$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: tdBdK4fchWXneX9MauiqnQY4bn58UayqL/N6NjRtdHU= Subject key identifier: FE:C5:C0:23:DE:AF:A3:5F:CB:CB:CD:22:60:74:A4:B2:BA:0F:7D:CA Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0E8B Signing time: Fri 22 Aug 2025 17:57:09 +0000 Manifest this update: Fri 22 Aug 2025 17:57:08 +0000 Manifest next update: Fri 29 Aug 2025 17:57:08 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: lYlRgeteF/L5Dw2J54hod3DV6pxP7XVvdKjOsQckF3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3615 (0xe1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Aug 22 17:57:08 2025 GMT Not After : Aug 29 17:57:08 2025 GMT Subject: CN=68a8af74-f549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:da:60:4f:71:4d:94:f5:e2:11:48:d3:1c:39: 35:7c:df:e9:06:e2:ad:bc:8b:9d:e6:49:aa:6b:2a: df:e3:3e:7c:ed:27:f0:ff:af:a0:8e:7d:52:97:37: db:a9:cb:26:e7:bb:fd:40:73:50:ce:a3:66:37:71: f8:c1:65:ab:91:0e:7b:97:e5:40:09:32:32:f1:01: 0c:db:29:27:dd:8f:ec:b7:0a:c7:41:81:60:64:6e: 8b:e0:d5:d9:15:2c:d6:3b:5a:1e:c2:31:dc:60:47: e7:92:30:f2:e9:f7:0b:72:f1:30:c4:79:d1:81:a4: 7e:78:34:4b:78:4f:ad:40:f0:20:7e:d6:14:84:77: 49:31:37:b4:b7:ca:39:e8:fc:1a:81:23:79:68:58: 5c:98:fd:52:45:cf:4c:88:5e:4b:83:6f:cb:48:c7: 57:88:75:08:02:cb:cf:26:01:53:3b:0f:21:ab:70: 84:2a:c9:bd:dd:fb:22:cf:e3:8d:8b:ca:8a:69:6d: d8:8b:14:06:ef:7f:18:51:4b:e5:b7:46:38:ec:3e: 3a:81:3c:8c:74:5c:5c:17:59:e7:44:27:ca:b7:6f: cb:8a:66:df:f4:b2:a1:bc:0c:96:b2:cc:9c:b5:05: 4d:ab:a1:f8:6b:95:1e:12:34:98:07:04:bf:9c:69: b0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C5:C0:23:DE:AF:A3:5F:CB:CB:CD:22:60:74:A4:B2:BA:0F:7D:CA X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:4a:27:e8:fc:aa:53:f4:02:f5:09:db:21:e5:41:42:90:43: c4:73:8e:8e:af:17:3c:35:95:8d:9e:e0:fc:1d:81:00:e8:05: a4:09:75:0c:61:fe:b8:18:ee:1e:0a:0e:70:cb:c7:98:18:3d: e3:14:84:b1:db:e9:75:e7:55:67:ae:db:ed:fa:4a:76:16:26: 7b:dd:07:8e:50:a7:4f:15:ff:7b:a6:2e:5d:47:10:bf:63:7c: ea:f7:0b:fb:ea:c9:36:d2:00:4f:ef:52:7a:16:68:e7:b8:e3: e1:6e:e1:f4:30:15:e7:61:67:ad:87:7f:e0:4f:60:92:bb:cf: df:c1:01:a9:f2:76:67:1b:58:ed:86:a8:b4:b1:98:e7:a2:97: a8:1e:e8:be:49:3f:61:49:4c:c4:7e:f9:3b:84:c0:b2:6e:fe: d4:6e:89:a5:75:29:37:21:26:d2:6d:1c:4a:b3:16:67:2d:c8: 8d:1d:36:01:f9:52:b8:da:11:7a:78:e8:21:e4:4d:55:1e:76: d4:ee:09:31:13:ff:aa:30:5b:b6:22:c8:94:d7:9b:cc:0b:52: 50:a0:f1:c7:b7:6c:c4:32:16:4d:fa:fd:48:99:4e:e0:72:43: 57:99:46:7d:48:5d:28:b1:d5:f0:67:cd:c2:19:a6:ab:77:2d: a6:08:e2:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUwODIyMTc1NzA4WhcNMjUwODI5MTc1NzA4WjAYMRYwFAYD VQQDEw02OGE4YWY3NC1mNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndpgT3FNlPXiEUjTHDk1fN/pBuKtvIud5kmqayrf4z587Sfw/6+gjn1Slzfb qcsm57v9QHNQzqNmN3H4wWWrkQ57l+VACTIy8QEM2ykn3Y/stwrHQYFgZG6L4NXZ FSzWO1oewjHcYEfnkjDy6fcLcvEwxHnRgaR+eDRLeE+tQPAgftYUhHdJMTe0t8o5 6PwagSN5aFhcmP1SRc9MiF5Lg2/LSMdXiHUIAsvPJgFTOw8hq3CEKsm93fsiz+ON i8qKaW3YixQG738YUUvlt0Y47D46gTyMdFxcF1nnRCfKt2/Limbf9LKhvAyWssyc tQVNq6H4a5UeEjSYBwS/nGmw8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7FwCPe r6Nfy8vNImB0pLK6D33KMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwSifo/KpT9AL1Cdsh5UFCkEPEc46Orxc8NZWNnuD8HYEA6AWkCXUM Yf64GO4eCg5wy8eYGD3jFISx2+l151Vnrtvt+kp2FiZ73QeOUKdPFf97pi5dRxC/ Y3zq9wv76sk20gBP71J6FmjnuOPhbuH0MBXnYWeth3/gT2CSu8/fwQGp8nZnG1jt hqi0sZjnopeoHui+ST9hSUzEfvk7hMCybv7UbomldSk3ISbSbRxKsxZnLciNHTYB +VK42hF6eOgh5E1VHnbU7gkxE/+qMFu2IsiU15vMC1JQoPHHt2zEMhZN+v1ImU7g ckNXmUZ9SF0osdXwZ83CGaardy2mCOKz -----END CERTIFICATE-----Generated at Sat Aug 23 17:18:50 2025 by rpki-client