$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: 9aCOS1Vx5dPPaiN8pp1xAFFSwNTtNj2EUT+163M4vsk= Subject key identifier: 9A:E2:43:4E:E6:45:49:9B:AF:54:41:57:25:18:1D:B4:E3:AC:D0:0A Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0E59 Signing time: Fri 04 Jul 2025 18:09:56 +0000 Manifest this update: Fri 04 Jul 2025 18:09:55 +0000 Manifest next update: Fri 11 Jul 2025 18:09:55 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: wL6AF5Nn1jDYPUuslROUBekDYFWBA2UzZhVGt3uH1q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Jul 4 18:09:55 2025 GMT Not After : Jul 11 18:09:55 2025 GMT Subject: CN=686818f4-4379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5e:ae:4b:c9:84:ac:5a:94:70:7e:15:fb:60: 83:83:80:8f:13:53:6b:f1:28:2c:f5:73:ef:ad:01: 71:cf:c7:98:c7:4a:af:33:d4:54:6a:4d:12:79:f4: 19:33:25:40:a6:03:2e:ec:62:7b:73:e8:f1:6b:8f: f1:f3:50:93:6d:a7:f8:75:78:14:20:d1:35:fd:ff: 31:a7:11:cf:91:a3:53:db:56:be:51:3d:05:38:4a: 32:69:a4:df:d7:47:33:5a:a6:8e:13:0c:01:b0:0a: 89:ce:08:9b:79:b1:31:ed:72:2d:52:22:c4:cc:2d: 22:64:d1:9f:b6:f2:23:33:0c:9c:a8:eb:a0:23:42: c3:7e:f4:7b:7a:22:72:d5:a0:76:e4:23:be:b8:c7: 35:ea:89:c9:10:1e:45:a5:95:2c:87:7b:7d:81:2f: 23:7c:2b:4b:b3:58:ab:51:24:49:d1:08:d6:49:9b: 38:ed:d5:cb:5d:b4:56:3c:b0:22:6f:47:e1:24:34: 65:2b:52:08:74:5f:a2:ae:d9:87:ae:fa:e8:16:b2: 85:38:83:a3:94:91:c0:27:bb:28:0b:ed:68:e1:65: 30:ec:52:05:71:b9:57:22:de:73:eb:99:dc:d1:a4: a2:3e:57:31:b3:4a:28:f6:f7:9a:cd:79:20:e9:61: dc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E2:43:4E:E6:45:49:9B:AF:54:41:57:25:18:1D:B4:E3:AC:D0:0A X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:dd:3c:6a:af:97:5c:6f:37:b9:05:fb:52:76:ae:0f:0f:5a: 44:6f:04:8b:92:c5:5c:7f:e4:e1:cd:a3:e2:61:51:5b:c5:72: bf:8e:fe:17:42:66:a5:e6:a1:ac:c6:d4:95:e2:ac:07:55:70: d7:6a:7d:d9:06:77:c7:19:7b:99:4c:36:85:ba:40:24:6d:22: 12:30:e2:9e:6c:30:49:7f:d0:07:b2:b5:f5:c1:4b:c3:cb:ad: fe:5c:8f:a6:ec:14:57:b2:f9:ba:d3:fd:a4:8f:f2:f7:ce:72: 9d:74:6f:ad:60:e9:db:5f:cf:2e:ef:6e:71:6f:c8:ea:cd:3a: 58:c9:3e:46:c4:88:d1:cd:65:96:57:f1:eb:f6:f9:6a:97:f6: ba:ee:47:3d:cf:e0:0d:e3:d7:65:b5:56:ff:2c:c5:d1:95:7c: d2:6f:42:44:18:22:29:3b:7b:13:f2:54:57:24:0b:86:f0:8a: ef:f1:2e:1f:3d:a9:ee:2e:1c:ce:8b:db:45:7b:a1:cb:43:d4: 23:7f:2a:98:22:23:95:3c:ce:be:4c:dc:00:08:b7:08:59:96: 68:c0:b7:6f:fb:a3:d7:61:4a:13:a0:bd:e6:70:6b:ea:84:f6: f8:31:49:b5:5e:a5:ab:43:3e:96:49:74:1b:be:55:9f:61:fc: 1d:b9:4c:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUwNzA0MTgwOTU1WhcNMjUwNzExMTgwOTU1WjAYMRYwFAYD VQQDEw02ODY4MThmNC00Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnV6uS8mErFqUcH4V+2CDg4CPE1Nr8Sgs9XPvrQFxz8eYx0qvM9RUak0SefQZ MyVApgMu7GJ7c+jxa4/x81CTbaf4dXgUINE1/f8xpxHPkaNT21a+UT0FOEoyaaTf 10czWqaOEwwBsAqJzgibebEx7XItUiLEzC0iZNGftvIjMwycqOugI0LDfvR7eiJy 1aB25CO+uMc16onJEB5FpZUsh3t9gS8jfCtLs1irUSRJ0QjWSZs47dXLXbRWPLAi b0fhJDRlK1IIdF+irtmHrvroFrKFOIOjlJHAJ7soC+1o4WUw7FIFcblXIt5z65nc 0aSiPlcxs0oo9veazXkg6WHcKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJriQ07m RUmbr1RBVyUYHbTjrNAKMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC3Txqr5dcbze5BftSdq4PD1pEbwSLksVcf+ThzaPiYVFbxXK/jv4X Qmal5qGsxtSV4qwHVXDXan3ZBnfHGXuZTDaFukAkbSISMOKebDBJf9AHsrX1wUvD y63+XI+m7BRXsvm60/2kj/L3znKddG+tYOnbX88u725xb8jqzTpYyT5GxIjRzWWW V/Hr9vlql/a67kc9z+AN49dltVb/LMXRlXzSb0JEGCIpO3sT8lRXJAuG8Irv8S4f PanuLhzOi9tFe6HLQ9QjfyqYIiOVPM6+TNwACLcIWZZowLdv+6PXYUoToL3mcGvq hPb4MUm1XqWrQz6WSXQbvlWfYfwduUwF -----END CERTIFICATE-----Generated at Sat Jul 5 08:09:26 2025 by rpki-client