$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: ZWCGm6YULZ1/EBP8Z4nttqzJ2weKUcrqHfeJmHFTBPk= Subject key identifier: D3:5F:E9:BC:4B:8D:DD:9C:D8:0B:AF:FD:20:52:25:A6:8E:A0:2F:06 Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 3499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 348F Signing time: Thu 24 Apr 2025 15:01:30 +0000 Manifest this update: Thu 24 Apr 2025 15:01:29 +0000 Manifest next update: Thu 01 May 2025 15:01:29 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: Gqa/zRMBM7Z19lpu1PxbxAi0xjSljc/snc0fp4Ol/4k=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: +Z1Ldyuz4HB0yeC9kiN8GX7/0TnuMGaHDVLqOr783Qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Apr 24 15:01:29 2025 GMT Not After : May 1 15:01:29 2025 GMT Subject: CN=680a5249-0081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:da:90:25:1f:7a:cf:b4:af:b9:ae:f2:9f:af: 4e:ed:84:2f:01:14:ac:e0:34:0a:7f:91:60:fc:d7: d2:3e:cd:05:68:ee:61:77:33:e1:75:d8:de:6b:85: a8:d3:a8:b6:10:32:d6:fa:72:c9:c0:81:29:51:0f: 21:77:20:7b:2a:98:8e:cc:a2:bd:4f:91:17:c9:87: aa:51:f5:0b:e7:02:d2:0e:bc:8a:37:45:8f:f4:18: 6d:d4:41:fe:4a:f8:3f:98:2b:37:02:dc:db:e7:58: b0:db:85:61:f2:ef:fa:10:0a:72:2e:f6:6e:06:e6: 4d:8b:1a:a6:c7:e6:c8:19:dd:58:13:c9:53:e4:33: 2e:99:59:e4:88:81:da:c5:e0:c2:d8:77:38:8f:07: 79:9a:3a:3e:a0:40:c1:c6:f9:c7:9b:cc:40:5c:dd: 76:89:3b:99:12:6a:ee:98:60:6f:d7:ed:04:f5:d5: ea:50:c6:ba:f6:46:e8:f5:d8:51:10:c6:32:2c:e7: df:36:41:af:0e:e9:8f:3f:d4:bd:c1:f9:ac:34:93: c8:9f:48:fa:92:8a:f0:bb:00:be:5b:37:e0:30:d2: 51:40:7e:fc:19:24:ee:c5:b8:32:8e:e8:6e:ca:2b: 0c:a7:99:a7:3e:48:61:00:56:6b:8f:4e:94:26:3f: f6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5F:E9:BC:4B:8D:DD:9C:D8:0B:AF:FD:20:52:25:A6:8E:A0:2F:06 X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:e7:48:e7:58:11:8e:d3:ac:c0:ee:fc:e9:76:99:f1:d5:ff: ea:ff:40:a3:7b:fd:91:13:0b:24:19:f9:21:5c:03:db:37:4f: 0f:73:e7:46:56:22:1b:0e:40:07:85:8e:f6:94:0d:94:84:90: 8c:f0:eb:f0:d7:9f:1d:df:9b:d1:c7:88:91:43:33:db:82:81: 9d:58:08:49:4c:a5:59:a9:9d:93:07:d7:85:d1:1f:84:88:9e: a4:a6:f0:a0:c9:ba:e5:d3:e9:a5:d3:90:2f:21:29:4f:b8:31: e0:f2:df:62:3a:26:70:cb:dc:38:dc:52:b8:3d:00:7b:c3:2e: e1:0e:7d:a8:49:96:4d:54:ba:8c:d8:54:92:7c:1d:9e:d5:da: 7c:8c:ec:a7:af:c2:75:88:c0:46:7a:7a:73:01:c7:4b:b6:25: 8b:67:f0:e7:e8:fe:3c:b5:2e:94:0d:03:6f:b1:dd:be:a6:eb: 7d:3e:0b:2a:6e:a7:b9:e6:dc:09:d0:0f:f6:ca:96:2e:9d:d6: 80:ba:f7:ef:8a:e2:ef:da:b3:87:02:c8:e8:b6:78:29:3a:30: 1a:42:77:cc:ed:b9:bb:31:0f:60:65:1a:b8:99:75:b6:5b:66: 38:49:8a:d5:79:45:4b:3a:13:d7:ca:f0:b5:94:f7:f7:a9:26: 65:a5:08:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUwNDI0MTUwMTI5WhcNMjUwNTAxMTUwMTI5WjAYMRYwFAYD VQQDEw02ODBhNTI0OS0wMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdqQJR96z7Svua7yn69O7YQvARSs4DQKf5Fg/NfSPs0FaO5hdzPhddjea4Wo 06i2EDLW+nLJwIEpUQ8hdyB7KpiOzKK9T5EXyYeqUfUL5wLSDryKN0WP9Bht1EH+ Svg/mCs3Atzb51iw24Vh8u/6EApyLvZuBuZNixqmx+bIGd1YE8lT5DMumVnkiIHa xeDC2Hc4jwd5mjo+oEDBxvnHm8xAXN12iTuZEmrumGBv1+0E9dXqUMa69kbo9dhR EMYyLOffNkGvDumPP9S9wfmsNJPIn0j6korwuwC+WzfgMNJRQH78GSTuxbgyjuhu yisMp5mnPkhhAFZrj06UJj/2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNf6bxL jd2c2Auv/SBSJaaOoC8GMB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI50jnWBGO06zA7vzpdpnx1f/q/0Cje/2REwskGfkhXAPbN08Pc+dG ViIbDkAHhY72lA2UhJCM8Ovw158d35vRx4iRQzPbgoGdWAhJTKVZqZ2TB9eF0R+E iJ6kpvCgybrl0+ml05AvISlPuDHg8t9iOiZwy9w43FK4PQB7wy7hDn2oSZZNVLqM 2FSSfB2e1dp8jOynr8J1iMBGenpzAcdLtiWLZ/Dn6P48tS6UDQNvsd2+put9Pgsq bqe55twJ0A/2ypYundaAuvfviuLv2rOHAsjotngpOjAaQnfM7bm7MQ9gZRq4mXW2 W2Y4SYrVeUVLOhPXyvC1lPf3qSZlpQiF -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:05 2025 by rpki-client