$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft File: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft (raw, json) Hash identifier: PpdC8nLIoBCRzQw4TzvIGFycrx/WMlqEzzBkcfNdjkY= Subject key identifier: 5D:E8:EF:A1:27:DD:DE:A8:C3:93:1B:DF:4C:C1:F1:2B:65:7D:46:72 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 1B7BB6D0DD104CD1CAAFBED9AD2BA46BB7F31C1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft Manifest number: 02A8 Signing time: Mon 12 May 2025 03:10:02 +0000 Manifest this update: Mon 12 May 2025 03:05:02 +0000 Manifest next update: Tue 13 May 2025 05:00:02 +0000 Files and hashes: 1: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (hash: S8rFfs7IoEg3XYYnsyLOBvR6RACIA3juzHhODPn7ChQ=) 2: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl (hash: x22VCg1ozdLrCQnvZdpUxXSDmL9/In7JNrgTYkXx6MM=) 3: 34332e3235352e38312e302f32342d3234203d3e20313431313538.roa (hash: SQWzDg71lRig1vikM6oroRmKP7jytIrlrfxg8Lw3ga4=) 4: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (hash: 34ZLdvJWRlaz+jTDs3YF3eEhOoQyE7fhuoEG/fJaNVY=) 5: 3130332e3233382e3133312e302f32342d3234203d3e20313531313036.roa (hash: zZ9adMjyAK6V+yaM2Aa/8/uAbDXUgk34Q/LvbI/Y3H4=) 6: 3130332e3233382e3132392e302f32342d3234203d3e20313938313030.roa (hash: befyV0hRkZPjsj2HiXn8OpPP07iuTlgDyNJrlhl8VkA=) 7: 3130332e3233382e3133302e302f32342d3234203d3e20313531313036.roa (hash: jHJxFEmDKUe2EPjbWcOLzV9LPmr1X1VjgRAMMGlG0Mw=) 8: 34332e3235352e38302e302f32342d3234203d3e20323134373636.roa (hash: 5hWADdZsX05Xm71wk93nvrisrc0F3dwJlLqjnpXhvtY=) 9: 3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa (hash: E4ONBceQGtTtMJwjbxI/zmDC8SS3yBbRlcMhg4vXlLU=) 10: 34332e3235352e38322e302f32342d3234203d3e20393834.roa (hash: YRgjmmE+nVi/PAXhqb3JUaahbh35VPMhIEe6x6m98Ho=) 11: 3130332e3233382e3132382e302f32342d3234203d3e20313531313036.roa (hash: 3hCx1gk12xhMekKDCa3KegcT7N4B/xxsoqqdlY9CXYI=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 05:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7b:b6:d0:dd:10:4c:d1:ca:af:be:d9:ad:2b:a4:6b:b7:f3:1c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: May 12 03:05:02 2025 GMT Not After : May 13 05:00:02 2025 GMT Subject: CN=5DE8EFA127DDDEA8C3931BDF4CC1F12B657D4672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:d4:e0:a7:4e:69:e7:78:af:dd:47:d8:cd: bd:03:35:f0:08:b0:da:94:0e:8c:2d:0b:34:bc:2f: de:45:1e:00:24:bc:71:c5:33:29:7f:c8:8d:a1:59: 88:d9:01:5d:29:34:db:8b:ea:05:75:2f:18:22:10: 99:6b:23:a2:af:c3:1a:32:29:1e:93:46:94:3e:43: ad:29:ef:11:43:98:68:c3:2f:f0:fe:01:2d:22:57: 79:43:1f:c8:0e:d5:cc:4c:95:1a:84:dd:57:7d:0d: c3:71:12:eb:d6:fc:76:44:e6:0b:63:8f:d2:9a:4b: 23:6c:ef:af:b9:bc:c5:e2:66:4b:4e:70:1c:28:46: 9d:a8:de:1c:99:ea:80:cc:b9:1a:c9:80:ea:b1:ba: ec:46:b0:54:c7:1f:ca:50:9c:4f:77:03:33:04:18: 35:50:6c:4d:aa:67:c7:5f:ba:8c:92:aa:d7:4b:a8: 1b:1f:b1:18:d8:d8:d1:96:b0:fb:43:fc:7f:71:ce: 38:49:ea:01:b2:f4:e6:75:e1:7a:cc:00:40:2d:63: 57:cb:30:95:31:c8:cf:a9:ec:18:e1:fc:cc:84:70: 0b:bb:45:94:23:3b:17:51:81:36:a4:ae:2a:26:8f: ce:05:85:4b:1e:67:86:38:0a:ca:bf:65:f0:b1:8f: 04:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E8:EF:A1:27:DD:DE:A8:C3:93:1B:DF:4C:C1:F1:2B:65:7D:46:72 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:59:d4:47:cc:13:a4:a6:a1:30:13:4d:be:47:14:3a:2d:2d: 58:b3:35:18:67:3f:d5:a3:ec:d9:b6:0e:1b:61:d4:b8:47:27: 25:53:b2:12:7c:73:d7:29:10:25:ef:7c:90:3f:ec:5a:98:22: b5:51:6d:ca:d7:d1:d5:a8:91:31:41:1d:9d:fc:c1:12:01:d5: 0d:d2:e8:11:cc:85:a5:bd:7b:1c:cb:fd:98:12:9c:b3:32:25: 01:d5:ee:83:c2:52:8b:de:3d:48:74:6e:10:4d:55:ad:7a:60: 6f:22:76:0d:98:29:bc:e4:78:c1:b4:48:15:b9:0b:59:9c:82: db:e8:79:f8:85:95:3e:32:57:2e:95:cc:e7:b3:88:8a:87:fb: 72:04:30:32:c1:4f:ad:ca:e9:ac:ff:07:ec:4d:2d:ff:96:d1: 40:e1:22:44:c7:db:8a:ac:e5:14:6f:0b:bf:1f:54:68:e9:e2: 7e:45:29:c3:0f:bb:c7:f9:47:df:fc:3b:70:dc:14:6d:6d:f6: a6:36:d7:66:ac:d9:53:33:9b:92:1d:d9:ae:68:61:26:99:c1: 25:4a:46:19:26:1a:47:a2:16:90:b4:50:36:06:ac:48:83:e0: 8c:91:c3:7f:65:e2:15:b2:f8:6b:27:ad:1f:00:05:e2:3d:db: a0:4a:60:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG3u20N0QTNHKr77ZrSuka7fzHBowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDUxMjAzMDUwMloX DTI1MDUxMzA1MDAwMlowMzExMC8GA1UEAxMoNURFOEVGQTEyN0REREVBOEMzOTMx QkRGNENDMUYxMkI2NTdENDY3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVj1OCnTmnneK/dR9jNvQM18Aiw2pQOjC0LNLwv3kUeACS8ccUzKX/IjaFZ iNkBXSk024vqBXUvGCIQmWsjoq/DGjIpHpNGlD5DrSnvEUOYaMMv8P4BLSJXeUMf yA7VzEyVGoTdV30Nw3ES69b8dkTmC2OP0ppLI2zvr7m8xeJmS05wHChGnajeHJnq gMy5GsmA6rG67EawVMcfylCcT3cDMwQYNVBsTapnx1+6jJKq10uoGx+xGNjY0Zaw +0P8f3HOOEnqAbL05nXheswAQC1jV8swlTHIz6nsGOH8zIRwC7tFlCM7F1GBNqSu KiaPzgWFSx5nhjgKyr9l8LGPBF0CAwEAAaOCAhswggIXMB0GA1UdDgQWBBRd6O+h J93eqMOTG99MwfErZX1GcjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEz MTAwMDAvMC83MkVDMEQ4QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAw Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAX1nUR8wTpKahMBNNvkcUOi0tWLM1GGc/1aPs2bYOG2HUuEcn JVOyEnxz1ykQJe98kD/sWpgitVFtytfR1aiRMUEdnfzBEgHVDdLoEcyFpb17HMv9 mBKcszIlAdXug8JSi949SHRuEE1VrXpgbyJ2DZgpvOR4wbRIFbkLWZyC2+h5+IWV PjJXLpXM57OIiof7cgQwMsFPrcrprP8H7E0t/5bRQOEiRMfbiqzlFG8Lvx9UaOni fkUpww+7x/lH3/w7cNwUbW32pjbXZqzZUzObkh3ZrmhhJpnBJUpGGSYaR6IWkLRQ NgasSIPgjJHDf2XiFbL4ayetHwAF4j3boEpgOw== -----END CERTIFICATE-----Generated at Mon May 12 19:47:56 2025 by rpki-client