$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: 21rlrOcKXCLtLzqyJkOXlC5CLFYdY4ZM186mwGjPF+c= Subject key identifier: 5A:97:FA:4C:24:4D:5C:99:46:9B:11:08:6F:14:7F:0F:EE:B1:B1:24 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 0584 Signing time: Sun 02 Nov 2025 23:12:25 +0000 Manifest this update: Sun 02 Nov 2025 23:12:24 +0000 Manifest next update: Sun 09 Nov 2025 23:12:24 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: SJOf1f11tSxmuDzytDuAyUEMH9Pwsp9HRHhPJONauzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Nov 2 23:12:24 2025 GMT Not After : Nov 9 23:12:24 2025 GMT Subject: CN=6907e559-203d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e5:d7:4c:13:73:27:79:bf:49:7d:ec:fd:54: ec:62:72:39:fd:d3:f0:cc:fc:c6:14:2e:67:86:e4: ad:4d:83:f0:bc:6d:46:2e:8b:25:9a:72:ea:82:07: ee:d6:8b:94:9d:c8:83:5f:b3:de:5d:e0:8e:52:0e: fc:e2:bf:68:f1:6d:af:dc:be:c8:84:3c:c3:73:7c: 01:04:75:f2:39:3d:94:6f:0f:57:1d:c5:04:f9:80: 29:50:e7:4d:cc:51:1c:74:e6:aa:c5:b4:61:b8:2b: 1d:3c:f4:6d:c9:ba:d4:41:39:cf:6a:4d:60:23:54: 8f:c4:0a:d1:63:96:15:1e:a3:20:20:20:6f:c6:72: 45:ec:26:f3:cb:06:c9:b0:4d:fe:ac:70:12:05:36: 41:02:dd:65:dc:89:6e:63:f4:d0:47:8a:f5:fe:ba: 6e:76:1e:ce:67:ea:a6:8c:cc:c0:ff:0b:1f:2e:60: b7:c4:e0:28:e1:60:93:b8:77:3c:cb:ec:41:54:79: d4:74:bf:fe:43:5b:1f:91:96:80:32:e0:6b:f1:52: 0d:b8:f4:f2:8f:b4:1c:d2:82:12:d8:78:bf:c7:33: 0d:36:12:fe:ce:8d:c3:1e:2f:49:db:86:c4:d2:c4: 69:8c:ec:7d:10:d6:ee:7d:51:16:6c:f3:c0:f5:a5: 6e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:97:FA:4C:24:4D:5C:99:46:9B:11:08:6F:14:7F:0F:EE:B1:B1:24 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:20:ce:4b:ec:4d:6d:02:2e:4d:07:6a:75:b4:5a:aa:17:05: d5:a0:99:00:53:cb:7b:e8:c3:4b:c0:d0:d3:51:ba:c7:b6:be: b9:6a:1b:c9:d0:8b:3b:cb:32:e1:85:94:36:5b:19:c6:49:2c: 00:58:82:a3:55:7a:6a:14:d0:cc:c1:93:ea:37:74:88:70:36: 89:2a:68:0e:9d:8a:11:8e:83:fb:c5:51:7b:45:1f:63:d6:02: e2:c0:0a:94:57:b5:c2:52:42:b7:8b:65:50:63:af:dd:4d:ea: a0:b7:7e:c8:35:d7:07:87:5a:cb:c4:8e:cc:60:6d:17:9d:a9: ee:0c:d7:c0:5a:27:ec:20:da:04:12:59:dc:3d:ab:80:59:0b: 72:2a:fe:d7:17:65:98:98:b1:0d:46:e4:fd:54:6b:de:0f:a6: 70:ee:00:8c:33:d6:d9:a4:18:5a:e0:26:5d:32:67:3f:ba:11: 36:fa:15:ee:72:53:35:2c:3c:ac:8e:c2:a8:61:81:57:b9:8c: 1a:e2:6a:65:6d:1b:54:4b:9d:04:f5:56:d1:3f:e9:8e:f1:c0: 00:b0:bd:d1:06:07:0d:cd:9f:b9:ed:60:0c:7b:9c:e3:06:54: a1:7b:07:06:3f:42:7f:74:e7:6f:ec:cf:b1:6e:df:01:5d:44: 34:3a:d4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUxMTAyMjMxMjI0WhcNMjUxMTA5MjMxMjI0WjAYMRYwFAYD VQQDEw02OTA3ZTU1OS0yMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuXXTBNzJ3m/SX3s/VTsYnI5/dPwzPzGFC5nhuStTYPwvG1GLoslmnLqggfu 1ouUnciDX7PeXeCOUg784r9o8W2v3L7IhDzDc3wBBHXyOT2Ubw9XHcUE+YApUOdN zFEcdOaqxbRhuCsdPPRtybrUQTnPak1gI1SPxArRY5YVHqMgICBvxnJF7CbzywbJ sE3+rHASBTZBAt1l3IluY/TQR4r1/rpudh7OZ+qmjMzA/wsfLmC3xOAo4WCTuHc8 y+xBVHnUdL/+Q1sfkZaAMuBr8VINuPTyj7Qc0oIS2Hi/xzMNNhL+zo3DHi9J24bE 0sRpjOx9ENbufVEWbPPA9aVucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqX+kwk TVyZRpsRCG8Ufw/usbEkMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZIM5L7E1tAi5NB2p1tFqqFwXVoJkAU8t76MNLwNDTUbrHtr65ahvJ 0Is7yzLhhZQ2WxnGSSwAWIKjVXpqFNDMwZPqN3SIcDaJKmgOnYoRjoP7xVF7RR9j 1gLiwAqUV7XCUkK3i2VQY6/dTeqgt37INdcHh1rLxI7MYG0XnanuDNfAWifsINoE ElncPauAWQtyKv7XF2WYmLENRuT9VGveD6Zw7gCMM9bZpBha4CZdMmc/uhE2+hXu clM1LDysjsKoYYFXuYwa4mplbRtUS50E9VbRP+mO8cAAsL3RBgcNzZ+57WAMe5zj BlShewcGP0J/dOdv7M+xbt8BXUQ0OtQd -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:04 2025 by rpki-client