$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: Yvnon/y0MUA4MAcSbf+bjzIyA1L252GUMqqetdFoFaU= Subject key identifier: B3:A6:67:EA:76:A8:F6:46:B2:96:3D:72:9B:5F:39:32:88:7C:2D:25 Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0E7D Signing time: Fri 08 Aug 2025 18:03:16 +0000 Manifest this update: Fri 08 Aug 2025 18:03:16 +0000 Manifest next update: Fri 15 Aug 2025 18:03:16 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: X6U4Hrh2DbRriP8hDB5hFWVBjm6AuEStlOLd4HWVkUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3608 (0xe18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Aug 8 18:03:16 2025 GMT Not After : Aug 15 18:03:16 2025 GMT Subject: CN=68963be4-0f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:58:5a:67:c7:b3:6d:f9:32:31:82:0b:13:da: b0:70:4e:03:16:72:2a:d1:29:f7:e5:30:67:41:5e: 8e:9c:af:b9:74:3c:fe:07:be:7d:57:cb:aa:3d:4b: 65:64:cc:fa:79:62:98:29:0c:08:b6:9f:b1:75:e3: 0d:c9:c3:59:67:89:d9:84:dc:d4:3f:86:7b:99:1e: 0b:de:d1:17:ac:0e:53:ec:0b:7c:bf:da:39:0e:56: cc:3a:1b:83:a9:b4:5f:da:7b:0a:df:17:6d:74:c6: dc:cb:71:a7:2b:0f:54:87:e8:7e:ea:87:13:32:64: 49:4a:2a:85:9b:e2:a3:ca:13:f8:25:71:ff:b3:be: 13:ac:76:0c:d1:37:85:0b:01:22:69:59:dd:36:48: 26:08:cf:dd:c5:48:01:29:40:49:eb:88:f7:46:22: c9:1a:1f:a4:53:aa:41:b1:3f:7d:6e:12:ed:bb:a9: 59:31:98:81:6f:d0:e6:fd:15:c4:c6:66:a2:7c:54: ff:82:42:d7:2a:c0:4d:ca:b1:1a:b8:10:51:4f:de: 64:27:91:3f:99:e4:50:0b:f5:cc:48:49:42:d8:89: f6:a7:8a:2c:48:ec:e8:06:5e:e3:35:99:9c:cb:9f: 26:aa:ce:7d:21:12:84:1c:5d:69:5b:d0:a2:71:dc: 9b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A6:67:EA:76:A8:F6:46:B2:96:3D:72:9B:5F:39:32:88:7C:2D:25 X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ec:b2:b7:fc:88:d7:9e:3d:a0:2c:78:51:5f:e9:29:ea:f9: cd:1b:0d:32:21:57:ae:73:de:39:c4:d2:cb:92:5b:53:e4:e5: e1:e5:5b:14:3a:b3:c6:14:73:9c:45:09:46:43:22:af:87:05: 97:49:f9:cd:5d:8f:5b:02:70:3d:95:c1:0d:8d:72:8a:5d:cc: 7b:93:5d:01:96:09:91:70:05:88:ea:01:a4:86:86:ce:69:64: 56:b9:69:9d:ff:ca:0a:d4:c8:4a:03:0d:cd:76:b1:ee:e4:f5: 3f:61:f4:2e:3f:c1:21:1e:74:07:f2:da:e4:54:c5:67:e6:cd: d0:b8:00:ea:01:b2:8b:07:f5:8c:d7:08:d8:91:0b:ee:e0:07: ca:d7:73:da:5b:0a:80:6f:db:d7:c5:e2:d3:8c:f7:ef:18:93: 74:e8:a9:e2:b5:21:04:5c:01:63:16:27:e8:26:e0:67:b3:ae: 7b:70:45:0c:5c:53:1d:c5:e0:6b:10:be:12:a1:57:45:a7:48: 29:da:06:20:c1:46:6d:e7:07:df:e7:34:03:ef:b9:13:b9:4d: 15:34:1a:f2:0b:5f:b6:8a:6a:09:18:ef:c4:83:b3:0a:25:64: ef:58:6e:ed:ed:aa:fc:92:35:6f:27:af:4f:49:77:43:8e:b0: 7e:b1:de:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUwODA4MTgwMzE2WhcNMjUwODE1MTgwMzE2WjAYMRYwFAYD VQQDEw02ODk2M2JlNC0wZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1haZ8ezbfkyMYILE9qwcE4DFnIq0Sn35TBnQV6OnK+5dDz+B759V8uqPUtl ZMz6eWKYKQwItp+xdeMNycNZZ4nZhNzUP4Z7mR4L3tEXrA5T7At8v9o5DlbMOhuD qbRf2nsK3xdtdMbcy3GnKw9Uh+h+6ocTMmRJSiqFm+KjyhP4JXH/s74TrHYM0TeF CwEiaVndNkgmCM/dxUgBKUBJ64j3RiLJGh+kU6pBsT99bhLtu6lZMZiBb9Dm/RXE xmaifFT/gkLXKsBNyrEauBBRT95kJ5E/meRQC/XMSElC2In2p4osSOzoBl7jNZmc y58mqs59IRKEHF1pW9CicdyblwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOmZ+p2 qPZGspY9cptfOTKIfC0lMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr7LK3/IjXnj2gLHhRX+kp6vnNGw0yIVeuc945xNLLkltT5OXh5VsU OrPGFHOcRQlGQyKvhwWXSfnNXY9bAnA9lcENjXKKXcx7k10BlgmRcAWI6gGkhobO aWRWuWmd/8oK1MhKAw3NdrHu5PU/YfQuP8EhHnQH8trkVMVn5s3QuADqAbKLB/WM 1wjYkQvu4AfK13PaWwqAb9vXxeLTjPfvGJN06KnitSEEXAFjFifoJuBns657cEUM XFMdxeBrEL4SoVdFp0gp2gYgwUZt5wff5zQD77kTuU0VNBryC1+2imoJGO/Eg7MK JWTvWG7t7ar8kjVvJ69PSXdDjrB+sd6C -----END CERTIFICATE-----Generated at Sat Aug 9 10:42:43 2025 by rpki-client