$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: bM1pKc0gIYYEZJuqEFl3kpH4X9xN74wOQThoTYYg2wk= Subject key identifier: E2:2A:91:8C:EC:5E:29:60:14:37:8F:E8:02:91:83:EF:AF:43:81:F3 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 053F Signing time: Wed 18 Jun 2025 23:16:26 +0000 Manifest this update: Wed 18 Jun 2025 23:16:26 +0000 Manifest next update: Wed 25 Jun 2025 23:16:26 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: 2WfKtOhF/wlrGI89jRJ/OJDIBubDwma7aQXxrIxtbEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Jun 18 23:16:26 2025 GMT Not After : Jun 25 23:16:26 2025 GMT Subject: CN=685348ca-7a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b5:b5:3b:e2:e0:e0:09:eb:65:ef:72:60:d6: 40:db:eb:8c:bb:05:6b:1a:2d:43:e9:75:6f:6e:17: 7e:19:e7:bf:67:43:fc:f6:8d:21:e1:72:d7:52:c2: 09:19:e7:94:ac:01:64:92:fc:4b:20:65:90:c0:f2: ad:d1:89:94:a9:42:3a:f4:66:06:8f:52:d1:0a:8c: 2d:1e:59:79:56:a7:01:a1:ef:c1:e4:ad:53:54:dc: e3:04:a0:b7:ab:1a:f3:8e:1e:0b:26:02:9e:e7:8a: fd:4c:10:5a:cd:35:6a:37:81:3b:f0:00:2e:01:7a: 1d:25:c2:28:25:dd:6d:14:ba:cd:20:7d:ea:48:dd: a6:2d:1e:e2:bc:c0:6b:c0:57:e9:91:0d:55:5c:c4: 2b:c5:e6:b2:d3:c6:e8:e8:9a:aa:ab:b2:f0:9c:1d: aa:1f:21:3f:3d:11:1b:ba:1c:1a:a4:34:d6:9c:8c: dc:7b:20:d8:73:da:5e:74:62:a3:4a:1a:4c:2c:b0: f0:76:ef:36:ac:3a:43:06:f1:32:7d:b4:e9:63:0f: a2:c6:fa:58:0d:4b:ba:47:d1:e2:7f:90:d7:d5:ff: 06:ee:39:44:33:4d:7a:73:46:b8:1b:0b:e9:5d:d1: 01:ef:ac:b4:99:e8:14:6c:d1:4c:a9:0f:af:a6:dc: e7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2A:91:8C:EC:5E:29:60:14:37:8F:E8:02:91:83:EF:AF:43:81:F3 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:12:eb:11:9c:44:30:64:37:b0:b5:45:f6:1b:6b:6b:a6:08: 02:20:cf:26:85:65:e0:99:d4:35:4d:66:e7:94:a8:9b:86:4b: fa:36:d9:8f:ca:71:32:68:cc:68:08:11:06:96:4d:9c:2e:f6: b4:25:b7:63:6a:58:b8:9c:96:0a:64:09:85:cf:f6:6d:38:05: 94:d1:64:0f:cf:61:52:b8:76:1a:e1:2d:2e:d8:88:ac:b8:5a: 87:f5:b1:93:d2:04:f3:a4:7c:b6:09:17:4f:76:c8:ab:df:c6: fd:58:e9:54:b9:18:2b:55:62:9f:e5:e8:18:32:f1:c7:da:c5: d7:53:ef:87:1a:ee:41:a9:2c:dd:f1:c9:60:eb:ff:4a:c3:c8: 97:25:f5:de:25:73:91:44:f4:87:cd:ff:a5:df:15:86:9f:87: 10:45:c1:bb:14:75:e0:8c:62:37:c2:ca:6a:69:f0:69:ea:27: cd:d3:bd:37:91:22:f3:57:64:02:dc:14:35:27:17:82:a8:0b: 93:05:26:ee:97:54:b2:29:20:5d:e2:6f:90:b8:35:bf:23:eb: 7a:98:6e:da:ee:b1:33:b5:e1:66:b7:a6:75:76:05:e5:54:b2: b6:32:5c:8a:d6:40:6b:44:02:21:9a:68:ab:8b:15:68:e6:73: 5d:5d:86:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUwNjE4MjMxNjI2WhcNMjUwNjI1MjMxNjI2WjAYMRYwFAYD VQQDEw02ODUzNDhjYS03YTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbW1O+Lg4AnrZe9yYNZA2+uMuwVrGi1D6XVvbhd+Gee/Z0P89o0h4XLXUsIJ GeeUrAFkkvxLIGWQwPKt0YmUqUI69GYGj1LRCowtHll5VqcBoe/B5K1TVNzjBKC3 qxrzjh4LJgKe54r9TBBazTVqN4E78AAuAXodJcIoJd1tFLrNIH3qSN2mLR7ivMBr wFfpkQ1VXMQrxeay08bo6Jqqq7LwnB2qHyE/PREbuhwapDTWnIzceyDYc9pedGKj ShpMLLDwdu82rDpDBvEyfbTpYw+ixvpYDUu6R9Hif5DX1f8G7jlEM016c0a4Gwvp XdEB76y0megUbNFMqQ+vptznqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIqkYzs XilgFDeP6AKRg++vQ4HzMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgEusRnEQwZDewtUX2G2trpggCIM8mhWXgmdQ1TWbnlKibhkv6NtmP ynEyaMxoCBEGlk2cLva0Jbdjali4nJYKZAmFz/ZtOAWU0WQPz2FSuHYa4S0u2Iis uFqH9bGT0gTzpHy2CRdPdsir38b9WOlUuRgrVWKf5egYMvHH2sXXU++HGu5BqSzd 8clg6/9Kw8iXJfXeJXORRPSHzf+l3xWGn4cQRcG7FHXgjGI3wspqafBp6ifN0703 kSLzV2QC3BQ1JxeCqAuTBSbul1SyKSBd4m+QuDW/I+t6mG7a7rEzteFmt6Z1dgXl VLK2MlyK1kBrRAIhmmirixVo5nNdXYav -----END CERTIFICATE-----Generated at Fri Jun 20 13:32:13 2025 by rpki-client