$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft File: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft (raw, json) Hash identifier: u0yPKePonnCi9nz8jGgVrAdVDcQcDMBxzuf0JgIlHXo= Subject key identifier: C9:18:71:76:F0:8F:89:94:DD:74:AC:86:91:D2:74:57:29:5A:01:76 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 683234362BBAC7F1DFA8ED305DF94196C194DB98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft Manifest number: 02F6 Signing time: Thu 03 Jul 2025 03:59:41 +0000 Manifest this update: Thu 03 Jul 2025 03:54:41 +0000 Manifest next update: Fri 04 Jul 2025 07:37:41 +0000 Files and hashes: 1: 3130332e3233382e3132392e302f32342d3234203d3e20313938313030.roa (hash: befyV0hRkZPjsj2HiXn8OpPP07iuTlgDyNJrlhl8VkA=) 2: 34332e3235352e38322e302f32342d3234203d3e20393834.roa (hash: YRgjmmE+nVi/PAXhqb3JUaahbh35VPMhIEe6x6m98Ho=) 3: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (hash: 34ZLdvJWRlaz+jTDs3YF3eEhOoQyE7fhuoEG/fJaNVY=) 4: 34332e3235352e38312e302f32342d3234203d3e20313431313538.roa (hash: SQWzDg71lRig1vikM6oroRmKP7jytIrlrfxg8Lw3ga4=) 5: 34332e3235352e38302e302f32342d3234203d3e20323134373636.roa (hash: 5hWADdZsX05Xm71wk93nvrisrc0F3dwJlLqjnpXhvtY=) 6: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl (hash: dqb7nfl106NDo4YRW2xJMteRG//S/5pNYTe9bATM0Vc=) 7: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (hash: S8rFfs7IoEg3XYYnsyLOBvR6RACIA3juzHhODPn7ChQ=) 8: 3130332e3233382e3133312e302f32342d3234203d3e20383334.roa (hash: 6IgcwjRKb6astouhD9WExOS+krHxCK0bUKZX+Qgmb5s=) 9: 3130332e3233382e3132382e302f32342d3234203d3e20313338303737.roa (hash: 5sZFV0hCMUC2n4iWJ3AfJgpDZ6n5Bs/7eOe7YiQjRcQ=) 10: 3130332e3233382e3133302e302f32342d3234203d3e20313336363231.roa (hash: 8igxHKxo2njqbR2D8BiOevPTCdiGc26mhB2WmzLUUOQ=) 11: 3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa (hash: E4ONBceQGtTtMJwjbxI/zmDC8SS3yBbRlcMhg4vXlLU=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 07:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:32:34:36:2b:ba:c7:f1:df:a8:ed:30:5d:f9:41:96:c1:94:db:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Jul 3 03:54:41 2025 GMT Not After : Jul 4 07:37:41 2025 GMT Subject: CN=C9187176F08F8994DD74AC8691D27457295A0176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:68:88:95:c3:34:dd:db:89:a2:cc:b3:8f:31: aa:78:a3:f2:e0:af:40:98:f4:d8:de:b6:4e:f8:40: 95:1f:bd:2b:99:e6:f2:c1:1a:6f:f6:cf:50:ce:73: 39:07:c1:ee:d4:c4:15:d0:5e:80:66:91:39:50:00: bc:aa:e4:8a:f5:13:99:1c:fd:b6:3c:21:40:54:48: 56:fc:29:d1:48:cd:5e:29:d3:f2:95:c7:d1:21:4d: 89:6e:36:e6:cd:7d:ca:20:cb:41:f6:83:03:e2:ba: 7b:7d:d4:6c:84:fd:00:ac:62:7a:53:90:7f:8d:15: 88:e9:da:c1:6d:5e:b2:34:a7:73:e6:ba:25:21:bf: df:2d:6c:8c:5e:e2:50:22:7c:4f:5f:cc:ef:8e:2b: f1:0c:88:80:e9:bc:1c:b9:31:07:ee:e0:99:d5:0c: c7:6a:cd:f6:16:22:44:ec:00:90:4a:fb:8c:43:37: ba:da:c5:41:57:89:1e:cc:77:72:f8:77:0c:c4:69: e8:e7:17:37:c5:79:1d:dc:78:a4:78:37:e6:5e:b3: 2c:8c:8b:6e:5f:3c:04:3a:aa:d1:5f:54:0a:68:56: 64:0c:6f:be:a2:d9:ad:37:49:18:e0:90:50:2d:fa: 80:ca:e0:be:a2:5c:86:1c:3f:70:6f:87:98:4c:4c: 1a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:18:71:76:F0:8F:89:94:DD:74:AC:86:91:D2:74:57:29:5A:01:76 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:40:d3:dd:8b:4e:ef:02:70:ea:3f:1a:6f:a4:1a:4c:4d:b5: fd:18:34:a4:2a:26:8b:5f:9a:a6:e6:ea:aa:93:26:f8:ec:6b: 4f:45:5c:e9:b0:59:c6:73:88:ea:ca:12:22:22:e3:bb:46:d2: bd:c8:59:3e:c6:c2:1b:f7:89:e8:fe:6b:a9:2f:ed:7d:ef:a6: af:51:52:fc:c3:89:d1:61:f7:a6:55:8a:0d:47:39:3b:0a:ac: 6f:78:d5:2d:cc:39:cf:6b:18:5c:81:ac:1a:f5:57:57:ba:61: 52:0c:d4:ba:cb:29:1a:47:56:6e:71:64:15:3f:02:1b:eb:17: 31:4d:78:b0:e6:26:0c:f5:c5:e0:ec:35:04:fd:99:2b:3a:6e: eb:3c:0f:03:57:4d:a7:51:97:77:f7:b6:f3:5e:d5:34:e5:99: 34:f0:1b:ad:41:3d:24:e9:de:fc:ed:0c:28:de:df:ed:be:53: f6:60:63:e7:34:cb:49:95:82:bf:7c:b6:f2:2c:a0:90:d5:84: 70:9a:45:be:c7:73:fd:03:f0:8c:19:f0:84:e5:1b:d2:6a:da: 72:0d:ff:9d:43:3c:53:39:2d:19:96:bb:c5:86:42:52:c9:f4: 06:9b:8e:b6:11:fd:88:13:d6:72:5c:5e:f7:29:1a:cc:9e:3a: 21:9f:91:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaDI0Niu6x/HfqO0wXflBlsGU25gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDcwMzAzNTQ0MVoX DTI1MDcwNDA3Mzc0MVowMzExMC8GA1UEAxMoQzkxODcxNzZGMDhGODk5NERENzRB Qzg2OTFEMjc0NTcyOTVBMDE3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9oiJXDNN3biaLMs48xqnij8uCvQJj02N62TvhAlR+9K5nm8sEab/bPUM5z OQfB7tTEFdBegGaROVAAvKrkivUTmRz9tjwhQFRIVvwp0UjNXinT8pXH0SFNiW42 5s19yiDLQfaDA+K6e33UbIT9AKxielOQf40ViOnawW1esjSnc+a6JSG/3y1sjF7i UCJ8T1/M744r8QyIgOm8HLkxB+7gmdUMx2rN9hYiROwAkEr7jEM3utrFQVeJHsx3 cvh3DMRp6OcXN8V5Hdx4pHg35l6zLIyLbl88BDqq0V9UCmhWZAxvvqLZrTdJGOCQ UC36gMrgvqJchhw/cG+HmExMGtUCAwEAAaOCAhswggIXMB0GA1UdDgQWBBTJGHF2 8I+JlN10rIaR0nRXKVoBdjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEz MTAwMDAvMC83MkVDMEQ4QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAw Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAAUDT3YtO7wJw6j8ab6QaTE21/Rg0pComi1+apubqqpMm+Oxr T0Vc6bBZxnOI6soSIiLju0bSvchZPsbCG/eJ6P5rqS/tfe+mr1FS/MOJ0WH3plWK DUc5Owqsb3jVLcw5z2sYXIGsGvVXV7phUgzUusspGkdWbnFkFT8CG+sXMU14sOYm DPXF4Ow1BP2ZKzpu6zwPA1dNp1GXd/e2817VNOWZNPAbrUE9JOne/O0MKN7f7b5T 9mBj5zTLSZWCv3y28iygkNWEcJpFvsdz/QPwjBnwhOUb0mracg3/nUM8UzktGZa7 xYZCUsn0BpuOthH9iBPWclxe9ykazJ46IZ+RCA== -----END CERTIFICATE-----Generated at Thu Jul 3 07:05:35 2025 by rpki-client