$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: 1IekhjDxo4yJe8WmqzO7UIdsoG9DqnuW+NCW81MFyzI= Subject key identifier: 37:0E:3E:57:1D:21:BD:A3:11:8B:59:2D:C0:AD:BC:DC:3F:05:4B:C3 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 04A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 049D Signing time: Thu 24 Apr 2025 23:45:42 +0000 Manifest this update: Thu 24 Apr 2025 23:45:41 +0000 Manifest next update: Thu 01 May 2025 23:45:41 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: ROXVzgoZYj1VzH7hc5oA4QTao0amdfdFmIxfeMUtJ/8=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Apr 24 23:45:41 2025 GMT Not After : May 1 23:45:41 2025 GMT Subject: CN=680acd25-4d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cb:58:fb:d6:f0:b5:1e:fe:a1:f7:e2:ea:08: 1e:b2:12:91:13:e4:36:e7:30:80:d0:7e:01:f5:99: a3:3e:c2:cd:8a:3e:5c:0e:37:3c:ff:2d:b2:6f:db: b1:33:c2:7d:13:7b:17:fb:39:36:9f:9b:48:15:88: 42:e7:cf:a6:04:20:da:e0:2c:96:7d:2d:7f:cd:a0: be:62:dd:99:ca:5d:de:82:64:3d:6f:37:b4:9c:5d: fc:90:19:b8:f4:16:76:9a:ad:02:6e:bb:3b:5f:af: 1e:e6:f8:7c:40:83:ac:a6:a9:6e:24:a3:c8:59:c8: b5:22:54:9f:66:a3:67:38:4c:8a:ad:fc:c3:05:b4: 9e:e1:7b:a1:9e:4d:c7:c8:89:dd:4d:a9:eb:5f:f8: 71:30:04:5c:ed:5f:57:f2:1b:d0:b0:1f:14:cc:f0: 9b:27:49:ce:a6:a5:ff:4f:ae:e0:bd:38:ea:1d:11: 75:ce:cd:b8:40:a7:fd:5c:08:53:37:48:19:bb:ba: 0c:eb:3c:bf:70:04:0d:ee:02:df:6f:c1:fc:de:98: 3b:fa:4b:59:57:63:fa:0c:19:47:a6:d1:9e:14:1d: 7b:e7:b6:40:85:c8:1a:a3:22:d8:28:c2:a2:11:76: da:49:60:98:06:c9:fe:c5:60:a3:3f:fe:5b:17:38: 6f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0E:3E:57:1D:21:BD:A3:11:8B:59:2D:C0:AD:BC:DC:3F:05:4B:C3 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:14:73:70:46:79:49:8c:ec:5f:22:c6:35:21:75:5c:62:be: ac:65:9c:5c:0a:aa:d6:22:a5:ce:cc:3f:81:65:8c:66:ef:5d: 7d:e4:97:27:a4:a0:8a:aa:c2:4e:4c:c0:43:46:17:ab:2f:93: a6:06:b0:5f:a7:02:15:e2:f8:f7:c1:8a:43:19:66:66:65:81: 38:0a:6f:60:f6:5f:2b:e7:8e:13:b3:fb:f0:2d:f5:1c:55:f1: e3:4c:6d:b1:64:00:8e:fb:d5:1f:8f:0f:5e:e2:ca:59:73:37: 44:b9:d3:06:3f:20:9e:10:f3:40:82:5c:29:4a:dc:38:05:c9: 79:9f:36:31:32:36:94:87:17:3d:f3:32:6a:b2:dc:62:24:ac: f2:5a:73:be:b3:c4:29:bb:43:43:eb:2f:a3:f4:0c:b5:fb:aa: af:15:ef:61:6e:4f:ad:8d:2a:b1:b9:9a:cc:08:76:17:1b:3b: bd:ed:f0:fd:00:87:f9:4e:bc:c7:db:84:3e:ab:8e:65:f6:46: ae:72:48:a8:d7:ed:15:31:91:7e:aa:de:61:54:9d:57:67:27: 63:0c:8e:0d:16:a5:3a:a1:b9:52:1a:2a:db:63:20:a6:1a:af: e7:44:b0:19:a3:54:11:13:a8:c1:06:8b:1a:63:49:6b:01:88: ad:fc:0e:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwNDI0MjM0NTQxWhcNMjUwNTAxMjM0NTQxWjAYMRYwFAYD VQQDEw02ODBhY2QyNS00ZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ctY+9bwtR7+offi6ggeshKRE+Q25zCA0H4B9ZmjPsLNij5cDjc8/y2yb9ux M8J9E3sX+zk2n5tIFYhC58+mBCDa4CyWfS1/zaC+Yt2Zyl3egmQ9bze0nF38kBm4 9BZ2mq0Cbrs7X68e5vh8QIOspqluJKPIWci1IlSfZqNnOEyKrfzDBbSe4Xuhnk3H yIndTanrX/hxMARc7V9X8hvQsB8UzPCbJ0nOpqX/T67gvTjqHRF1zs24QKf9XAhT N0gZu7oM6zy/cAQN7gLfb8H83pg7+ktZV2P6DBlHptGeFB1757ZAhcgaoyLYKMKi EXbaSWCYBsn+xWCjP/5bFzhvTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcOPlcd Ib2jEYtZLcCtvNw/BUvDMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAFHNwRnlJjOxfIsY1IXVcYr6sZZxcCqrWIqXOzD+BZYxm71195Jcn pKCKqsJOTMBDRherL5OmBrBfpwIV4vj3wYpDGWZmZYE4Cm9g9l8r544Ts/vwLfUc VfHjTG2xZACO+9Ufjw9e4spZczdEudMGPyCeEPNAglwpStw4Bcl5nzYxMjaUhxc9 8zJqstxiJKzyWnO+s8Qpu0ND6y+j9Ay1+6qvFe9hbk+tjSqxuZrMCHYXGzu97fD9 AIf5TrzH24Q+q45l9kauckio1+0VMZF+qt5hVJ1XZydjDI4NFqU6oblSGirbYyCm Gq/nRLAZo1QRE6jBBosaY0lrAYit/A7s -----END CERTIFICATE-----Generated at Sat Apr 26 14:19:02 2025 by rpki-client