$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft File: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft (raw, json) Hash identifier: M4JgWPQs2t9AGnq7eVq8uWLMRJHP/ZKZiIOhaNFKdc8= Subject key identifier: 67:32:2E:E3:19:11:D8:7F:29:7C:A0:7E:E6:AB:97:82:5D:EC:3F:F6 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 4883D16A27CC0016021087839F3B951908E5C93C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft Manifest number: 0473 Signing time: Sat 28 Mar 2026 06:12:52 +0000 Manifest this update: Sat 28 Mar 2026 06:07:52 +0000 Manifest next update: Sun 29 Mar 2026 09:37:52 +0000 Files and hashes: 1: 3130332e3233382e3133312e302f32342d3234203d3e20323134363639.roa (hash: VZ/w51p0XzsZ2KBo9k7nosvrYyc5C/8zhxaZuBRhqSI=) 2: 3130332e3233382e3132392e302f32342d3234203d3e20343031343433.roa (hash: rpJIqb75YDR5gHdSyUBQhuto0oiBHBiqa+gpsVl1Cpo=) 3: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (hash: XW5ROJXsHtfkngdlXEUs0YnhnPoR10fb35FCOeUkreg=) 4: 3130332e3233382e3132382e302f32342d3234203d3e20313534343038.roa (hash: /3IEW/L0xD5c+gjtCpGu3f4OnNilISvSgo/f0RfHoCg=) 5: 34332e3235352e38312e302f32342d3234203d3e203436353539.roa (hash: //UuXn9WtkO4gR2SmefousyCafMw89f9w0hXvN+V6kA=) 6: 3130332e3233382e3133312e302f32342d3234203d3e20333935303437.roa (hash: BOcBhnnvYV178kOTT3dELkNmbvpnN/z4847g0PI0+QA=) 7: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl (hash: xHq9SAXugZAvnlwSwyjrO1qI3XT7XVh3lWkGxLc5+rQ=) 8: 3130332e3233382e3133302e302f32342d3234203d3e203336303032.roa (hash: UPtxGgoTJeMeU4gNLJxLVxED7CamvppwiFq3NJXyf2E=) 9: 34332e3235352e38322e302f32342d3234203d3e20383334.roa (hash: icPb5M6Y/CPwkJET9vdKSzs0dBOYlGKaymEwUa2ujW8=) 10: 3130332e3233382e3132382e302f32342d3234203d3e20313338333634.roa (hash: jaYCwKUfN1ahphjmuCip8Xd6KyVekTXlh6eiv1lr6wE=) 11: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (hash: bxrme3yCQy0K1fVaXgEiZ2u7es4gexTuZheK4q43s/0=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 09:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:83:d1:6a:27:cc:00:16:02:10:87:83:9f:3b:95:19:08:e5:c9:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Mar 28 06:07:52 2026 GMT Not After : Mar 29 09:37:52 2026 GMT Subject: CN=67322EE31911D87F297CA07EE6AB97825DEC3FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:66:f3:76:f7:f0:c7:bf:67:07:5d:6b:ee: 38:82:a3:ae:47:9c:7d:2a:14:88:0c:fb:69:32:27: 6a:c6:7b:50:f7:56:91:02:19:b9:dc:7e:39:0d:fc: f9:73:9b:f6:3f:cc:33:13:d1:5c:a6:98:b8:7b:f3: 34:17:4b:55:56:a6:56:4a:7e:3a:55:c5:be:d8:b5: 26:3b:a4:3a:88:e1:62:24:66:85:27:94:62:61:12: 04:25:4c:cb:98:83:ed:20:d5:33:b5:16:87:b1:fa: c9:b7:b7:82:b1:2b:24:d6:61:b3:a7:b5:ee:2c:b4: 2a:8d:59:bf:d2:5c:3a:ce:20:25:a0:70:cb:5c:22: f3:c7:32:ad:0e:28:ac:88:b6:55:31:12:6a:9d:b5: 33:ec:62:c3:f8:a3:b0:19:23:65:3c:39:8c:4c:24: 63:7d:82:1e:0a:8f:7b:23:08:55:36:c3:2d:f4:16: 56:59:99:14:37:dc:c1:73:ce:2b:a2:90:a2:27:8e: d3:98:06:4a:64:29:28:85:47:a2:7e:e5:6c:1b:11: ca:fa:96:f0:ea:97:e3:49:d9:f4:6b:bb:2d:21:33: cf:33:5d:ea:0a:6d:eb:89:cb:ca:1f:a1:4e:e4:30: 9c:f6:af:d9:13:c9:95:59:12:f9:fc:b1:34:78:42: 29:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:32:2E:E3:19:11:D8:7F:29:7C:A0:7E:E6:AB:97:82:5D:EC:3F:F6 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:9f:05:b2:6a:a5:49:c6:da:b8:45:7d:33:79:60:e8:4a:e1: 4b:b1:2a:29:d8:95:e0:1f:ae:27:b4:94:84:61:28:5f:a6:e4: 6a:27:90:d3:ee:e6:de:27:c4:3f:1d:80:11:2b:46:2c:cf:68: 04:71:cf:4e:16:5b:0d:ba:cb:65:9a:44:a4:6b:77:7e:87:4c: 95:f3:9c:26:eb:92:6c:c5:9b:cb:fe:c9:59:ca:5d:d2:45:b5: 0d:77:8a:c5:b0:dc:8f:51:ce:01:a0:37:4d:a3:ff:93:42:da: db:3b:fd:46:e2:10:64:d5:0c:b9:7b:02:e0:7c:1a:22:a4:ce: 9a:c1:98:cf:87:bf:2d:76:6b:fa:c6:03:47:d1:26:51:44:ee: 38:37:e9:be:8d:21:db:24:3c:be:7b:fa:2c:0e:f1:5d:3f:8a: b9:7d:7f:f0:95:21:8a:ce:7d:d3:67:df:60:3e:6d:e2:f7:82: f8:63:0c:7b:eb:d2:2c:fc:f7:61:8c:dc:28:a6:92:12:a6:36: fd:2e:bd:d0:29:c4:5e:93:9e:70:52:83:9a:b5:30:c3:5d:5b: d7:13:11:96:7b:36:fd:c2:b0:3d:62:26:57:f8:f1:9a:5d:39: 7e:b0:5d:f4:cb:7c:ce:2e:e4:ed:14:0b:93:d4:46:39:69:1b: ad:a1:33:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSIPRaifMABYCEIeDnzuVGQjlyTwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI2MDMyODA2MDc1MloX DTI2MDMyOTA5Mzc1MlowMzExMC8GA1UEAxMoNjczMjJFRTMxOTExRDg3RjI5N0NB MDdFRTZBQjk3ODI1REVDM0ZGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAsZvN29/DHv2cHXWvuOIKjrkecfSoUiAz7aTInasZ7UPdWkQIZudx+OQ38 +XOb9j/MMxPRXKaYuHvzNBdLVVamVkp+OlXFvti1JjukOojhYiRmhSeUYmESBCVM y5iD7SDVM7UWh7H6ybe3grErJNZhs6e17iy0Ko1Zv9JcOs4gJaBwy1wi88cyrQ4o rIi2VTESap21M+xiw/ijsBkjZTw5jEwkY32CHgqPeyMIVTbDLfQWVlmZFDfcwXPO K6KQoieO05gGSmQpKIVHon7lbBsRyvqW8OqX40nZ9Gu7LSEzzzNd6gpt64nLyh+h TuQwnPav2RPJlVkS+fyxNHhCKXcCAwEAAaOCAhswggIXMB0GA1UdDgQWBBRnMi7j GRHYfyl8oH7mq5eCXew/9jAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEz MTAwMDAvMC83MkVDMEQ4QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAw Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAEJ8FsmqlScbauEV9M3lg6ErhS7EqKdiV4B+uJ7SUhGEoX6bk aieQ0+7m3ifEPx2AEStGLM9oBHHPThZbDbrLZZpEpGt3fodMlfOcJuuSbMWby/7J Wcpd0kW1DXeKxbDcj1HOAaA3TaP/k0La2zv9RuIQZNUMuXsC4HwaIqTOmsGYz4e/ LXZr+sYDR9EmUUTuODfpvo0h2yQ8vnv6LA7xXT+KuX1/8JUhis5902ffYD5t4veC +GMMe+vSLPz3YYzcKKaSEqY2/S690CnEXpOecFKDmrUww11b1xMRlns2/cKwPWIm V/jxml05frBd9Mt8zi7k7RQLk9RGOWkbraEzYw== -----END CERTIFICATE-----Generated at Sat Mar 28 10:19:38 2026 by rpki-client