$ rpki-client -vvf rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft File: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft (raw, json) Hash identifier: PogCqU8Urk7Am0EU4h87S3UzpzFPi8A9z2vqAIWCskA= Subject key identifier: 42:D3:B0:F9:9C:EB:16:A6:9B:64:72:F9:7D:1F:60:42:8A:D0:57:90 Authority key identifier: EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 Certificate issuer: /CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Certificate serial: 0E53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft Manifest number: 0E4B Signing time: Fri 30 May 2025 17:55:09 +0000 Manifest this update: Fri 30 May 2025 17:55:08 +0000 Manifest next update: Fri 06 Jun 2025 17:55:08 +0000 Files and hashes: 1: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl (hash: gW+vi+3wzrDNyQgxO8qyQC9HAP1dmMform/1YF/PaR8=) 2: 0DFAD3529E1611E98059B049C4F9AE02.roa (hash: xrn7kqtWfpKDJ8ptvmKz6itXOdAPKg554aAbP2n2DQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3667 (0xe53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FEA1, serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Validity Not Before: May 30 17:55:08 2025 GMT Not After : Jun 6 17:55:08 2025 GMT Subject: CN=6839f0fc-4cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:47:b4:d2:73:42:a7:fb:f7:c9:c1:a7:08:2f: 36:9a:a9:15:82:f7:45:7c:09:3e:53:dd:65:ef:4b: 1b:9e:f3:a1:a2:a2:e0:60:bd:32:c5:8a:00:c9:63: 11:52:23:60:aa:71:f0:11:4f:e9:89:bb:33:99:ec: d6:77:bc:d9:cf:14:90:46:10:64:fe:e4:98:5d:87: 7b:de:aa:f2:19:9a:76:7b:6a:df:95:ac:89:fd:dd: 23:e8:f6:2f:00:a7:e6:ee:fc:31:c2:34:7f:b6:01: 71:96:39:04:a7:48:40:cc:57:18:8e:34:47:7d:3a: 9a:a6:12:71:22:d4:c7:f6:85:cc:2e:f8:3e:e6:4e: 5d:56:bc:9b:2c:c3:55:59:90:29:7b:a6:f6:30:62: 47:25:c5:16:b8:45:6c:d5:26:93:cf:25:2c:c4:a3: 11:95:33:2e:6d:f4:21:18:28:02:e6:ca:2b:ca:9e: 0b:0d:ef:9b:17:09:7b:53:f0:6c:b9:4e:d5:02:c1: 3c:6a:2f:72:9d:90:64:82:7a:4a:a8:44:a3:4a:8d: dd:a9:91:d4:f2:79:72:69:9c:d5:27:49:f9:35:25: 9e:6a:07:7c:4b:52:98:a2:52:2c:36:8c:01:04:56: df:31:af:ac:6b:b9:14:f5:89:04:0c:37:30:4c:d6: 3e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D3:B0:F9:9C:EB:16:A6:9B:64:72:F9:7D:1F:60:42:8A:D0:57:90 X509v3 Authority Key Identifier: keyid:EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:87:f5:7c:6d:5f:e6:b9:64:84:ff:18:3c:41:ac:89:cf:ac: da:2e:72:68:ac:a9:65:48:5f:d5:d7:12:a0:ee:a0:a4:1a:e8: e5:4b:32:2f:35:59:73:8e:9d:b2:0d:03:e0:25:31:27:7d:dd: 4a:f9:a4:65:30:a3:4a:c7:c1:e0:69:47:03:ee:4f:6c:6d:a9: 71:50:44:b8:23:fa:e7:25:f8:ad:dc:49:c8:49:f4:1f:a3:49: 53:94:90:38:27:26:46:3f:52:c0:e6:99:79:86:3f:aa:e5:0f: f3:b6:ab:93:5c:df:20:1a:34:41:7e:68:a1:77:de:5b:15:5d: 35:1c:21:bb:8b:cb:cd:6f:b4:60:d9:42:00:fc:f1:e5:5f:2b: 62:e1:cd:7a:90:c0:bc:f4:3a:4b:d3:01:e3:eb:1f:9f:ad:db: bb:b4:a4:4b:ec:50:47:26:b9:25:f4:8b:18:bd:fa:3f:99:5e: e6:12:ba:d1:1c:7e:11:2e:38:28:c3:35:b9:02:d8:9a:7a:12: 70:a5:8e:14:00:2b:28:ee:0b:6c:f3:a4:87:76:ab:a1:d4:2e: c4:27:4e:1c:d0:1d:1f:af:fd:7b:ec:24:be:0c:40:15:5f:b0: 2c:fe:03:b2:27:41:62:f3:47:1e:73:12:90:59:24:b8:7f:0a: 5e:13:37:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFQTExMTAvBgNVBAUTKEVGNkMxOTRCQjI4OTREMzNFNkRFMDY0MjIzMkQ5NENF NEU5RUYxOTQwHhcNMjUwNTMwMTc1NTA4WhcNMjUwNjA2MTc1NTA4WjAYMRYwFAYD VQQDEw02ODM5ZjBmYy00Y2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0e00nNCp/v3ycGnCC82mqkVgvdFfAk+U91l70sbnvOhoqLgYL0yxYoAyWMR UiNgqnHwEU/pibszmezWd7zZzxSQRhBk/uSYXYd73qryGZp2e2rflayJ/d0j6PYv AKfm7vwxwjR/tgFxljkEp0hAzFcYjjRHfTqaphJxItTH9oXMLvg+5k5dVrybLMNV WZApe6b2MGJHJcUWuEVs1SaTzyUsxKMRlTMubfQhGCgC5soryp4LDe+bFwl7U/Bs uU7VAsE8ai9ynZBkgnpKqESjSo3dqZHU8nlyaZzVJ0n5NSWeagd8S1KYolIsNowB BFbfMa+sa7kU9YkEDDcwTNY+RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELTsPmc 6xamm2Ry+X0fYEKK0FeQMB8GA1UdIwQYMBaAFO9sGUuyiU0z5t4GQiMtlM5OnvGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkVBMS9CRkNCODVFQzlF MTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRUUG0zZ1pDSXkyVXprNmU4 WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyd1pTN0tKVFRQbTNnWkNJeTJVems2ZThaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkVBMS9CRkNCODVFQzlFMTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRU UG0zZ1pDSXkyVXprNmU4WlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUh/V8bV/muWSE/xg8QayJz6zaLnJorKllSF/V1xKg7qCkGujlSzIv NVlzjp2yDQPgJTEnfd1K+aRlMKNKx8HgaUcD7k9sbalxUES4I/rnJfit3EnISfQf o0lTlJA4JyZGP1LA5pl5hj+q5Q/ztquTXN8gGjRBfmihd95bFV01HCG7i8vNb7Rg 2UIA/PHlXyti4c16kMC89DpL0wHj6x+frdu7tKRL7FBHJrkl9IsYvfo/mV7mErrR HH4RLjgowzW5AtiaehJwpY4UACso7gts86SHdquh1C7EJ04c0B0fr/177CS+DEAV X7As/gOyJ0Fi80cecxKQWSS4fwpeEzci -----END CERTIFICATE-----Generated at Sat May 31 16:39:54 2025 by rpki-client