$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: 507mMbLEqZHG7HKGVpa/zcZtnWxo1d8TlKSkXZq5H6Y= Subject key identifier: 14:50:3A:BC:56:31:33:68:B9:88:A6:D8:46:46:B1:B6:F0:26:08:D5 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04D9 Signing time: Sat 23 Aug 2025 00:00:36 +0000 Manifest this update: Sat 23 Aug 2025 00:00:36 +0000 Manifest next update: Sat 30 Aug 2025 00:00:36 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: XCINyzZp30hpKu1hOPVTBIa8AieG7NxClIDLN//aqVY=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Aug 23 00:00:36 2025 GMT Not After : Aug 30 00:00:36 2025 GMT Subject: CN=68a904a4-f743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:61:63:19:1b:97:f7:ba:6a:ae:5e:79:11: ed:84:72:b1:1a:33:32:c5:bd:36:cc:ee:4e:f4:9a: 4c:54:79:05:ee:e4:66:ec:3c:fe:bb:fc:79:16:8e: 8b:03:74:20:5e:80:31:b7:bf:c1:0d:a0:32:7f:34: 8a:10:46:a2:b3:da:96:f2:7a:8f:02:38:18:e4:0a: 80:26:c2:ce:dc:6e:0c:56:e4:b8:ce:72:96:7c:85: 69:0c:07:b9:6b:de:7e:62:2e:de:fd:2f:28:7f:61: ec:f2:62:51:22:98:95:21:ab:ff:95:37:13:e4:79: 64:32:86:78:93:1d:0e:60:10:a2:8e:c4:20:77:d5: f1:14:45:b1:a6:64:42:30:d3:f5:c1:c3:5d:0c:63: 3a:2f:5a:09:20:09:67:88:9e:5f:b6:1b:7c:b7:52: 62:37:d7:5f:64:fc:da:09:64:0d:99:39:e4:fe:73: 46:2e:d7:97:7b:83:67:03:b3:c0:de:01:a5:4a:0c: 1a:ce:16:98:b6:63:2d:c3:55:06:db:ad:a3:7b:cd: bc:57:c0:84:9c:4f:88:ff:50:33:1a:b6:ad:76:13: 38:22:af:9f:92:0e:bc:1f:b9:bf:4d:51:2a:af:8a: 22:dc:df:2b:33:ed:ab:19:f8:d5:2a:d0:3e:1a:92: 30:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:50:3A:BC:56:31:33:68:B9:88:A6:D8:46:46:B1:B6:F0:26:08:D5 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:bf:f1:55:ef:fd:73:b0:17:33:43:0c:67:5f:5f:54:9a:49: a9:54:a6:72:0c:18:ca:78:f2:7b:29:df:41:6e:b0:eb:59:09: 81:d1:e5:aa:c1:3f:b5:1a:0f:7f:6e:85:18:89:ab:75:e8:a2: 1d:be:8d:40:5e:cd:3a:f7:e2:f9:49:18:6b:7c:d8:21:ac:3e: a4:0f:8e:fa:3c:9c:af:8e:0c:8a:13:ec:df:87:73:50:a3:cc: 5a:ac:c5:30:cc:28:ac:e0:73:cd:d1:f8:6b:c9:b3:2d:26:e4: 9d:1a:49:4a:de:df:e4:1a:f7:b9:ac:72:62:6b:91:4c:85:8d: 15:ad:e0:38:8b:b8:3e:89:06:34:f2:30:9d:65:a5:e6:c1:a8: af:fa:ef:a6:31:84:26:91:0c:db:eb:28:d1:44:de:b5:08:02: 35:75:5f:2f:29:1c:dd:43:b6:57:de:9b:ab:6b:4d:5a:57:3d: 9e:f9:4a:cb:cc:64:1e:85:6f:6e:c5:de:d0:5b:5f:f7:b8:e0: 4b:cf:fb:28:7b:d3:fb:da:51:29:58:13:52:e9:36:49:3f:38: 87:94:40:a7:8a:6f:77:e3:34:4c:d7:1b:64:99:4a:fc:a1:a3: 6f:bc:3b:44:e5:da:0c:5e:7e:6f:fa:fb:68:3b:7b:c2:0e:00: e5:3e:7c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwODIzMDAwMDM2WhcNMjUwODMwMDAwMDM2WjAYMRYwFAYD VQQDEw02OGE5MDRhNC1mNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaJhYxkbl/e6aq5eeRHthHKxGjMyxb02zO5O9JpMVHkF7uRm7Dz+u/x5Fo6L A3QgXoAxt7/BDaAyfzSKEEais9qW8nqPAjgY5AqAJsLO3G4MVuS4znKWfIVpDAe5 a95+Yi7e/S8of2Hs8mJRIpiVIav/lTcT5HlkMoZ4kx0OYBCijsQgd9XxFEWxpmRC MNP1wcNdDGM6L1oJIAlniJ5ftht8t1JiN9dfZPzaCWQNmTnk/nNGLteXe4NnA7PA 3gGlSgwazhaYtmMtw1UG262je828V8CEnE+I/1AzGratdhM4Iq+fkg68H7m/TVEq r4oi3N8rM+2rGfjVKtA+GpIwvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRQOrxW MTNouYim2EZGsbbwJgjVMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAav/FV7/1zsBczQwxnX19UmkmpVKZyDBjKePJ7Kd9BbrDrWQmB0eWq wT+1Gg9/boUYiat16KIdvo1AXs069+L5SRhrfNghrD6kD476PJyvjgyKE+zfh3NQ o8xarMUwzCis4HPN0fhrybMtJuSdGklK3t/kGve5rHJia5FMhY0VreA4i7g+iQY0 8jCdZaXmwaiv+u+mMYQmkQzb6yjRRN61CAI1dV8vKRzdQ7ZX3pura01aVz2e+UrL zGQehW9uxd7QW1/3uOBLz/soe9P72lEpWBNS6TZJPziHlECnim934zRM1xtkmUr8 oaNvvDtE5doMXn5v+vtoO3vCDgDlPnxa -----END CERTIFICATE-----Generated at Sun Aug 24 11:04:06 2025 by rpki-client