$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: v3uujIUBXAajRgXbiYuouEPQIh23JjBjn7R+C3hQUH4= Subject key identifier: 0F:AC:9C:C2:AC:01:9B:3C:F1:B3:B7:3F:DC:5A:A5:4D:D2:46:39:FF Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 34BF Signing time: Fri 18 Jul 2025 15:03:35 +0000 Manifest this update: Fri 18 Jul 2025 15:03:35 +0000 Manifest next update: Fri 25 Jul 2025 15:03:35 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: yDtNYLL/NMpJxIyE3esTyrBj+TfFoLXcDAfd2lFlJBw=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: rz7KWjBZEYdZagJgiTo6rpG1kH3c3NzFacklKm2JF8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Jul 18 15:03:35 2025 GMT Not After : Jul 25 15:03:35 2025 GMT Subject: CN=687a6247-7ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6d:4b:55:bc:c1:5c:15:58:80:dc:fd:7f:9c: bc:3b:4b:bc:dd:e3:5f:41:bb:82:5f:ba:27:86:cc: 4a:d0:c6:bf:84:85:6d:f6:d4:6e:7e:a7:37:77:8d: 01:3f:78:d4:d6:25:bd:5b:59:3f:4f:c7:68:e6:51: e6:90:91:64:5e:db:59:68:28:1c:fb:0d:09:3f:5d: 30:fa:a1:c6:92:4a:31:16:cd:15:ca:66:86:51:50: 48:58:e8:59:93:04:de:ec:3d:bd:ef:63:06:fc:0b: 35:cd:59:73:1c:b6:d0:28:35:ce:77:b1:cb:f6:b1: d9:ab:af:02:42:8a:e8:64:4e:5d:62:42:6e:6e:e8: d7:af:2a:e9:4b:e9:58:0b:47:97:d8:10:34:2c:26: 7f:1b:f8:44:a1:cf:11:83:89:02:15:db:32:6e:6e: 63:6e:30:a4:bd:2a:72:9e:24:a3:99:e9:a8:f2:31: f0:82:ce:80:06:c3:5b:9b:2b:ff:11:d8:a4:27:5d: 02:e6:5c:2e:64:da:1b:d8:ec:00:ef:55:c7:d3:15: a0:c8:51:7a:5f:12:81:54:12:49:35:aa:43:b8:9f: 9f:e5:ed:d1:f3:46:5f:25:fb:8f:d0:db:f8:60:86: 64:4d:45:7f:69:34:f7:2b:f8:c1:9a:56:69:3c:09: 33:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AC:9C:C2:AC:01:9B:3C:F1:B3:B7:3F:DC:5A:A5:4D:D2:46:39:FF X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:dc:8c:93:62:1b:e8:ef:6d:7c:15:1e:c4:6b:c1:e4:ed:ad: 95:93:30:94:a4:1a:a5:b0:fe:ab:9c:7c:e7:2f:7e:76:dc:ba: 4e:45:bd:00:82:97:7e:93:8b:28:e0:3d:5f:18:4d:f8:f4:d9: b5:8a:37:34:8f:22:45:06:28:91:ea:99:d1:31:c1:34:b1:6e: 68:ca:3f:43:2d:25:83:84:9f:85:83:f6:cc:39:31:f9:9f:b6: d2:22:cd:82:65:69:e9:1e:8d:4d:40:79:dc:b9:88:14:79:98: aa:6a:20:4f:db:5e:79:8b:88:58:f5:b0:2f:81:53:27:f1:8f: cc:d2:9e:26:b2:e9:57:19:5c:2b:e2:42:82:04:34:05:15:39: 32:76:52:39:21:70:79:0a:46:3c:c8:b5:3c:e0:29:56:61:17: 49:43:04:33:35:74:dd:a1:90:05:d9:c5:b9:5b:18:f8:f6:77: 9a:06:b5:89:11:16:28:92:02:61:c2:c8:5d:5b:9e:70:90:81: a2:0c:83:6a:b0:27:33:8b:b5:f3:9d:26:51:26:ad:12:5f:32: 72:28:63:ec:e4:45:89:8a:48:5b:71:f7:fd:16:9f:f9:57:20: a5:07:2d:dd:86:69:4b:11:32:fd:41:5b:6a:4d:ce:2c:f8:a8: 87:e5:64:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUwNzE4MTUwMzM1WhcNMjUwNzI1MTUwMzM1WjAYMRYwFAYD VQQDEw02ODdhNjI0Ny03Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApG1LVbzBXBVYgNz9f5y8O0u83eNfQbuCX7onhsxK0Ma/hIVt9tRufqc3d40B P3jU1iW9W1k/T8do5lHmkJFkXttZaCgc+w0JP10w+qHGkkoxFs0VymaGUVBIWOhZ kwTe7D2972MG/As1zVlzHLbQKDXOd7HL9rHZq68CQoroZE5dYkJubujXryrpS+lY C0eX2BA0LCZ/G/hEoc8Rg4kCFdsybm5jbjCkvSpyniSjmemo8jHwgs6ABsNbmyv/ EdikJ10C5lwuZNob2OwA71XH0xWgyFF6XxKBVBJJNapDuJ+f5e3R80ZfJfuP0Nv4 YIZkTUV/aTT3K/jBmlZpPAkzrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+snMKs AZs88bO3P9xapU3SRjn/MB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj3IyTYhvo7218FR7Ea8Hk7a2VkzCUpBqlsP6rnHznL3523LpORb0A gpd+k4so4D1fGE349Nm1ijc0jyJFBiiR6pnRMcE0sW5oyj9DLSWDhJ+Fg/bMOTH5 n7bSIs2CZWnpHo1NQHncuYgUeZiqaiBP2155i4hY9bAvgVMn8Y/M0p4msulXGVwr 4kKCBDQFFTkydlI5IXB5CkY8yLU84ClWYRdJQwQzNXTdoZAF2cW5Wxj49neaBrWJ ERYokgJhwshdW55wkIGiDINqsCczi7XznSZRJq0SXzJyKGPs5EWJikhbcff9Fp/5 VyClBy3dhmlLETL9QVtqTc4s+KiH5WR1 -----END CERTIFICATE-----Generated at Sun Jul 20 07:55:33 2025 by rpki-client