$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: c4NkQaP/eXGHpR/LyqM27tIgfHUPTM2pcvj+N4EBV5Y= Subject key identifier: DA:AD:92:D3:2F:4D:A7:2C:F9:9F:81:BC:68:4C:E7:15:D8:8E:77:3D Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 34CB Signing time: Sun 10 Aug 2025 14:59:47 +0000 Manifest this update: Sun 10 Aug 2025 14:59:46 +0000 Manifest next update: Sun 17 Aug 2025 14:59:46 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: 4T/1DYPdJIJ47M4HDg5ofO/1eoZVbypE2zTrA0FEumU=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: rz7KWjBZEYdZagJgiTo6rpG1kH3c3NzFacklKm2JF8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Aug 10 14:59:46 2025 GMT Not After : Aug 17 14:59:46 2025 GMT Subject: CN=6898b3e3-2be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c9:86:6f:92:15:ef:51:0e:16:be:35:03:1f: f4:2e:4e:7e:9b:eb:df:36:9e:93:d5:4f:8f:27:7c: 1e:72:b6:62:8d:fa:22:52:99:15:36:a1:81:d2:af: 9d:93:31:ad:d0:c4:cd:af:6e:5d:e4:cc:3c:1e:73: a3:34:c1:d7:e7:54:66:6a:4c:c9:07:e8:fb:c1:b3: 84:d4:a7:6e:13:cc:ee:8c:f6:f3:19:62:b8:6f:8f: ea:ff:1c:29:64:65:b3:73:4a:67:4a:f7:05:d1:18: f8:40:1f:cd:3b:3f:51:ec:7a:c6:aa:f1:e8:33:cf: 02:2e:38:6d:bb:a9:ed:7b:5b:87:3d:79:80:be:b5: 07:5c:4c:60:cd:ad:8f:06:56:eb:29:b1:69:07:59: 62:5c:16:0c:60:6e:15:da:c8:a3:8e:d1:8b:ed:4e: 55:a6:76:bb:49:3c:07:6d:f9:ed:a7:33:38:8a:df: 0b:47:0e:02:9e:9a:93:8c:4d:7c:98:4d:30:6d:4d: 63:2e:2b:2e:4b:e3:39:04:13:78:e6:a9:2b:b4:b4: 16:b2:cc:bd:18:3a:63:bd:fd:3f:0d:ff:7a:bc:09: 1f:e6:8f:ef:7c:27:33:39:b4:91:ec:c4:39:f2:32: 5b:2e:a9:15:fa:13:6a:6f:f4:03:68:4c:57:82:1a: c9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AD:92:D3:2F:4D:A7:2C:F9:9F:81:BC:68:4C:E7:15:D8:8E:77:3D X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:8d:2b:1b:96:27:38:2f:5c:a8:b2:e2:23:24:e9:65:5a:31: ff:24:30:2a:82:2e:38:b6:c9:f6:03:f7:3a:f9:ed:ff:b7:f6: 42:df:ac:cb:a7:ff:05:d9:23:b4:21:ac:6b:83:ca:2b:65:f1: 0e:6b:c5:57:27:29:70:f2:15:10:7a:87:4a:65:7c:3f:d3:79: f2:f1:09:64:b9:1d:4d:d8:b4:10:4f:1f:a2:88:00:6c:ea:ab: f9:28:f0:90:0e:32:54:a1:ed:72:c1:aa:da:64:40:84:c3:4b: eb:5b:fc:f3:fa:4d:31:7f:4d:78:1d:10:12:05:2b:e9:db:f8: 64:33:e7:d9:84:5c:65:32:2a:7b:65:8f:c0:62:10:97:aa:68: 2f:50:9d:9f:9a:54:27:2f:e8:53:56:5f:73:6b:a3:06:d3:97: 73:e7:81:6f:8b:2d:b5:2e:ef:1c:54:78:2b:94:1d:cc:cb:85: 10:88:c9:8a:af:2a:9f:91:fe:ed:4c:38:8a:49:15:15:01:b2: f8:9e:f3:e8:c1:52:bd:3a:b1:44:50:39:4d:10:26:31:59:f9: 55:ca:1a:c2:b7:74:b6:6b:be:07:e9:62:a2:85:4c:57:b7:44: a7:61:74:82:b6:44:2a:a3:75:c8:dc:1f:e1:94:ba:7b:c0:73: 6b:88:1e:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUwODEwMTQ1OTQ2WhcNMjUwODE3MTQ1OTQ2WjAYMRYwFAYD VQQDEw02ODk4YjNlMy0yYmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMmGb5IV71EOFr41Ax/0Lk5+m+vfNp6T1U+PJ3wecrZijfoiUpkVNqGB0q+d kzGt0MTNr25d5Mw8HnOjNMHX51RmakzJB+j7wbOE1KduE8zujPbzGWK4b4/q/xwp ZGWzc0pnSvcF0Rj4QB/NOz9R7HrGqvHoM88CLjhtu6nte1uHPXmAvrUHXExgza2P BlbrKbFpB1liXBYMYG4V2sijjtGL7U5Vpna7STwHbfntpzM4it8LRw4CnpqTjE18 mE0wbU1jLisuS+M5BBN45qkrtLQWssy9GDpjvf0/Df96vAkf5o/vfCczObSR7MQ5 8jJbLqkV+hNqb/QDaExXghrJawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqtktMv Tacs+Z+BvGhM5xXYjnc9MB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLjSsblic4L1yosuIjJOllWjH/JDAqgi44tsn2A/c6+e3/t/ZC36zL p/8F2SO0Iaxrg8orZfEOa8VXJylw8hUQeodKZXw/03ny8QlkuR1N2LQQTx+iiABs 6qv5KPCQDjJUoe1ywaraZECEw0vrW/zz+k0xf014HRASBSvp2/hkM+fZhFxlMip7 ZY/AYhCXqmgvUJ2fmlQnL+hTVl9za6MG05dz54Fviy21Lu8cVHgrlB3My4UQiMmK ryqfkf7tTDiKSRUVAbL4nvPowVK9OrFEUDlNECYxWflVyhrCt3S2a74H6WKihUxX t0SnYXSCtkQqo3XI3B/hlLp7wHNriB6O -----END CERTIFICATE-----Generated at Mon Aug 11 07:49:43 2025 by rpki-client