$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft File: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft (raw, json) Hash identifier: 9xqvMxtPueUbqtKwdJHFnbaUAdczCPORhbFjESfBwS4= Subject key identifier: 21:47:68:30:65:AF:36:30:31:60:69:96:FD:5E:8C:49:30:78:DF:CD Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 036A744D2D4AF77C1CDEF5A1266EC9981974993B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft Manifest number: 033D Signing time: Fri 22 Aug 2025 18:00:02 +0000 Manifest this update: Fri 22 Aug 2025 17:55:02 +0000 Manifest next update: Sat 23 Aug 2025 18:37:02 +0000 Files and hashes: 1: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl (hash: 4aWIscdQI2wqB/kS3o0dggvXZ72oNxrMOpItAOFbhOM=) 2: 34332e3235352e38312e302f32342d3234203d3e20313431313538.roa (hash: SQWzDg71lRig1vikM6oroRmKP7jytIrlrfxg8Lw3ga4=) 3: 3130332e3233382e3132382e302f32342d3234203d3e20313338303737.roa (hash: 5sZFV0hCMUC2n4iWJ3AfJgpDZ6n5Bs/7eOe7YiQjRcQ=) 4: 34332e3235352e38322e302f32342d3234203d3e20393834.roa (hash: YRgjmmE+nVi/PAXhqb3JUaahbh35VPMhIEe6x6m98Ho=) 5: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (hash: 34ZLdvJWRlaz+jTDs3YF3eEhOoQyE7fhuoEG/fJaNVY=) 6: 3130332e3233382e3132392e302f32342d3234203d3e20313938313030.roa (hash: befyV0hRkZPjsj2HiXn8OpPP07iuTlgDyNJrlhl8VkA=) 7: 3130332e3233382e3133302e302f32342d3234203d3e20323133343034.roa (hash: 0t7ldh54zvdsSveMZy06MhLdyjIZtHukNx1jlJgyUSE=) 8: 3130332e3233382e3133312e302f32342d3234203d3e20383334.roa (hash: uR6J+wDhHW6iJWcjlS3D/NgdsRX/KCHSv/gczr3BqWU=) 9: 3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa (hash: E4ONBceQGtTtMJwjbxI/zmDC8SS3yBbRlcMhg4vXlLU=) 10: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (hash: S8rFfs7IoEg3XYYnsyLOBvR6RACIA3juzHhODPn7ChQ=) 11: 34332e3235352e38302e302f32342d3234203d3e20323134373636.roa (hash: 5hWADdZsX05Xm71wk93nvrisrc0F3dwJlLqjnpXhvtY=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6a:74:4d:2d:4a:f7:7c:1c:de:f5:a1:26:6e:c9:98:19:74:99:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Aug 22 17:55:02 2025 GMT Not After : Aug 23 18:37:02 2025 GMT Subject: CN=2147683065AF363031606996FD5E8C493078DFCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:36:b0:45:53:94:e3:f5:5f:65:4c:9d:53: 54:04:d8:0e:e5:6e:af:3d:30:f0:ce:ea:c2:aa:49: 22:95:4e:e1:00:3c:5b:55:99:12:1e:a9:8d:02:34: 5f:3b:7b:cc:c8:95:64:f9:ae:05:0d:de:c0:e9:65: 58:1d:51:df:b3:10:b1:7f:a8:9d:6c:ef:44:c1:29: d2:c3:dc:f2:4b:b0:c5:f0:e1:bb:96:79:68:7f:a6: ec:86:a2:59:ba:42:ba:c5:f0:89:fd:b7:01:de:a9: 1c:06:ff:e7:a4:63:9b:8e:ce:74:1b:dd:19:34:a4: 35:0a:31:a9:db:d8:e7:a8:ac:82:68:5d:67:7b:ed: a2:2f:4e:b8:4f:dc:c4:de:13:c8:7a:d7:33:db:3b: 3c:1a:e7:d8:8b:16:79:9b:15:dc:28:a7:d5:be:70: bc:c8:df:4b:53:bf:72:fc:68:9f:d5:b0:8a:fd:95: f5:37:d0:d2:61:84:1d:a7:a9:9a:e0:b0:01:10:3b: 85:c8:06:d3:5c:2d:99:7a:76:0a:3a:df:33:b8:80: 9d:7d:24:57:22:ab:7c:3d:31:22:ea:d4:cd:8e:49: e3:2a:30:23:d4:42:3a:d3:c0:c9:ac:ba:a0:13:dc: 45:90:96:67:0a:8b:9e:b3:cb:56:c6:20:e0:34:28: 32:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:47:68:30:65:AF:36:30:31:60:69:96:FD:5E:8C:49:30:78:DF:CD X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ac:51:1c:16:ba:bf:c0:04:8a:1d:95:d7:0f:82:be:77:fb: 27:1a:13:be:40:0d:de:f0:b0:c0:b4:dc:1a:2b:40:20:03:89: 67:67:96:1e:ef:f5:08:02:38:16:36:45:11:ac:98:dd:14:68: 64:1f:0a:f9:89:9f:87:e5:f0:78:3a:89:53:d3:19:ea:bb:d4: 54:de:b4:36:7c:4b:9e:65:56:2b:63:be:09:6c:71:a4:91:bf: c8:17:87:4f:55:28:1a:84:a4:4c:94:76:8e:90:57:ee:8b:dd: 3b:c6:d4:32:ff:47:c9:4f:2d:5d:60:0e:34:f6:ff:b4:2a:99: 93:82:74:c9:a7:a5:11:e1:95:29:df:a3:ef:5b:4b:ef:3e:08: 14:3f:1a:79:13:e3:46:f8:5c:ce:99:84:eb:6f:46:f9:39:f4: d5:6a:e9:fd:58:e0:6b:0a:78:f1:75:10:a3:dd:0c:99:b0:d3: 69:70:1a:ce:5a:1d:79:d6:5d:04:2b:3d:34:52:45:a6:17:bd: ca:f3:79:76:af:74:03:ee:e7:1c:9e:32:f1:e5:8a:79:ed:71: 28:ab:a3:d4:60:76:6c:7f:95:e5:4b:8e:23:80:98:71:20:88: 57:12:7d:32:74:c0:4c:82:05:8f:d0:0d:6f:5b:8d:1c:0d:ba: 00:9c:56:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA2p0TS1K93wc3vWhJm7JmBl0mTswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDgyMjE3NTUwMloX DTI1MDgyMzE4MzcwMlowMzExMC8GA1UEAxMoMjE0NzY4MzA2NUFGMzYzMDMxNjA2 OTk2RkQ1RThDNDkzMDc4REZDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu8NrBFU5Tj9V9lTJ1TVATYDuVurz0w8M7qwqpJIpVO4QA8W1WZEh6pjQI0 Xzt7zMiVZPmuBQ3ewOllWB1R37MQsX+onWzvRMEp0sPc8kuwxfDhu5Z5aH+m7Iai WbpCusXwif23Ad6pHAb/56Rjm47OdBvdGTSkNQoxqdvY56isgmhdZ3vtoi9OuE/c xN4TyHrXM9s7PBrn2IsWeZsV3Cin1b5wvMjfS1O/cvxon9Wwiv2V9TfQ0mGEHaep muCwARA7hcgG01wtmXp2CjrfM7iAnX0kVyKrfD0xIurUzY5J4yowI9RCOtPAyay6 oBPcRZCWZwqLnrPLVsYg4DQoMg8CAwEAAaOCAhswggIXMB0GA1UdDgQWBBQhR2gw Za82MDFgaZb9XoxJMHjfzTAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEz MTAwMDAvMC83MkVDMEQ4QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAw Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAm6xRHBa6v8AEih2V1w+Cvnf7JxoTvkAN3vCwwLTcGitAIAOJ Z2eWHu/1CAI4FjZFEayY3RRoZB8K+Ymfh+XweDqJU9MZ6rvUVN60NnxLnmVWK2O+ CWxxpJG/yBeHT1UoGoSkTJR2jpBX7ovdO8bUMv9HyU8tXWAONPb/tCqZk4J0yael EeGVKd+j71tL7z4IFD8aeRPjRvhczpmE629G+Tn01Wrp/Vjgawp48XUQo90MmbDT aXAazlodedZdBCs9NFJFphe9yvN5dq90A+7nHJ4y8eWKee1xKKuj1GB2bH+V5UuO I4CYcSCIVxJ9MnTATIIFj9ANb1uNHA26AJxWeg== -----END CERTIFICATE-----Generated at Sat Aug 23 12:40:43 2025 by rpki-client