$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: JZalZ/+ScTyEjBxQ0SxTqr74LFezxbJcg+FN5JO46Hw= Subject key identifier: 0E:09:7D:29:DE:E6:83:C4:06:69:3E:9E:95:86:F4:7E:AF:5B:48:EF Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 0143 Signing time: Fri 09 May 2025 03:25:27 +0000 Manifest this update: Fri 09 May 2025 03:25:27 +0000 Manifest next update: Fri 16 May 2025 03:25:27 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: ZAeOwzAf4ConV3IohihKSFKqJQJxOUDNbmrWvgmUUlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: May 9 03:25:27 2025 GMT Not After : May 16 03:25:27 2025 GMT Subject: CN=681d75a7-c42e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2e:c9:ce:5f:2c:bf:1b:68:b2:0a:b7:b4:6c: d7:7a:59:0c:4d:77:3f:f5:fd:0e:7f:79:49:a0:e3: 35:a2:ba:b3:e2:59:f9:f4:0d:ff:bb:74:e9:c1:9a: 1f:7f:a9:da:ed:f0:f5:33:68:ff:95:18:f5:b6:dc: ca:1c:5f:23:1d:e5:3e:8d:fc:f1:9a:7d:d3:17:f5: b7:d0:dc:0f:7a:a9:8f:23:32:27:6f:63:bb:8d:ec: b7:b1:fe:0f:bd:7c:a1:c5:c8:fd:e6:66:6c:f8:89: 0e:5e:e3:66:7e:52:e9:81:4f:1b:ec:c7:fd:9c:71: 5e:30:9c:86:fe:91:6c:66:ba:3c:66:8d:b9:1e:cb: 77:50:42:72:b9:51:97:ac:e0:68:9e:b0:aa:e4:f2: d9:be:ad:15:63:f1:d8:9e:9d:b7:1e:3d:80:82:54: 92:d1:0f:97:64:1d:4d:57:91:2c:25:94:f4:b3:3a: 06:20:9c:37:58:88:6c:df:4e:7d:b8:d1:fb:8d:a6: 3d:58:33:52:29:10:79:79:f5:38:2c:0e:f6:75:11: d9:8f:b9:07:b7:ad:4a:b4:ae:96:e1:78:68:cb:d8: 12:61:6b:b9:12:84:69:7f:9d:55:f1:53:c1:9c:26: 57:21:c1:8e:8a:b1:4f:85:bb:00:f8:30:fc:05:5d: 6f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:09:7D:29:DE:E6:83:C4:06:69:3E:9E:95:86:F4:7E:AF:5B:48:EF X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c8:1a:39:ca:44:86:c8:d1:eb:11:80:b4:2b:b2:97:a3:85: b4:8f:33:19:08:66:5d:e1:11:e8:a6:54:1c:32:25:be:47:50: 1e:eb:3c:cc:da:d4:23:21:8a:48:63:4b:4e:8a:bc:c8:37:33: 36:69:1b:21:67:50:82:c5:b3:0f:02:ad:74:68:83:b9:54:1a: 95:ed:b8:c6:21:a2:15:e1:df:ec:21:46:ff:e1:e1:58:a7:05: 6e:cc:11:a5:0a:15:67:e9:fb:5c:60:55:ba:15:df:98:04:93: ce:04:c6:2d:6d:19:9d:4f:5e:ba:31:06:4d:e9:d7:f9:8b:d8: 8b:9d:ad:4b:5e:7e:ef:39:cf:81:79:5c:11:91:92:77:da:98: ad:36:e2:01:29:a7:6b:60:33:e1:85:b3:fa:87:6b:56:20:d5: 12:cb:bf:bc:40:f7:7c:ae:5e:0d:28:e6:15:d7:f5:3e:94:34: 17:7d:e4:69:fc:8c:af:28:2e:b2:ca:85:f7:e5:d0:5b:50:d2: 34:30:43:e9:7a:67:16:33:7c:e4:27:7b:97:83:7a:bd:96:8e: e3:64:ff:49:85:89:89:ae:8f:b5:1d:5a:fd:70:03:29:da:e3: 4c:86:36:e8:6e:00:b3:ff:52:1a:53:9d:2f:93:f7:14:f7:c7: d5:58:5c:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUwNTA5MDMyNTI3WhcNMjUwNTE2MDMyNTI3WjAYMRYwFAYD VQQDEw02ODFkNzVhNy1jNDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi7Jzl8svxtosgq3tGzXelkMTXc/9f0Of3lJoOM1orqz4ln59A3/u3TpwZof f6na7fD1M2j/lRj1ttzKHF8jHeU+jfzxmn3TF/W30NwPeqmPIzInb2O7jey3sf4P vXyhxcj95mZs+IkOXuNmflLpgU8b7Mf9nHFeMJyG/pFsZro8Zo25Hst3UEJyuVGX rOBonrCq5PLZvq0VY/HYnp23Hj2AglSS0Q+XZB1NV5EsJZT0szoGIJw3WIhs3059 uNH7jaY9WDNSKRB5efU4LA72dRHZj7kHt61KtK6W4Xhoy9gSYWu5EoRpf51V8VPB nCZXIcGOirFPhbsA+DD8BV1vGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4JfSne 5oPEBmk+npWG9H6vW0jvMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfyBo5ykSGyNHrEYC0K7KXo4W0jzMZCGZd4RHoplQcMiW+R1Ae6zzM 2tQjIYpIY0tOirzINzM2aRshZ1CCxbMPAq10aIO5VBqV7bjGIaIV4d/sIUb/4eFY pwVuzBGlChVn6ftcYFW6Fd+YBJPOBMYtbRmdT166MQZN6df5i9iLna1LXn7vOc+B eVwRkZJ32pitNuIBKadrYDPhhbP6h2tWINUSy7+8QPd8rl4NKOYV1/U+lDQXfeRp /IyvKC6yyoX35dBbUNI0MEPpemcWM3zkJ3uXg3q9lo7jZP9JhYmJro+1HVr9cAMp 2uNMhjbobgCz/1IaU50vk/cU98fVWFwN -----END CERTIFICATE-----Generated at Sun May 11 00:38:30 2025 by rpki-client