$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: Q4zVXEPuXdOqoziOqDBYRqMWhDIYIu2fuHkmm2XY3Wk= Subject key identifier: 75:78:E9:5C:A4:E1:A9:3E:77:B8:50:C9:6E:35:C8:CC:4A:23:E3:C3 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 04CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04BF Signing time: Thu 03 Jul 2025 00:13:14 +0000 Manifest this update: Thu 03 Jul 2025 00:13:14 +0000 Manifest next update: Thu 10 Jul 2025 00:13:14 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: LpHu8zntXnGiM2MXmklxJHVsJqdONHOq2AcIaTlEYSo=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Jul 3 00:13:14 2025 GMT Not After : Jul 10 00:13:14 2025 GMT Subject: CN=6865cb1a-3555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:ca:6c:dc:89:c1:2d:05:94:da:7f:aa:70: e0:4f:49:6f:0c:7a:e6:b6:73:cd:69:41:5c:f2:52: af:73:dc:9c:52:50:59:ef:32:b0:35:ea:91:e1:21: 16:50:6c:e4:d9:c4:cc:21:fc:ca:7d:8d:22:0e:bc: 8f:94:c0:f0:58:fe:65:36:6c:c2:06:97:45:15:5a: e5:2c:5b:be:17:ca:dd:07:c4:f8:d7:64:3f:84:e8: 2f:9e:aa:73:47:e8:f0:63:bb:17:a9:de:43:0c:e3: d7:e2:82:d3:5f:74:ae:0a:e3:15:3f:65:b5:70:b0: a2:bc:e5:31:60:22:99:5d:b9:4e:9c:20:72:5f:9d: ea:2d:65:19:8d:99:f8:86:08:87:c4:44:7c:44:a0: 6b:8c:54:22:1c:70:e4:ce:c5:b3:9b:45:6d:78:ed: f4:ff:3e:91:a5:ec:cf:b9:5c:52:97:49:15:b6:89: c6:4a:a1:21:1a:d6:e0:33:7f:d2:3c:ad:b0:d1:58: 76:00:19:b7:98:c5:43:bb:3f:c0:cc:58:67:7e:d4: 9f:b8:d3:92:e2:42:de:21:32:00:e5:e4:4d:d5:ed: 46:2c:3b:53:ef:cd:51:ed:8b:64:5c:57:15:10:c8: ac:8d:42:6c:27:90:38:35:46:f3:6c:4d:48:d3:2d: b6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:78:E9:5C:A4:E1:A9:3E:77:B8:50:C9:6E:35:C8:CC:4A:23:E3:C3 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:98:fa:60:1e:3b:ae:e6:7a:1e:35:46:ca:5b:a7:49:d6:a3: 1b:de:de:77:bd:e3:85:f7:f6:3b:b6:ba:fc:63:77:29:6c:57: bf:79:cd:ff:ab:c6:99:e7:7e:01:18:36:c3:fc:29:df:1d:4c: 31:5e:27:47:03:65:b8:6d:00:2f:99:9b:a8:2e:51:a0:ff:36: f4:7c:a2:2a:b0:f7:10:1e:1c:eb:f7:c8:44:ab:52:c2:eb:61: 7a:53:61:f3:85:ff:7b:01:9c:59:b3:b6:36:f3:0f:07:bc:29: 26:2b:ba:19:9f:78:36:da:3c:64:a1:97:0e:14:83:a8:6d:7d: 1b:3e:aa:36:9f:90:09:2a:c1:04:34:bf:e4:7a:39:8c:d3:94: 10:99:e6:07:98:7e:6c:a5:43:83:b5:3b:4b:be:c3:f9:7c:c3: e2:e8:e8:e5:c2:6a:30:41:b7:f3:c6:b8:86:ed:ac:ac:5d:35: 77:ea:29:63:da:13:b8:92:60:be:17:38:7a:aa:d8:4d:a9:2c: da:e8:6a:91:fa:95:dc:9d:65:ef:c2:a9:8d:08:bf:c2:21:73: b6:c8:9e:58:be:f6:35:f6:e2:53:af:c7:57:ac:dd:76:ea:24: b3:57:84:77:76:b3:a5:79:42:80:b9:01:f7:70:c1:4c:80:d1: 19:21:65:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwNzAzMDAxMzE0WhcNMjUwNzEwMDAxMzE0WjAYMRYwFAYD VQQDEw02ODY1Y2IxYS0zNTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDrKbNyJwS0FlNp/qnDgT0lvDHrmtnPNaUFc8lKvc9ycUlBZ7zKwNeqR4SEW UGzk2cTMIfzKfY0iDryPlMDwWP5lNmzCBpdFFVrlLFu+F8rdB8T412Q/hOgvnqpz R+jwY7sXqd5DDOPX4oLTX3SuCuMVP2W1cLCivOUxYCKZXblOnCByX53qLWUZjZn4 hgiHxER8RKBrjFQiHHDkzsWzm0VteO30/z6RpezPuVxSl0kVtonGSqEhGtbgM3/S PK2w0Vh2ABm3mMVDuz/AzFhnftSfuNOS4kLeITIA5eRN1e1GLDtT781R7YtkXFcV EMisjUJsJ5A4NUbzbE1I0y22zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV46Vyk 4ak+d7hQyW41yMxKI+PDMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKmPpgHjuu5noeNUbKW6dJ1qMb3t53veOF9/Y7trr8Y3cpbFe/ec3/ q8aZ534BGDbD/CnfHUwxXidHA2W4bQAvmZuoLlGg/zb0fKIqsPcQHhzr98hEq1LC 62F6U2Hzhf97AZxZs7Y28w8HvCkmK7oZn3g22jxkoZcOFIOobX0bPqo2n5AJKsEE NL/kejmM05QQmeYHmH5spUODtTtLvsP5fMPi6OjlwmowQbfzxriG7aysXTV36ilj 2hO4kmC+Fzh6qthNqSza6GqR+pXcnWXvwqmNCL/CIXO2yJ5YvvY19uJTr8dXrN12 6iSzV4R3drOleUKAuQH3cMFMgNEZIWXa -----END CERTIFICATE-----Generated at Thu Jul 3 23:55:19 2025 by rpki-client