$ rpki-client -vvf rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft File: daF-q5BBtk2zdHHPtOv_WR6PaZM.mft (raw, json) Hash identifier: GC+IRTZUm1+Ov7HLcPxHOZji9VNFS8DQOOHmdXddEjk= Subject key identifier: 3D:86:DE:D3:2F:84:2B:2E:DC:9D:AF:3E:1A:4D:38:07:59:A7:68:BF Authority key identifier: 75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93 Certificate issuer: /CN=A919D626/serialNumber=75A17EAB9041B64DB37471CFB4EBFF591E8F6993 Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft Manifest number: 069E Signing time: Tue 04 Nov 2025 15:08:12 +0000 Manifest this update: Tue 04 Nov 2025 15:08:12 +0000 Manifest next update: Tue 11 Nov 2025 15:08:12 +0000 Files and hashes: 1: daF-q5BBtk2zdHHPtOv_WR6PaZM.crl (hash: Vr3+tu5axdroMBSWxGeJl4/+uAGma0coPcFCyTl0Imo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.crl rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D626, serialNumber=75A17EAB9041B64DB37471CFB4EBFF591E8F6993 Validity Not Before: Nov 4 15:08:12 2025 GMT Not After : Nov 11 15:08:12 2025 GMT Subject: CN=690a16dc-44f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:74:02:b3:7e:5e:35:7c:55:07:d7:3d:4c: 7f:e1:fc:a8:0c:5d:60:c1:15:de:6c:9f:86:33:5a: a0:2b:45:83:00:d5:cd:e2:62:81:22:33:ff:dd:c5: b0:63:c3:47:f0:a6:67:05:dc:64:9c:d4:80:d8:da: 55:89:d9:4b:7d:ce:a5:3b:96:ba:60:13:b3:ea:01: 76:52:c7:a0:56:06:3b:a0:9a:7b:12:4b:9c:f7:86: 19:a4:27:5b:87:7d:8f:e9:2a:c7:ad:9c:07:4d:2b: b7:44:f8:ea:d2:dc:46:3e:ca:af:37:7a:42:02:06: 8a:60:2f:f7:a0:ab:0d:43:a4:71:d4:7b:49:74:4c: 5e:52:31:87:9c:89:85:e2:b7:d6:74:bc:fe:aa:ba: 66:8d:5f:9a:c6:65:9d:87:b7:7f:38:cb:b8:fd:16: a3:33:5f:ae:ef:df:91:99:58:c0:82:a6:82:2d:8c: 36:74:39:f9:e5:9e:77:00:5a:3b:92:48:87:22:19: 61:c3:12:3c:6a:1f:35:17:c7:b2:b2:55:30:04:f1: a7:7c:c3:ad:8f:b8:7d:a7:d9:60:d4:f1:f9:5c:d9: 2a:08:6d:d4:d7:a6:14:95:08:44:8a:73:7f:5a:59: c0:37:73:33:6d:90:ca:e5:9f:0a:7e:8b:de:81:19: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:86:DE:D3:2F:84:2B:2E:DC:9D:AF:3E:1A:4D:38:07:59:A7:68:BF X509v3 Authority Key Identifier: keyid:75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:22:c2:13:0d:46:f6:6e:61:06:63:09:8a:cd:53:c5:45:9f: 5b:a1:0b:2a:bb:e6:f5:c3:29:9b:9f:a2:73:89:d6:73:0e:70: cf:75:3e:96:e9:30:a4:b3:72:38:21:37:ff:12:0e:b4:d2:cb: e6:84:16:45:4d:ed:b5:ad:09:74:f1:69:ce:94:95:f8:36:78: 9d:52:9c:94:1e:54:b2:17:2a:c2:a0:a4:e7:ce:43:07:b3:c2: fc:2c:a1:b0:5c:37:3c:42:59:93:ea:20:a6:5e:4c:cb:99:88: 08:1c:f1:bd:43:2c:6a:9d:46:8b:95:6d:45:69:8f:72:d4:da: 69:95:01:6d:e4:07:79:c3:2b:bc:bc:1e:db:43:0c:66:3c:ab: 24:3e:4a:3f:7e:04:3b:d3:28:96:4e:b5:a7:d5:dd:fc:b1:6a: 96:31:e9:63:10:ac:2c:4a:ba:b5:17:5c:48:88:63:8b:97:3f: 23:c4:a1:1f:06:2f:43:82:4c:7f:37:cc:df:c9:a1:b7:ee:0b: ea:5b:26:61:6a:33:81:5e:d7:dc:0b:d6:2d:92:00:59:4b:3f: 8b:ed:55:0c:9a:3b:aa:5d:3f:a5:9e:05:fb:0e:64:59:f4:fc: 24:a2:e9:d3:1a:bb:6d:78:a5:76:b5:74:b9:7f:89:68:8f:21: e1:be:a1:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2MjYxMTAvBgNVBAUTKDc1QTE3RUFCOTA0MUI2NERCMzc0NzFDRkI0RUJGRjU5 MUU4RjY5OTMwHhcNMjUxMTA0MTUwODEyWhcNMjUxMTExMTUwODEyWjAYMRYwFAYD VQQDEw02OTBhMTZkYy00NGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmp0ArN+XjV8VQfXPUx/4fyoDF1gwRXebJ+GM1qgK0WDANXN4mKBIjP/3cWw Y8NH8KZnBdxknNSA2NpVidlLfc6lO5a6YBOz6gF2UsegVgY7oJp7Ekuc94YZpCdb h32P6SrHrZwHTSu3RPjq0txGPsqvN3pCAgaKYC/3oKsNQ6Rx1HtJdExeUjGHnImF 4rfWdLz+qrpmjV+axmWdh7d/OMu4/RajM1+u79+RmVjAgqaCLYw2dDn55Z53AFo7 kkiHIhlhwxI8ah81F8eyslUwBPGnfMOtj7h9p9lg1PH5XNkqCG3U16YUlQhEinN/ WlnAN3MzbZDK5Z8KfovegRl35QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2G3tMv hCsu3J2vPhpNOAdZp2i/MB8GA1UdIwQYMBaAFHWhfquQQbZNs3Rxz7Tr/1kej2mT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDYyNi82MDA4MUVBQzhE N0YxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kYUYtcTVCQnRrMnpkSEhQdE92X1dSNlBh Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RhRi1xNUJCdGsyemRISFB0T3ZfV1I2UGFaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDYyNi82MDA4MUVBQzhEN0YxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kYUYtcTVCQnRr MnpkSEhQdE92X1dSNlBhWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGIsITDUb2bmEGYwmKzVPFRZ9boQsqu+b1wymbn6JzidZzDnDPdT6W 6TCks3I4ITf/Eg600svmhBZFTe21rQl08WnOlJX4NnidUpyUHlSyFyrCoKTnzkMH s8L8LKGwXDc8QlmT6iCmXkzLmYgIHPG9QyxqnUaLlW1FaY9y1NpplQFt5Ad5wyu8 vB7bQwxmPKskPko/fgQ70yiWTrWn1d38sWqWMeljEKwsSrq1F1xIiGOLlz8jxKEf Bi9Dgkx/N8zfyaG37gvqWyZhajOBXtfcC9YtkgBZSz+L7VUMmjuqXT+lngX7DmRZ 9PwkounTGrtteKV2tXS5f4lojyHhvqEE -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:51 2025 by rpki-client