$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: 7qgu3JKEn1hsop49WD6bqZEPZWb5fpKVWKxCZAx2icc= Subject key identifier: 7D:73:7D:14:7F:1C:CA:91:2A:5A:8E:BE:EB:83:6E:9A:03:FE:70:14 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 015D Signing time: Tue 01 Jul 2025 04:29:28 +0000 Manifest this update: Tue 01 Jul 2025 04:29:28 +0000 Manifest next update: Tue 08 Jul 2025 04:29:28 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: 80MfyTIfxyS86kZGWCPRHOAV0dulQoOx80z/hL79blw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Jul 1 04:29:28 2025 GMT Not After : Jul 8 04:29:28 2025 GMT Subject: CN=68636428-2031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:24:9f:59:b9:bf:2f:7f:33:6e:37:77:69:10: 3b:ff:21:ce:86:2f:88:6f:53:10:d0:26:ee:9a:98: f0:f2:42:7b:79:9e:69:f0:a3:dd:18:f1:a2:c7:a2: a6:93:a4:d0:20:d6:e2:f3:32:b5:75:fa:18:3e:44: 64:e2:a4:19:fa:dc:d0:2c:8f:be:08:c4:21:e3:7f: 81:ca:b3:7f:ba:c5:df:eb:88:81:df:da:4d:c0:4b: 65:d2:21:fa:4d:ce:b2:c4:dc:39:2e:95:74:cb:e4: 0c:e4:49:c8:7f:a1:b7:a9:a4:51:53:1b:f6:1b:3b: 4e:5f:a5:9c:ee:3b:2d:92:18:70:c6:4c:b6:ad:5d: 2b:1e:f5:bc:3b:b0:ee:28:a4:6d:16:f1:3d:99:ca: 8b:75:3f:e2:82:d6:33:08:5e:d2:f2:33:b1:c9:0c: 12:35:9f:31:0d:2a:81:e3:a5:05:91:31:58:ab:e0: 7a:8b:4b:3c:3b:d1:ab:9e:95:0e:24:c8:4d:72:06: 9b:ca:3d:a1:f5:95:be:4b:b3:65:89:68:13:79:5f: 79:ad:47:e2:9b:03:5a:95:93:8a:62:c8:0a:80:b2: a6:76:e5:47:d3:09:f7:34:86:f9:0d:28:95:09:35: 6d:99:bd:b4:33:5f:00:4a:29:d7:6b:d4:ca:34:59: ca:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:73:7D:14:7F:1C:CA:91:2A:5A:8E:BE:EB:83:6E:9A:03:FE:70:14 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:61:d2:2b:3c:85:22:72:a4:90:2e:e5:4e:79:9c:ab:f0:aa: 98:82:62:ac:57:be:a3:89:d9:56:f9:8b:23:8f:6e:04:f7:fb: 4a:a7:23:b2:9e:fc:e4:5b:cc:03:b1:63:57:df:59:f5:72:1d: 2e:3f:ce:dd:0b:57:cf:cd:38:30:48:27:b2:a3:2b:b9:82:f7: d5:4c:ed:e4:7d:f2:b5:94:54:8d:0e:ee:0e:28:f9:6f:0c:79: 66:26:26:cc:5b:a8:6a:8a:c9:f7:63:a8:dd:f6:db:df:b3:c7: 50:58:09:cd:4b:73:2b:59:d2:d2:ca:b7:d9:9f:64:84:9d:05: ea:97:68:15:f6:00:55:36:b6:5d:08:15:37:02:01:97:46:db: 7f:d8:41:db:6a:43:04:75:2f:23:27:8b:6a:1c:b8:cd:de:bb: d7:0d:36:f5:22:c1:36:14:0a:24:1b:44:c5:ac:ad:a3:9e:2f: 52:54:4a:82:3b:07:5b:37:a7:a2:f7:46:72:1e:c3:0c:c6:23: 3c:ef:a4:3d:74:6f:2f:61:8e:09:e3:59:30:9d:8e:cd:de:40: c8:7a:b3:8f:5e:09:65:e7:e7:07:7e:21:08:26:15:b2:df:5c: c7:c2:b6:0d:66:4e:23:b8:1f:83:bb:fa:04:6c:69:72:ef:b1: 4f:9a:bf:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUwNzAxMDQyOTI4WhcNMjUwNzA4MDQyOTI4WjAYMRYwFAYD VQQDEw02ODYzNjQyOC0yMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SSfWbm/L38zbjd3aRA7/yHOhi+Ib1MQ0Cbumpjw8kJ7eZ5p8KPdGPGix6Km k6TQINbi8zK1dfoYPkRk4qQZ+tzQLI++CMQh43+ByrN/usXf64iB39pNwEtl0iH6 Tc6yxNw5LpV0y+QM5EnIf6G3qaRRUxv2GztOX6Wc7jstkhhwxky2rV0rHvW8O7Du KKRtFvE9mcqLdT/igtYzCF7S8jOxyQwSNZ8xDSqB46UFkTFYq+B6i0s8O9GrnpUO JMhNcgabyj2h9ZW+S7NliWgTeV95rUfimwNalZOKYsgKgLKmduVH0wn3NIb5DSiV CTVtmb20M18ASinXa9TKNFnKAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1zfRR/ HMqRKlqOvuuDbpoD/nAUMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUYdIrPIUicqSQLuVOeZyr8KqYgmKsV76jidlW+Ysjj24E9/tKpyOy nvzkW8wDsWNX31n1ch0uP87dC1fPzTgwSCeyoyu5gvfVTO3kffK1lFSNDu4OKPlv DHlmJibMW6hqisn3Y6jd9tvfs8dQWAnNS3MrWdLSyrfZn2SEnQXql2gV9gBVNrZd CBU3AgGXRtt/2EHbakMEdS8jJ4tqHLjN3rvXDTb1IsE2FAokG0TFrK2jni9SVEqC OwdbN6ei90ZyHsMMxiM876Q9dG8vYY4J41kwnY7N3kDIerOPXgll5+cHfiEIJhWy 31zHwrYNZk4juB+Du/oEbGly77FPmr8C -----END CERTIFICATE-----Generated at Tue Jul 1 16:10:23 2025 by rpki-client