$ rpki-client -vvf rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft File: daF-q5BBtk2zdHHPtOv_WR6PaZM.mft (raw, json) Hash identifier: rwVItljwL7SzeFXOd/lOro9HsFSIQlwk80aBkyrybeY= Subject key identifier: CF:2D:F6:CC:16:AF:B3:44:42:36:26:FB:02:04:CC:2E:18:54:76:C0 Authority key identifier: 75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93 Certificate issuer: /CN=A919D626/serialNumber=75A17EAB9041B64DB37471CFB4EBFF591E8F6993 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft Manifest number: 0670 Signing time: Fri 08 Aug 2025 15:08:23 +0000 Manifest this update: Fri 08 Aug 2025 15:08:23 +0000 Manifest next update: Fri 15 Aug 2025 15:08:23 +0000 Files and hashes: 1: daF-q5BBtk2zdHHPtOv_WR6PaZM.crl (hash: 2Jbmqfw6SbQnHvWROLRhJtyNrdJR9yLXeaZ1X8IBq+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.crl rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D626, serialNumber=75A17EAB9041B64DB37471CFB4EBFF591E8F6993 Validity Not Before: Aug 8 15:08:23 2025 GMT Not After : Aug 15 15:08:23 2025 GMT Subject: CN=689612e7-dbca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:26:17:1d:31:7f:d7:82:e4:b4:16:19:56: 04:85:55:8e:43:c9:eb:d6:7d:d0:33:6e:c8:99:02: c0:98:f8:35:e6:a4:b6:87:ce:01:b5:c8:ed:af:57: 0c:3a:e4:ea:44:9a:55:7e:a1:1e:15:8c:09:b1:ff: 54:69:68:53:58:b5:96:b9:27:d3:4f:75:00:0c:1a: c1:6e:4c:cc:fe:df:a4:a6:4c:22:15:31:2d:6e:b1: 14:12:92:7c:5e:16:a0:fe:19:2e:61:d2:f4:0a:e4: 9f:a6:21:ca:46:0e:da:08:dc:16:f3:ac:a2:1f:0c: 4d:eb:55:b7:a1:12:2c:e8:34:e1:22:c5:c1:f6:70: 1d:74:0d:79:ef:f3:2b:ce:ca:f7:68:a5:72:1e:64: 3a:c3:c7:31:79:63:34:2a:58:5b:92:15:aa:1a:0e: 2d:48:87:81:46:2b:f6:48:2c:c8:8d:0f:85:a6:57: 99:2a:28:0c:e7:5b:03:0c:de:fa:7f:25:b3:6c:10: f7:35:82:b1:3b:c3:28:9e:86:6d:8e:58:d4:e9:31: 67:53:82:33:88:43:4a:81:7e:49:1a:bc:a6:b4:5b: 14:80:d3:63:76:4d:66:dc:ed:01:4a:6a:a0:c5:36: 2d:69:53:35:bb:d7:6d:e0:0f:24:01:d5:ba:59:9a: e5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2D:F6:CC:16:AF:B3:44:42:36:26:FB:02:04:CC:2E:18:54:76:C0 X509v3 Authority Key Identifier: keyid:75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:59:d1:66:ac:2d:34:f2:2d:00:ad:f8:f5:00:66:3b:cb:42: 1f:a4:31:63:8b:a2:c8:a7:df:54:ac:ec:f3:ee:30:b8:9e:18: 4e:3b:18:a7:ca:b4:56:0d:f2:aa:14:1a:4b:b6:81:74:6a:ca: da:ea:a7:81:c5:cd:b6:25:5b:41:83:40:b2:89:48:3a:b1:70: 4a:a4:f7:ed:e5:88:73:16:87:51:2b:10:a8:0a:ba:e5:2e:03: c6:23:3e:b8:d0:72:1b:da:2e:e3:75:b8:86:59:eb:9b:1e:a1: eb:1b:31:bd:f1:9e:f6:4e:f7:ee:0a:0b:82:f3:9b:5b:1d:8d: 3e:21:f0:92:63:87:c7:7e:29:e5:de:b7:23:7a:70:65:36:58: 88:cb:2a:be:ea:7a:e0:0e:de:7b:56:84:27:af:c5:6e:a0:7c: 91:c5:54:a9:e4:61:75:5b:b5:fa:d8:58:f7:c0:92:d1:4e:06: 4c:51:e9:d2:46:8d:55:c8:ea:a1:58:1a:65:88:3b:cf:ba:0e: 1e:05:34:f2:fa:3c:c7:55:a8:ac:7c:34:b5:df:32:9a:57:ef: 27:97:ba:9f:33:0e:f3:a5:2f:e2:35:5b:b0:41:bf:4e:89:c9: 88:fa:ee:cd:4b:2f:ce:d1:cf:13:ae:3d:46:e3:7a:99:04:19: c9:83:e2:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2MjYxMTAvBgNVBAUTKDc1QTE3RUFCOTA0MUI2NERCMzc0NzFDRkI0RUJGRjU5 MUU4RjY5OTMwHhcNMjUwODA4MTUwODIzWhcNMjUwODE1MTUwODIzWjAYMRYwFAYD VQQDEw02ODk2MTJlNy1kYmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9UmFx0xf9eC5LQWGVYEhVWOQ8nr1n3QM27ImQLAmPg15qS2h84Btcjtr1cM OuTqRJpVfqEeFYwJsf9UaWhTWLWWuSfTT3UADBrBbkzM/t+kpkwiFTEtbrEUEpJ8 Xhag/hkuYdL0CuSfpiHKRg7aCNwW86yiHwxN61W3oRIs6DThIsXB9nAddA157/Mr zsr3aKVyHmQ6w8cxeWM0KlhbkhWqGg4tSIeBRiv2SCzIjQ+FpleZKigM51sDDN76 fyWzbBD3NYKxO8MonoZtjljU6TFnU4IziENKgX5JGrymtFsUgNNjdk1m3O0BSmqg xTYtaVM1u9dt4A8kAdW6WZrlowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8t9swW r7NEQjYm+wIEzC4YVHbAMB8GA1UdIwQYMBaAFHWhfquQQbZNs3Rxz7Tr/1kej2mT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDYyNi82MDA4MUVBQzhE N0YxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kYUYtcTVCQnRrMnpkSEhQdE92X1dSNlBh Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RhRi1xNUJCdGsyemRISFB0T3ZfV1I2UGFaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDYyNi82MDA4MUVBQzhEN0YxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kYUYtcTVCQnRr MnpkSEhQdE92X1dSNlBhWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXWdFmrC008i0Arfj1AGY7y0IfpDFji6LIp99UrOzz7jC4nhhOOxin yrRWDfKqFBpLtoF0asra6qeBxc22JVtBg0CyiUg6sXBKpPft5YhzFodRKxCoCrrl LgPGIz640HIb2i7jdbiGWeubHqHrGzG98Z72TvfuCguC85tbHY0+IfCSY4fHfinl 3rcjenBlNliIyyq+6nrgDt57VoQnr8VuoHyRxVSp5GF1W7X62Fj3wJLRTgZMUenS Ro1VyOqhWBpliDvPug4eBTTy+jzHVaisfDS13zKaV+8nl7qfMw7zpS/iNVuwQb9O icmI+u7NSy/O0c8Trj1G43qZBBnJg+L9 -----END CERTIFICATE-----Generated at Sun Aug 10 16:14:52 2025 by rpki-client