$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: 5lRdRalGClGayR6ojCrSI32x6rBx4aEN8fDLKD1lxD0= Subject key identifier: BA:2E:33:46:38:E6:C3:5F:08:03:7F:60:3D:10:1B:7E:F2:F5:36:DE Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 0178 Signing time: Sat 23 Aug 2025 03:51:03 +0000 Manifest this update: Sat 23 Aug 2025 03:51:01 +0000 Manifest next update: Sat 30 Aug 2025 03:51:01 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: boP+L/OBDX8ds8FqKjNoGGxQJO+3yH0hHd0F//Qhyh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Aug 23 03:51:01 2025 GMT Not After : Aug 30 03:51:01 2025 GMT Subject: CN=68a93aa7-d326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1e:18:0a:e9:4d:f6:d8:53:c1:1c:f6:09:14: c0:d5:85:90:57:9b:74:9b:08:07:f9:22:00:5a:26: 2b:70:ff:7b:39:7c:3d:fd:4a:01:9c:f6:6b:e8:0f: 23:6c:8d:e6:48:06:71:e2:46:1a:34:ec:4c:5b:fa: cb:eb:22:93:b4:de:c2:36:65:90:1d:01:87:9b:ec: e0:77:47:0f:d2:67:be:fc:2c:9c:49:cb:bd:7a:2c: 4e:e4:ee:65:34:0f:b2:41:93:22:9c:dc:6f:84:d0: 5a:f3:b5:ca:2e:9d:1e:fe:0e:ea:9a:16:18:98:ba: 89:fb:06:26:64:a0:d7:42:14:37:8e:a0:24:e8:2b: 9d:de:eb:3f:3a:5e:56:de:24:c2:e0:d6:ac:08:d2: cb:4c:d0:6d:12:12:64:c1:93:38:42:c5:dc:2d:0f: eb:99:a2:f9:41:21:73:a9:6a:8e:1a:a1:af:06:14: 64:18:0c:96:36:47:30:ca:f0:f6:7b:75:95:68:df: e7:a4:03:11:9c:1f:26:36:4a:76:a8:f2:ef:7b:4d: 71:4d:7d:a9:0b:c6:03:5d:5a:7e:53:5b:b7:9c:8a: d3:5a:c6:fa:3e:82:9e:56:d2:dc:aa:24:61:94:c1: 00:4f:cb:34:a0:92:f7:0c:21:31:16:92:6d:29:99: 04:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2E:33:46:38:E6:C3:5F:08:03:7F:60:3D:10:1B:7E:F2:F5:36:DE X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e8:dd:8f:88:75:4e:0c:d0:27:c4:44:77:51:eb:c6:7e:75: da:0f:c0:9f:3d:e4:00:4b:cb:9d:50:fe:74:dc:b0:aa:25:ac: 83:04:ab:86:c1:d2:ff:3c:53:fd:12:86:13:cc:00:cd:50:18: d3:14:25:c0:3d:c9:ad:b7:10:6a:ae:30:0a:38:aa:f9:0f:b0: ec:bd:2a:16:50:b7:91:fe:40:8a:45:a7:8d:66:dd:f9:52:90: 2d:27:5d:04:93:2f:14:cd:c4:42:12:83:78:96:55:85:ef:55: 67:d2:23:82:a0:61:5d:68:38:80:7e:ac:da:8c:64:7d:f6:a8: 7f:cc:29:88:49:33:b9:92:14:c1:44:4b:44:31:fe:cd:cf:ab: 8c:1e:94:5e:3f:52:d0:9a:8d:1a:e3:49:68:37:5a:a9:d4:22: f3:45:82:28:1b:c0:4a:44:4e:ab:4e:f4:d5:e0:1b:cc:12:a5: bc:d6:90:d0:14:88:51:37:16:e1:b8:4b:59:dc:ca:62:76:e9: 73:bb:3d:5d:bb:93:db:ab:1e:7e:0b:69:8e:63:2a:b1:3a:57: dc:16:0d:bb:75:7b:01:0a:ca:a8:4a:60:9c:45:1d:21:17:e7: 15:f4:cf:9e:5d:e8:55:69:a1:88:b9:ae:18:dc:15:b1:ef:2e: 03:6a:20:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUwODIzMDM1MTAxWhcNMjUwODMwMDM1MTAxWjAYMRYwFAYD VQQDEw02OGE5M2FhNy1kMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsx4YCulN9thTwRz2CRTA1YWQV5t0mwgH+SIAWiYrcP97OXw9/UoBnPZr6A8j bI3mSAZx4kYaNOxMW/rL6yKTtN7CNmWQHQGHm+zgd0cP0me+/CycScu9eixO5O5l NA+yQZMinNxvhNBa87XKLp0e/g7qmhYYmLqJ+wYmZKDXQhQ3jqAk6Cud3us/Ol5W 3iTC4NasCNLLTNBtEhJkwZM4QsXcLQ/rmaL5QSFzqWqOGqGvBhRkGAyWNkcwyvD2 e3WVaN/npAMRnB8mNkp2qPLve01xTX2pC8YDXVp+U1u3nIrTWsb6PoKeVtLcqiRh lMEAT8s0oJL3DCExFpJtKZkEDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLouM0Y4 5sNfCAN/YD0QG37y9TbeMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE6N2PiHVODNAnxER3UevGfnXaD8CfPeQAS8udUP503LCqJayDBKuG wdL/PFP9EoYTzADNUBjTFCXAPcmttxBqrjAKOKr5D7DsvSoWULeR/kCKRaeNZt35 UpAtJ10Eky8UzcRCEoN4llWF71Vn0iOCoGFdaDiAfqzajGR99qh/zCmISTO5khTB REtEMf7Nz6uMHpReP1LQmo0a40loN1qp1CLzRYIoG8BKRE6rTvTV4BvMEqW81pDQ FIhRNxbhuEtZ3Mpidulzuz1du5Pbqx5+C2mOYyqxOlfcFg27dXsBCsqoSmCcRR0h F+cV9M+eXehVaaGIua4Y3BWx7y4DaiCZ -----END CERTIFICATE-----Generated at Sat Aug 23 20:12:19 2025 by rpki-client