$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: /EvVfNLyxcUqJdLt7uqlD5bIPb6XktMTNWyAbaRkz5k= Subject key identifier: D1:EC:D7:FB:AB:90:72:62:9C:63:C0:AF:1B:C5:CF:FA:95:93:AC:9B Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0EC8 Signing time: Sat 18 Oct 2025 18:27:56 +0000 Manifest this update: Sat 18 Oct 2025 18:27:55 +0000 Manifest next update: Sat 25 Oct 2025 18:27:55 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: OPsB2ElaJUZPYBCbPSvaUHM8L8GVcb8p7RqD4smmV6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3645 (0xe3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Oct 18 18:27:55 2025 GMT Not After : Oct 25 18:27:55 2025 GMT Subject: CN=68f3dc2b-318d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1d:49:8f:c8:7c:3f:15:8a:fd:ff:a1:f3:51: 8c:03:25:24:63:15:76:0e:6e:15:81:d0:52:30:14: fd:b5:ce:c2:39:72:b4:c5:2e:b7:b1:08:18:c8:1a: ef:0b:c4:fc:73:a2:a5:6b:93:61:8a:90:75:71:ad: 43:15:4b:6d:3a:bd:db:bd:13:63:e4:f5:a9:07:ee: 3d:97:e4:d6:30:64:6d:84:70:0f:30:ea:a6:c0:a5: d9:45:7f:f1:c9:17:e6:59:39:46:35:cf:db:30:3c: 5b:40:8f:2e:b5:ea:1d:82:fa:c9:59:c2:d4:49:5c: 3a:bb:e0:e0:57:6f:87:69:05:ff:f4:3f:74:c7:e9: 62:32:25:71:d5:a3:f6:7a:76:2a:7b:8f:9b:6f:72: b9:d7:e8:04:f1:3c:ab:da:00:d0:56:e3:69:b5:2f: 07:4b:8a:db:ca:f1:ea:b2:eb:5e:aa:6b:2d:31:eb: cc:1b:79:50:ca:f9:db:b9:fb:15:2a:24:79:43:a2: ef:43:26:64:58:72:1e:04:6c:f8:bb:e8:84:d0:25: 93:e5:81:0f:e0:c4:57:ca:da:a3:34:d7:8b:39:c1: 12:c8:ca:d9:bd:b8:cd:8a:73:89:51:c8:ef:ef:9a: 2e:69:a9:b5:45:f5:a3:e6:6f:e9:4e:3d:3c:30:8d: 53:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EC:D7:FB:AB:90:72:62:9C:63:C0:AF:1B:C5:CF:FA:95:93:AC:9B X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:54:4f:eb:31:c5:40:66:46:cc:61:e4:26:c7:d7:c0:9d:db: 8b:e7:81:86:dd:a5:23:c0:53:f6:cd:ef:fc:62:ac:3b:a6:b4: 93:dd:eb:6c:54:21:d8:77:87:ee:c7:e3:22:55:c3:dc:ed:7c: c4:3b:86:35:d7:d6:46:b1:b7:44:e3:84:52:a7:3a:84:1f:cc: cd:10:58:71:1e:d0:6e:b3:60:63:46:8d:2f:d8:3e:46:53:ae: 23:8a:b7:17:5b:7b:40:87:34:5b:18:98:26:73:08:87:33:2c: 09:bd:d9:27:d6:55:fa:fa:a5:7b:3c:8d:fc:26:5e:a6:ed:23: d8:9e:a5:d5:c9:03:72:89:d0:5d:87:62:bf:5c:90:04:82:11: df:0b:75:7b:27:d4:d7:cd:08:cd:ea:95:f4:c7:ba:2b:00:13: 40:59:3d:8f:6d:a3:5e:95:95:20:c5:d5:05:76:53:4b:82:47: 5d:7d:f1:24:0f:d0:4f:b6:71:30:92:81:ea:63:62:7b:34:c2: d3:84:47:80:e0:5d:13:cc:81:ce:98:70:02:2e:f3:e9:97:19: 68:bc:10:5e:bd:f4:cd:b8:d0:d1:59:ab:e0:81:5d:04:0c:77: d6:ea:12:58:ef:d2:e6:13:6a:3d:7b:59:23:7c:27:a7:d3:df: 8c:3c:26:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUxMDE4MTgyNzU1WhcNMjUxMDI1MTgyNzU1WjAYMRYwFAYD VQQDEw02OGYzZGMyYi0zMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoh1Jj8h8PxWK/f+h81GMAyUkYxV2Dm4VgdBSMBT9tc7COXK0xS63sQgYyBrv C8T8c6Kla5NhipB1ca1DFUttOr3bvRNj5PWpB+49l+TWMGRthHAPMOqmwKXZRX/x yRfmWTlGNc/bMDxbQI8uteodgvrJWcLUSVw6u+DgV2+HaQX/9D90x+liMiVx1aP2 enYqe4+bb3K51+gE8Tyr2gDQVuNptS8HS4rbyvHqsuteqmstMevMG3lQyvnbufsV KiR5Q6LvQyZkWHIeBGz4u+iE0CWT5YEP4MRXytqjNNeLOcESyMrZvbjNinOJUcjv 75ouaam1RfWj5m/pTj08MI1TTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHs1/ur kHJinGPArxvFz/qVk6ybMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLVE/rMcVAZkbMYeQmx9fAnduL54GG3aUjwFP2ze/8Yqw7prST3ets VCHYd4fux+MiVcPc7XzEO4Y119ZGsbdE44RSpzqEH8zNEFhxHtBus2BjRo0v2D5G U64jircXW3tAhzRbGJgmcwiHMywJvdkn1lX6+qV7PI38Jl6m7SPYnqXVyQNyidBd h2K/XJAEghHfC3V7J9TXzQjN6pX0x7orABNAWT2PbaNelZUgxdUFdlNLgkddffEk D9BPtnEwkoHqY2J7NMLThEeA4F0TzIHOmHACLvPplxlovBBevfTNuNDRWavggV0E DHfW6hJY79LmE2o9e1kjfCen09+MPCYQ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:43 2025 by rpki-client