$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft File: 72LxVcGXHVBJQfVx7t-sCvzFKFk.mft (raw, json) Hash identifier: pDzyfO+sVeBdMd1ntjNTxxonUPAFVUtlxSNdrXTh6YI= Subject key identifier: 4B:35:17:69:B5:7D:B0:54:2B:92:B0:B2:A0:EE:E6:B8:60:A9:56:2A Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 1275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft Manifest number: 1254 Signing time: Thu 24 Apr 2025 17:08:09 +0000 Manifest this update: Thu 24 Apr 2025 17:08:08 +0000 Manifest next update: Thu 01 May 2025 17:08:08 +0000 Files and hashes: 1: 72LxVcGXHVBJQfVx7t-sCvzFKFk.crl (hash: BGXkYPke/t2EGCPLoffzdjw5od/CXLtfvlRJ2Ss26JU=) 2: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (hash: CA19srqh0Q6qSkpS5f1WI4ZLZ8befQ3b095HOMVpe8Q=) 3: ED388A1840BB11E9A6718844C4F9AE02.roa (hash: RyCNpZPyi/g+YauzqBs7rDG8vGnkFGaOzI70T5pPGJQ=) 4: CEBECC28D38811E8A763B462C4F9AE02.roa (hash: CyPCkB+xF7/7LV5tDeHmCsATVCTbsm9N+YA32mChPrU=) 5: 5122B56A51F311E9AB54691EC4F9AE02.roa (hash: ulDXXytzKLhDZDPUF/WwhWO/+4HtH6mgUrwehHRDvEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4725 (0x1275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Apr 24 17:08:08 2025 GMT Not After : May 1 17:08:08 2025 GMT Subject: CN=680a6ff9-d8fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:df:94:1a:14:d7:12:69:ba:72:fc:25:c6:4b: 12:19:fc:c8:ba:ac:06:65:fa:56:f2:48:98:13:57: 31:2a:fb:7c:3b:58:99:77:d7:15:bb:0f:c1:13:ef: 50:d5:bf:70:2d:d0:ec:c9:ca:1d:4b:b4:be:36:df: d0:ee:32:b6:48:5b:40:7e:12:ed:a4:f9:00:04:83: 87:fc:72:60:93:93:f2:4d:ac:ef:28:a4:c6:42:eb: 54:bc:22:4a:86:fd:5c:c8:d3:e9:0a:17:52:ee:58: 73:a5:d2:dd:e6:87:44:08:cd:ef:94:3a:5d:c8:45: c9:0a:98:d1:50:96:b5:90:5c:d6:8f:8b:9a:eb:1e: df:b8:46:0c:5e:8c:8b:26:bb:38:9e:c4:8b:31:0f: 4b:17:ff:2d:68:91:b1:7c:5a:44:88:54:30:22:da: 80:82:57:96:df:df:6d:a0:81:08:bc:eb:e2:9b:5a: ab:b3:4e:0e:2a:ce:50:94:8f:6e:a8:9a:12:89:55: a8:00:1a:e1:ae:51:b5:cc:91:4a:cf:42:d5:e6:f8: 39:0e:90:98:53:2f:a9:95:6d:e0:c9:da:ca:0d:1c: 4c:35:87:51:25:34:5e:a1:b2:a2:91:3a:fe:ad:65: d6:9b:71:d0:23:d8:ed:d9:99:c2:36:45:51:5a:9d: ff:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:35:17:69:B5:7D:B0:54:2B:92:B0:B2:A0:EE:E6:B8:60:A9:56:2A X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:ee:bb:1a:b2:0c:20:4b:69:f8:6a:5f:9d:d5:38:d5:77:ad: ac:59:ba:25:e7:fc:cf:c0:50:ae:87:2e:09:1d:b4:96:06:59: dd:c1:87:74:46:be:fb:0d:44:15:3d:24:0d:7b:44:80:df:1c: 59:06:ee:c3:ea:0b:43:03:fc:58:c9:a4:5e:48:d9:33:21:d1: ac:b2:d5:d5:b5:4e:fe:46:a3:23:b0:03:39:ed:00:c4:c4:b3: 60:3b:3a:a0:22:f0:c0:62:db:b1:27:62:35:89:ec:a3:6e:9e: b8:83:d5:6c:3a:fa:e6:61:41:f5:df:26:c8:6b:11:7d:cb:bb: 02:a0:4c:54:d1:61:41:ac:bc:a5:2f:80:0c:ba:7a:bb:d8:20: 12:e4:01:44:ea:d2:39:65:28:80:ca:f3:88:55:98:e9:e8:a9: 6c:e8:6f:91:b8:0a:02:80:f0:ee:ce:d3:62:0a:b3:1f:ba:f3: 25:d7:ef:57:7b:d3:7d:e0:f6:59:60:fc:52:ce:39:40:97:15: 56:96:ec:ac:3f:27:8e:db:03:b3:7c:93:74:cc:3e:40:06:49: d8:b7:ae:26:c1:af:9e:b8:b0:9a:e2:8a:1e:4f:4a:88:e1:98: b6:2a:d5:e9:4f:f7:6b:d6:38:d6:d5:76:bd:2c:3e:f7:93:73: e0:07:7f:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUwNDI0MTcwODA4WhcNMjUwNTAxMTcwODA4WjAYMRYwFAYD VQQDEw02ODBhNmZmOS1kOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnt+UGhTXEmm6cvwlxksSGfzIuqwGZfpW8kiYE1cxKvt8O1iZd9cVuw/BE+9Q 1b9wLdDsycodS7S+Nt/Q7jK2SFtAfhLtpPkABIOH/HJgk5PyTazvKKTGQutUvCJK hv1cyNPpChdS7lhzpdLd5odECM3vlDpdyEXJCpjRUJa1kFzWj4ua6x7fuEYMXoyL Jrs4nsSLMQ9LF/8taJGxfFpEiFQwItqAgleW399toIEIvOvim1qrs04OKs5QlI9u qJoSiVWoABrhrlG1zJFKz0LV5vg5DpCYUy+plW3gydrKDRxMNYdRJTReobKikTr+ rWXWm3HQI9jt2ZnCNkVRWp3/PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs1F2m1 fbBUK5KwsqDu5rhgqVYqMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU2QS8xRDY0MzI4RUQzODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhW QkpRZlZ4N3Qtc0N2ekZLRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY7rsasgwgS2n4al+d1TjVd62sWbol5/zPwFCuhy4JHbSWBlndwYd0 Rr77DUQVPSQNe0SA3xxZBu7D6gtDA/xYyaReSNkzIdGsstXVtU7+RqMjsAM57QDE xLNgOzqgIvDAYtuxJ2I1ieyjbp64g9VsOvrmYUH13ybIaxF9y7sCoExU0WFBrLyl L4AMunq72CAS5AFE6tI5ZSiAyvOIVZjp6Kls6G+RuAoCgPDuztNiCrMfuvMl1+9X e9N94PZZYPxSzjlAlxVWluysPyeO2wOzfJN0zD5ABknYt64mwa+euLCa4ooeT0qI 4Zi2KtXpT/dr1jjW1Xa9LD73k3PgB39p -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:43 2025 by rpki-client