88:e0:36:3d:d3:d0:65:4d:1e:bf:11:d4:f1:78: 80:0d:8f:09:51:8d:b6:1b:86:eb:a3:b9:40:77:3c:18:7c:d3: fa:a2:15:29:39:d3:24:26:9e:2b:2b:c4:a4:20:4b:6b:7b:e4: 95:a0:8d:44:07:36:2b:df:ec:28:70:7f:c2:e4:5f:ad:ca:82: fc:be:6e:e0:e4:e8:84:51:bc:a2:d1:e9:5b:c6:77:63:a0:c4: cc:03:35:23:5c:40:7b:b6:c5:2c:80:e1:c0:38:21:9c:d8:0f: 67:c4:c9:78:ba:99:3d:46:e7:30:53:a0:14:63:f1:fa:80:96: ed:aa:06:21:59:15:f3:53:8d:88:0f:80:cc:64:4a:9f:77:3a: c4:49:70:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUwNzIwMjMzNDI2WhcNMjUwNzI3MjMzNDI2WjAYMRYwFAYD VQQDEw02ODdkN2QwMi0zODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEeka8l17m9FnEPOuJP35NqR2FuhsdpY+CTL+3/U/gWGEaDOFZppvQK2Xdx7 qGN7NFPZJTidtpoyUnph4vgwnhuv27A97SObOCH08/TcfwYKumV2bQ+M1GWFKa2c HA2GPuqHtzlKnWqPLQMYv7nQLAGNRK/5dUvGuR8eustghyCHUGB1T4JRunSekDuR I/MuHox7uL53drvahWX8ebig00S/MjFE4Tx2gQgRq5sF3P3NflhTXM/xSiBqxl8+ R92p9zo4fhUPwSjoKzjckHQwJOih4WAWCvhU7A7m2JLsTnQ23NmWpOoJ/pL561LZ SFNS2rHlqtfttvoGaqa8BiWP3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuHhRkz W0AQQwrOKPZZUjR+9gCIMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMLlZOm4iSJIHuditF3DtNqnGe70XrMz+eYZwh9wtmFkoI/ZMnrdYo aFsgkAm8VPavWMHF6bFx1yCLuBKL4vMvQ05N6MuMB4SvMcWfu4lOUj/tzLdGA9bd sxbpKprlhBvAOhX/xK9qhU1yGiHK0xTViOA2PdPQZU0evxHU8XiADY8JUY22G4br o7lAdzwYfNP6ohUpOdMkJp4rK8SkIEtre+SVoI1EBzYr3+wocH/C5F+tyoL8vm7g 5OiEUbyi0elbxndjoMTMAzUjXEB7tsUsgOHAOCGc2A9nxMl4upk9RucwU6AUY/H6 gJbtqgYhWRXzU42ID4DMZEqfdzrESXD0 -----END CERTIFICATE-----Generated at Mon Jul 21 07:19:34 2025 by rpki-client