$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: o9kpMUypBfEBbJ3Z9o1kInzwlXm/aufy5rswgE5vjC4= Subject key identifier: 39:C5:67:FA:A9:04:59:F0:4D:8E:F5:E2:40:A0:72:12:9F:22:CD:DF Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 055A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 055A Signing time: Sun 10 Aug 2025 23:27:29 +0000 Manifest this update: Sun 10 Aug 2025 23:27:28 +0000 Manifest next update: Sun 17 Aug 2025 23:27:28 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: LM8WPL8M+QcOSkbltNTxVHXlgVBYI9VrbS7lSwzEdxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Aug 10 23:27:28 2025 GMT Not After : Aug 17 23:27:28 2025 GMT Subject: CN=68992ae0-0a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:57:3d:be:19:aa:2c:c0:41:06:99:75:6d:79: d7:09:5c:46:35:3e:ac:f2:b7:80:62:b9:0f:fe:5c: 58:94:5a:ae:ec:42:ab:68:4b:28:25:ff:2a:c0:7e: a0:76:a9:0c:2e:e4:d7:3a:6f:d2:8d:87:63:b1:ec: 53:6e:62:94:0a:65:5c:6e:c6:c7:c4:05:77:5e:cb: 20:79:67:70:a8:0a:46:3a:b6:ac:ac:dc:69:7f:64: e7:ff:29:42:cf:a0:98:ae:7f:f0:b1:9b:c5:31:20: 31:95:54:0a:dd:d4:9a:82:db:04:5b:c2:05:fc:a0: e9:30:49:90:fa:38:31:e4:1f:5b:5a:cc:c3:66:97: c7:fd:9c:7e:fd:00:ce:d0:c0:18:f3:48:67:5d:55: bf:7b:aa:26:9e:ba:64:8d:65:81:78:92:b3:c7:38: 87:d2:99:c9:22:73:01:cd:77:ab:df:78:f4:d5:ab: 4a:b1:26:99:1f:a9:55:6a:e3:c5:6b:26:e6:9d:36: d5:0e:21:15:99:f4:9f:e9:6b:88:4c:66:d1:96:ae: 9b:f8:bc:16:61:6f:88:c6:4f:17:c1:88:20:4e:70: ab:9e:db:ae:7e:07:b2:77:50:0d:16:10:39:2f:af: e5:98:1b:bc:34:42:2b:73:d3:06:32:d9:16:19:58: 93:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C5:67:FA:A9:04:59:F0:4D:8E:F5:E2:40:A0:72:12:9F:22:CD:DF X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:e5:68:f6:1f:9b:bb:2a:b7:95:af:e7:16:63:ca:62:84:3b: ec:b4:3c:4e:fa:55:2d:22:08:c1:e9:70:76:b5:37:a6:c8:0a: 40:5f:f5:af:fb:12:ea:0f:33:0b:c5:b3:67:52:c4:10:53:6f: 9b:94:4c:04:1e:57:e7:7d:71:65:52:46:29:a2:3a:5e:20:58: 3e:de:5e:81:c8:aa:1c:5d:d7:00:a8:3f:c9:6f:ca:90:50:d8: 04:f3:3b:6e:14:04:11:66:a5:6c:a7:a6:86:ed:53:19:33:55: f2:5f:5b:20:f5:12:5d:08:e2:2d:47:21:f4:42:4e:4a:6d:d1: 9a:17:ce:fa:ca:3a:95:a6:01:72:d1:cc:bc:69:b7:75:9a:44: d1:9e:73:fc:6e:34:44:fb:d2:4a:7b:69:ce:5d:f9:50:5c:02: 90:b9:82:35:53:9c:da:eb:c8:7f:29:a6:54:9a:aa:08:8a:34: f8:cb:52:11:f6:2e:e3:c2:f6:09:a3:d2:c0:73:09:e6:61:82: 39:dd:bb:a0:c0:5b:e9:3a:5a:ef:f8:2e:2f:75:4f:50:34:9f: a2:f4:4c:48:0a:2c:e5:af:67:4c:db:63:29:d2:41:0f:a5:64: 3c:16:91:12:86:1d:e4:c8:03:92:f2:42:d1:81:4c:e1:1f:87: a2:fd:fe:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUwODEwMjMyNzI4WhcNMjUwODE3MjMyNzI4WjAYMRYwFAYD VQQDEw02ODk5MmFlMC0wYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11c9vhmqLMBBBpl1bXnXCVxGNT6s8reAYrkP/lxYlFqu7EKraEsoJf8qwH6g dqkMLuTXOm/SjYdjsexTbmKUCmVcbsbHxAV3XssgeWdwqApGOrasrNxpf2Tn/ylC z6CYrn/wsZvFMSAxlVQK3dSagtsEW8IF/KDpMEmQ+jgx5B9bWszDZpfH/Zx+/QDO 0MAY80hnXVW/e6omnrpkjWWBeJKzxziH0pnJInMBzXer33j01atKsSaZH6lVauPF aybmnTbVDiEVmfSf6WuITGbRlq6b+LwWYW+Ixk8XwYggTnCrntuufgeyd1ANFhA5 L6/lmBu8NEIrc9MGMtkWGViTYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnFZ/qp BFnwTY714kCgchKfIs3fMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB5Wj2H5u7KreVr+cWY8pihDvstDxO+lUtIgjB6XB2tTemyApAX/Wv +xLqDzMLxbNnUsQQU2+blEwEHlfnfXFlUkYpojpeIFg+3l6ByKocXdcAqD/Jb8qQ UNgE8ztuFAQRZqVsp6aG7VMZM1XyX1sg9RJdCOItRyH0Qk5KbdGaF876yjqVpgFy 0cy8abd1mkTRnnP8bjRE+9JKe2nOXflQXAKQuYI1U5za68h/KaZUmqoIijT4y1IR 9i7jwvYJo9LAcwnmYYI53bugwFvpOlrv+C4vdU9QNJ+i9ExICizlr2dM22Mp0kEP pWQ8FpEShh3kyAOS8kLRgUzhH4ei/f5a -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:29 2025 by rpki-client