$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: o88WL12BHOnFv9SfPNmb0oe7vCrHNd0IRziy9l3Rl9g= Subject key identifier: B4:64:5C:65:E4:C9:3F:43:57:3A:C6:69:13:11:A5:64:24:73:FC:B4 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04A6 Signing time: Mon 12 May 2025 23:45:06 +0000 Manifest this update: Mon 12 May 2025 23:45:06 +0000 Manifest next update: Mon 19 May 2025 23:45:06 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: gSJHY5Vg/Xqc4w8EVYj9xEfiIYPporjmdRR2De/3XOs=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: May 12 23:45:06 2025 GMT Not After : May 19 23:45:06 2025 GMT Subject: CN=68228802-f0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:74:1c:80:14:b6:b1:fd:db:a2:63:d3:ed:a8: c4:e5:5f:f7:58:30:a1:fb:c8:b2:f8:dc:9b:31:26: 67:5c:ff:bd:02:17:db:f1:99:42:72:ae:d6:48:4a: 78:a6:66:02:66:37:a0:7f:7c:8f:a5:7a:71:5a:db: ec:a7:2f:90:69:df:4d:af:7f:ac:d0:6a:d0:f8:49: 74:1c:37:dc:77:67:ed:2c:e3:da:88:6f:d0:a4:c7: 98:7e:b9:81:0d:c9:57:c1:2e:e1:d4:a9:15:de:c7: f6:6d:26:e2:f1:57:8b:d9:51:47:92:62:44:8f:dd: 1e:e3:20:f6:d3:59:b9:51:4d:0e:6f:89:54:61:c8: 9e:f4:a2:e8:0a:40:3f:39:62:ed:82:ab:f5:15:a3: 09:9d:43:b6:7e:6a:94:0d:48:06:f9:9d:cc:70:17: b1:5f:74:55:05:7d:c5:0c:a2:76:f7:92:9c:57:76: 7c:4c:cd:65:a6:57:54:ab:ac:70:69:91:b4:5f:b0: 52:da:a8:84:46:a0:59:0b:4d:9c:05:79:cf:96:5f: 9c:83:0a:61:98:7c:70:c2:34:23:63:1e:5a:99:55: 3a:cf:a2:a0:43:f8:cc:46:7a:b3:31:10:4d:fb:e8: a3:d3:1f:2d:cc:0c:ee:bf:43:3e:25:58:64:84:1b: 01:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:64:5C:65:E4:C9:3F:43:57:3A:C6:69:13:11:A5:64:24:73:FC:B4 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:64:0b:37:40:54:18:9b:16:d7:fd:5d:11:69:f3:1d:ea:cd: 90:a1:b4:94:df:d2:32:2c:06:85:d4:1f:ed:b1:20:6b:6d:43: 0c:44:cf:36:60:47:67:ad:05:e0:ff:24:4c:23:3f:5d:1d:1b: 03:16:bf:59:2b:b6:d5:07:05:b0:c5:cc:9e:ab:80:ed:e9:d2: 04:f2:c2:8f:5e:59:61:05:ca:41:45:79:a4:e7:29:77:41:89: 9c:4b:a2:1e:62:d6:fe:9c:55:59:66:32:dd:2e:cd:e1:71:52: 20:32:62:b6:80:df:4b:d2:81:df:56:50:eb:c7:36:00:c7:b1: 12:65:d8:b4:41:df:33:84:77:bd:71:cf:a5:72:ac:fc:64:38: d7:ae:ee:cd:74:01:69:4f:74:94:d2:c6:28:a3:a9:8b:d0:05: ae:5e:e0:62:4c:72:40:54:ff:39:c7:71:c0:8f:ea:9c:24:fd: 14:98:73:a9:12:30:88:6b:29:e3:b0:81:63:89:62:8d:8e:38: e5:6b:f9:35:0f:9a:5a:95:bc:ca:52:f8:36:16:c9:01:b1:71: de:08:10:8f:b5:70:b3:67:a3:dd:88:ac:0c:a6:76:0b:cc:de: 9c:5d:75:ae:67:68:58:a4:49:be:64:9f:47:ba:b8:13:78:44: 5e:6d:ef:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwNTEyMjM0NTA2WhcNMjUwNTE5MjM0NTA2WjAYMRYwFAYD VQQDEw02ODIyODgwMi1mMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnQcgBS2sf3bomPT7ajE5V/3WDCh+8iy+NybMSZnXP+9Ahfb8ZlCcq7WSEp4 pmYCZjegf3yPpXpxWtvspy+Qad9Nr3+s0GrQ+El0HDfcd2ftLOPaiG/QpMeYfrmB DclXwS7h1KkV3sf2bSbi8VeL2VFHkmJEj90e4yD201m5UU0Ob4lUYcie9KLoCkA/ OWLtgqv1FaMJnUO2fmqUDUgG+Z3McBexX3RVBX3FDKJ295KcV3Z8TM1lpldUq6xw aZG0X7BS2qiERqBZC02cBXnPll+cgwphmHxwwjQjYx5amVU6z6KgQ/jMRnqzMRBN ++ij0x8tzAzuv0M+JVhkhBsBSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRkXGXk yT9DVzrGaRMRpWQkc/y0MB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEZAs3QFQYmxbX/V0RafMd6s2QobSU39IyLAaF1B/tsSBrbUMMRM82 YEdnrQXg/yRMIz9dHRsDFr9ZK7bVBwWwxcyeq4Dt6dIE8sKPXllhBcpBRXmk5yl3 QYmcS6IeYtb+nFVZZjLdLs3hcVIgMmK2gN9L0oHfVlDrxzYAx7ESZdi0Qd8zhHe9 cc+lcqz8ZDjXru7NdAFpT3SU0sYoo6mL0AWuXuBiTHJAVP85x3HAj+qcJP0UmHOp EjCIaynjsIFjiWKNjjjla/k1D5palbzKUvg2FskBsXHeCBCPtXCzZ6PdiKwMpnYL zN6cXXWuZ2hYpEm+ZJ9HurgTeERebe8w -----END CERTIFICATE-----Generated at Wed May 14 18:32:46 2025 by rpki-client