$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft File: A72QmhoVpFA9-tWUw8bem5RgTmY.mft (raw, json) Hash identifier: 5lC21+HkiyzoMX8L7z6bmC+svg8E7O3W+RWSzfZ/ELo= Subject key identifier: B1:69:62:F0:37:3A:DC:B7:9F:1F:DF:55:32:0E:E0:C5:C6:82:43:6C Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft Manifest number: 0340 Signing time: Tue 01 Jul 2025 01:39:19 +0000 Manifest this update: Tue 01 Jul 2025 01:39:18 +0000 Manifest next update: Tue 08 Jul 2025 01:39:18 +0000 Files and hashes: 1: A72QmhoVpFA9-tWUw8bem5RgTmY.crl (hash: 3d9SiNIe3bJtSKPMSKTrs1MptgadrunHgD7GHYZZDdw=) 2: E15CC33CD55011EFB17CB022C4F9AE02.roa (hash: YkgVY3NySYm4wFHmOVUk89wTvIIkdJt3TNVnKoMCNEA=) 3: 5409C188C6CB11ECB185E43EC4F9AE02.roa (hash: qkNJcqJasGm5DqRK6RDLwIc76BxJl9ChsFknMyrjOEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Jul 1 01:39:18 2025 GMT Not After : Jul 8 01:39:18 2025 GMT Subject: CN=68633c46-fd17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:14:e5:3e:20:7c:d2:35:60:bd:5b:51:ed:d9: c8:d4:af:0c:07:0c:08:a4:f3:28:ff:e4:cc:a6:03: 48:21:60:27:4c:af:c2:b1:93:7d:33:8d:f8:e0:fb: a9:2d:37:3e:03:09:ae:03:2f:85:28:a9:cf:04:2e: 8b:0d:0b:e0:33:17:02:f7:e4:80:d0:f0:69:31:13: 70:e4:3a:29:13:97:81:ba:a7:5b:f7:f1:fa:3b:3d: f5:5f:c7:8a:28:42:45:ea:f9:a0:e5:f4:47:d2:20: b1:a0:1a:54:a1:2a:d6:81:f6:92:83:e6:9e:09:9c: 2d:e3:8e:c2:e7:f2:06:b5:ef:e1:f4:4a:7a:15:f7: 49:0f:cb:4f:ec:89:f1:72:88:3f:b6:5d:b1:54:e3: 07:b9:52:eb:53:e0:e4:25:d9:37:a6:4a:e4:cf:15: 8b:dd:ca:15:8f:fb:e6:45:25:4b:04:ec:dc:77:56: 16:3e:8a:b3:0f:7a:78:13:49:56:df:68:64:8e:c5: ee:7e:3d:c6:f0:67:24:35:5e:8d:9a:50:4c:58:bf: 84:e8:0d:8d:02:ce:3c:cf:90:97:e9:9c:41:ad:3e: 48:6f:8b:d1:3f:08:00:f8:31:50:3d:3a:3d:17:3f: 89:cb:92:27:ae:da:36:3f:a4:9b:7e:05:d0:f1:55: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:69:62:F0:37:3A:DC:B7:9F:1F:DF:55:32:0E:E0:C5:C6:82:43:6C X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:9d:38:55:00:f8:ac:a2:82:20:f0:60:af:47:6e:a8:98:5d: de:59:2a:e5:00:f5:22:58:34:fb:29:1f:73:de:b9:e2:15:e2: 71:1a:a5:7b:79:15:1b:64:b9:4f:55:19:cb:6d:ad:7d:72:29: e1:29:dd:ef:59:bb:fc:fb:64:53:24:8b:eb:b9:6a:0a:1e:36: 09:c5:e5:ba:88:6c:e9:b8:70:ec:9e:a7:d1:0c:c4:9a:97:2e: 9c:c9:b0:73:8e:1e:54:81:d6:18:a3:38:c7:d8:9d:29:e8:cd: 42:29:c1:63:68:47:eb:b3:00:24:25:84:82:b6:04:d0:99:f5: a1:27:5e:8a:3a:f6:d5:6f:ee:df:4c:72:cd:b5:05:c0:f0:9a: a3:92:f9:23:aa:7c:8a:6f:b6:af:61:b1:62:4f:34:5a:88:0b: 86:b5:9f:fa:3e:d2:d6:ab:75:8c:bd:20:07:50:88:d5:a1:4b: c8:b3:80:cf:4b:7e:10:b0:ef:04:cd:bd:6a:4f:7e:11:f7:1f: e2:21:4a:08:d5:05:6e:c0:34:ac:ac:09:00:b3:5f:41:d4:8c: ea:c4:08:36:fc:c2:0d:04:eb:03:e9:43:4b:99:e0:92:79:c4: 71:45:ff:23:7c:78:df:47:6a:1c:01:33:d0:a3:7b:4c:03:de: 02:c5:30:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjUwNzAxMDEzOTE4WhcNMjUwNzA4MDEzOTE4WjAYMRYwFAYD VQQDEw02ODYzM2M0Ni1mZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RTlPiB80jVgvVtR7dnI1K8MBwwIpPMo/+TMpgNIIWAnTK/CsZN9M4344Pup LTc+AwmuAy+FKKnPBC6LDQvgMxcC9+SA0PBpMRNw5DopE5eBuqdb9/H6Oz31X8eK KEJF6vmg5fRH0iCxoBpUoSrWgfaSg+aeCZwt447C5/IGte/h9Ep6FfdJD8tP7Inx cog/tl2xVOMHuVLrU+DkJdk3pkrkzxWL3coVj/vmRSVLBOzcd1YWPoqzD3p4E0lW 32hkjsXufj3G8GckNV6NmlBMWL+E6A2NAs48z5CX6ZxBrT5Ib4vRPwgA+DFQPTo9 Fz+Jy5Inrto2P6SbfgXQ8VU9PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFpYvA3 Oty3nx/fVTIO4MXGgkNsMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODczQi80QTE2QkJEQUM2MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBG QTktdFdVdzhiZW01UmdUbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0nThVAPisooIg8GCvR26omF3eWSrlAPUiWDT7KR9z3rniFeJxGqV7 eRUbZLlPVRnLba19cinhKd3vWbv8+2RTJIvruWoKHjYJxeW6iGzpuHDsnqfRDMSa ly6cybBzjh5UgdYYozjH2J0p6M1CKcFjaEfrswAkJYSCtgTQmfWhJ16KOvbVb+7f THLNtQXA8JqjkvkjqnyKb7avYbFiTzRaiAuGtZ/6PtLWq3WMvSAHUIjVoUvIs4DP S34QsO8Ezb1qT34R9x/iIUoI1QVuwDSsrAkAs19B1IzqxAg2/MINBOsD6UNLmeCS ecRxRf8jfHjfR2ocATPQo3tMA94CxTBw -----END CERTIFICATE-----Generated at Thu Jul 3 01:12:10 2025 by rpki-client