$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: 7RsqotyEK11G1arTh8DgWox9CLGWzRhbFXI7r+849ls= Subject key identifier: 2E:48:D1:7F:22:CF:04:BA:EE:4C:F2:C4:62:0E:CB:95:63:09:33:9A Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 34B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 34AB Signing time: Wed 18 Jun 2025 14:58:59 +0000 Manifest this update: Wed 18 Jun 2025 14:58:58 +0000 Manifest next update: Wed 25 Jun 2025 14:58:58 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: Do9c6XLZx/ZHOz0C506CIChg+K7t7l9boa7G57PKm+I=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: +Z1Ldyuz4HB0yeC9kiN8GX7/0TnuMGaHDVLqOr783Qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Jun 18 14:58:58 2025 GMT Not After : Jun 25 14:58:58 2025 GMT Subject: CN=6852d433-8c02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:42:95:c4:3a:eb:5f:b8:af:ca:94:99:c6: 25:d3:17:e9:28:80:58:0d:fd:e3:d5:aa:a0:95:2c: 62:c2:d1:eb:84:52:94:af:5e:55:94:1b:a3:61:a3: 25:19:e8:a7:81:c5:18:af:aa:8e:b6:fd:f6:3e:7a: ab:45:3d:4a:08:98:8a:95:29:45:4f:67:96:85:64: 72:c7:e7:bd:c7:1a:30:70:f5:d5:ed:db:fb:74:fe: f1:de:59:62:49:7e:81:d7:4d:a5:8f:86:96:ec:fc: dc:2a:86:5a:73:b6:12:9b:5c:53:d5:9f:3f:74:d0: 2f:b3:f1:4d:a1:df:2c:9b:49:c2:db:b1:1a:cb:af: 67:b2:77:ab:a0:b2:12:7c:a1:a0:22:c1:98:24:3a: 94:b5:71:73:ed:b8:ba:e5:b1:a3:70:b3:21:b3:1a: f9:18:b8:a0:2c:af:dc:0b:f7:5d:4f:f5:ef:fa:ef: ed:6b:31:67:84:01:a5:d2:41:60:93:48:84:bb:ba: bb:b5:86:9a:bf:4c:d2:4d:73:84:7f:22:d2:ea:9c: ac:61:c1:88:6a:cf:38:11:bc:98:90:4d:a9:a6:f5: 18:7b:28:81:3f:04:42:66:83:e5:02:9e:54:1d:5f: 23:68:5c:ac:78:aa:09:e4:a3:a4:13:d0:29:cf:63: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:48:D1:7F:22:CF:04:BA:EE:4C:F2:C4:62:0E:CB:95:63:09:33:9A X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:b9:b1:47:61:23:02:29:14:9f:80:1e:fc:0b:2b:ec:ce:7b: 5e:86:f3:71:16:98:da:2e:d0:1f:3e:7d:39:26:f7:24:3a:9d: b3:b3:f0:6f:b7:16:38:8a:50:39:de:a2:d8:e5:83:a5:62:25: 27:9a:cb:95:cb:78:bb:a1:f4:b1:21:5a:eb:41:48:eb:89:7e: ae:a2:a1:7c:ec:59:9f:bc:ba:31:dd:26:22:f5:14:1a:8f:d9: 5b:0e:66:93:1e:ff:83:2a:74:ff:85:2e:a2:a0:64:cf:3f:f3: 5e:9c:e2:7c:66:a5:bf:01:7e:1f:f2:55:ed:1e:5a:a3:f3:94: a6:99:d4:3e:03:80:af:02:0a:f8:2a:73:10:87:31:e1:e2:3b: 0c:8c:52:d0:93:52:68:f9:a4:18:64:77:6b:41:34:9e:8a:09: ba:f2:03:52:b2:78:7e:52:f6:48:f3:57:47:b1:02:f9:c1:0c: 37:61:30:4b:b9:d8:3b:17:2b:bc:7c:5f:ce:c8:89:47:32:c0: 0e:20:55:1f:26:79:17:2a:fd:83:0f:4d:19:1c:69:45:37:85: 44:67:c1:fc:fa:3a:79:9e:c6:c4:84:b3:41:be:3b:85:b9:33: e2:78:12:9d:eb:e9:a9:19:52:e6:17:00:a3:3e:40:df:e3:b8: 14:52:78:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUwNjE4MTQ1ODU4WhcNMjUwNjI1MTQ1ODU4WjAYMRYwFAYD VQQDEw02ODUyZDQzMy04YzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/JClcQ661+4r8qUmcYl0xfpKIBYDf3j1aqglSxiwtHrhFKUr15VlBujYaMl GeingcUYr6qOtv32PnqrRT1KCJiKlSlFT2eWhWRyx+e9xxowcPXV7dv7dP7x3lli SX6B102lj4aW7PzcKoZac7YSm1xT1Z8/dNAvs/FNod8sm0nC27Eay69nsneroLIS fKGgIsGYJDqUtXFz7bi65bGjcLMhsxr5GLigLK/cC/ddT/Xv+u/tazFnhAGl0kFg k0iEu7q7tYaav0zSTXOEfyLS6pysYcGIas84EbyYkE2ppvUYeyiBPwRCZoPlAp5U HV8jaFyseKoJ5KOkE9Apz2MpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5I0X8i zwS67kzyxGIOy5VjCTOaMB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaubFHYSMCKRSfgB78CyvszntehvNxFpjaLtAfPn05JvckOp2zs/Bv txY4ilA53qLY5YOlYiUnmsuVy3i7ofSxIVrrQUjriX6uoqF87FmfvLox3SYi9RQa j9lbDmaTHv+DKnT/hS6ioGTPP/NenOJ8ZqW/AX4f8lXtHlqj85SmmdQ+A4CvAgr4 KnMQhzHh4jsMjFLQk1Jo+aQYZHdrQTSeigm68gNSsnh+UvZI81dHsQL5wQw3YTBL udg7Fyu8fF/OyIlHMsAOIFUfJnkXKv2DD00ZHGlFN4VEZ8H8+jp5nsbEhLNBvjuF uTPieBKd6+mpGVLmFwCjPkDf47gUUnjG -----END CERTIFICATE-----Generated at Fri Jun 20 01:53:55 2025 by rpki-client