$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: eaboY0e4qNu/g3d3C5Bhp6Cxt9XSrZTcNR59KEEfksE= Subject key identifier: AC:6F:25:C4:21:DF:FF:BF:C5:CA:42:08:53:5E:AC:71:95:0F:4C:CB Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04B6 Signing time: Sat 14 Jun 2025 23:38:08 +0000 Manifest this update: Sat 14 Jun 2025 23:38:08 +0000 Manifest next update: Sat 21 Jun 2025 23:38:08 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: CfpSs4YQieREAxIGkFJSJGd8XPyLYUYZ57KkJi04jmc=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Jun 14 23:38:08 2025 GMT Not After : Jun 21 23:38:08 2025 GMT Subject: CN=684e07e0-adde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:78:ed:66:e4:45:59:8a:84:fc:71:ed:d2:9e: 2f:1d:6c:d3:46:60:65:32:a8:52:6e:be:4c:47:5c: 64:ce:2c:57:1e:71:7e:b0:15:a3:14:02:ab:33:01: 05:b1:ba:35:d4:eb:36:0c:72:64:16:9a:4a:b4:d3: c7:58:0d:9f:b3:bf:27:82:5d:94:6e:9e:35:0d:33: 47:cd:bc:69:44:d0:99:42:84:e4:03:53:0e:14:c3: fc:45:b4:7c:1b:a0:57:e7:04:ab:3a:76:c7:a0:b2: 24:64:27:34:56:9c:2a:07:77:b5:6b:71:5b:b8:89: 40:84:97:91:a5:d1:42:4a:9e:94:6d:16:06:d5:b2: a5:bb:bc:57:b8:e6:25:aa:e4:69:6a:cf:de:98:d9: fe:00:4b:be:d2:63:c4:18:e1:91:53:19:ca:6c:f2: 69:31:f6:8f:d4:14:e6:8d:f2:e2:23:f4:61:69:ea: 3a:f5:22:10:7c:30:57:fe:77:cc:22:d7:fb:96:35: f3:09:64:ab:da:c3:6c:45:37:a0:84:30:28:72:01: 92:17:91:6e:a1:88:f8:46:f5:ce:d7:29:f8:fe:c9: b8:20:85:b9:0b:56:70:7b:f2:a8:e8:e2:92:52:22: d7:32:57:99:cd:53:c5:13:67:a4:13:05:9a:26:ba: 3e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6F:25:C4:21:DF:FF:BF:C5:CA:42:08:53:5E:AC:71:95:0F:4C:CB X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:7b:b7:d1:3b:c9:7b:86:e5:db:30:d2:6e:c8:4e:65:d9:e2: 53:a4:ff:23:47:6c:ca:36:8d:17:43:1f:2d:d2:ac:c1:68:92: 49:d5:ba:1b:54:8b:bd:52:fd:69:95:4e:d1:06:bc:1d:be:fc: 41:d2:32:fc:ce:b1:b0:bf:87:c2:29:12:ed:ac:a1:0c:ac:41: 55:9b:d7:6a:8c:57:36:5e:5b:96:ff:a9:2d:b3:c5:7c:73:c8: da:f6:77:67:98:d2:96:a5:1d:8d:7c:eb:9e:ea:5c:ff:93:1d: 6a:64:6c:98:c6:6d:81:b5:ff:be:4d:ed:7e:10:b1:81:00:fb: bc:d0:1a:10:46:d1:41:67:40:99:37:d7:2a:8a:71:5b:64:e0: 46:91:f3:2a:fa:16:b8:7a:c3:94:e2:ba:19:68:26:22:64:d0: 2f:00:6d:70:17:c3:1b:c4:9f:d9:1e:cd:97:96:d7:f2:2d:be: ca:10:32:03:cf:dd:10:8f:2e:8a:37:9f:b7:f9:8f:de:31:1e: 91:d7:37:20:c2:94:9d:b1:33:b4:45:e8:28:1c:9f:09:60:50: b7:a7:9b:e8:8b:4e:5f:9a:29:66:e1:01:ab:a2:33:76:00:b4: 1b:06:a7:d0:21:7d:83:94:79:49:2f:c7:97:3a:e2:4a:48:9c: 85:1a:7d:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwNjE0MjMzODA4WhcNMjUwNjIxMjMzODA4WjAYMRYwFAYD VQQDEw02ODRlMDdlMC1hZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HjtZuRFWYqE/HHt0p4vHWzTRmBlMqhSbr5MR1xkzixXHnF+sBWjFAKrMwEF sbo11Os2DHJkFppKtNPHWA2fs78ngl2Ubp41DTNHzbxpRNCZQoTkA1MOFMP8RbR8 G6BX5wSrOnbHoLIkZCc0VpwqB3e1a3FbuIlAhJeRpdFCSp6UbRYG1bKlu7xXuOYl quRpas/emNn+AEu+0mPEGOGRUxnKbPJpMfaP1BTmjfLiI/Rhaeo69SIQfDBX/nfM Itf7ljXzCWSr2sNsRTeghDAocgGSF5FuoYj4RvXO1yn4/sm4IIW5C1Zwe/Ko6OKS UiLXMleZzVPFE2ekEwWaJro+gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxvJcQh 3/+/xcpCCFNerHGVD0zLMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhe7fRO8l7huXbMNJuyE5l2eJTpP8jR2zKNo0XQx8t0qzBaJJJ1bob VIu9Uv1plU7RBrwdvvxB0jL8zrGwv4fCKRLtrKEMrEFVm9dqjFc2XluW/6kts8V8 c8ja9ndnmNKWpR2NfOue6lz/kx1qZGyYxm2Btf++Te1+ELGBAPu80BoQRtFBZ0CZ N9cqinFbZOBGkfMq+ha4esOU4roZaCYiZNAvAG1wF8MbxJ/ZHs2XltfyLb7KEDID z90Qjy6KN5+3+Y/eMR6R1zcgwpSdsTO0RegoHJ8JYFC3p5voi05fmilm4QGrojN2 ALQbBqfQIX2DlHlJL8eXOuJKSJyFGn2k -----END CERTIFICATE-----Generated at Sun Jun 15 09:41:40 2025 by rpki-client