$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft File: 72LxVcGXHVBJQfVx7t-sCvzFKFk.mft (raw, json) Hash identifier: FKMJAHO3uZbHpR/zZPjT4qT2LFEPNCYaz3hWJ5pOykg= Subject key identifier: CA:48:A9:C4:2F:DA:E8:6B:E3:53:87:05:1D:70:69:5D:72:89:A5:01 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 1294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft Manifest number: 126F Signing time: Sat 14 Jun 2025 17:03:13 +0000 Manifest this update: Sat 14 Jun 2025 17:03:13 +0000 Manifest next update: Sat 21 Jun 2025 17:03:13 +0000 Files and hashes: 1: 72LxVcGXHVBJQfVx7t-sCvzFKFk.crl (hash: Z+wN9BVf6HzeZ8LdQHZDApIcteZ68s64WLYMxG0iewk=) 2: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (hash: 8Neml3oC6KcoFUvC+s8BLmWMEpSAAtUFs6SqBjTSq9o=) 3: ED388A1840BB11E9A6718844C4F9AE02.roa (hash: gcGbaS+C10OxA3/sWZJEHnaLaEauoh+9kGT7bNc0D6Q=) 4: CEBECC28D38811E8A763B462C4F9AE02.roa (hash: IgiJhZRqcSbgHymfJ2UkdTHsUcRz7FOMB1+md3krEv8=) 5: 5122B56A51F311E9AB54691EC4F9AE02.roa (hash: 3BEJ1gCiaz/4ZdrE3qzkDJ5+ojL/iMHnMesKRyA+c6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4756 (0x1294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Jun 14 17:03:13 2025 GMT Not After : Jun 21 17:03:13 2025 GMT Subject: CN=684dab51-2c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:90:81:af:38:43:4e:31:ed:2b:d3:8c:5f: 85:59:37:61:b9:fe:96:1b:ce:ab:c7:cb:ac:de:9e: cb:5a:f3:a0:9d:f6:0b:06:39:14:1a:67:f4:8f:d0: 36:ac:09:57:85:68:03:78:2a:b6:bc:dd:5f:8a:70: 7d:be:b7:5a:54:ab:18:09:ab:ab:48:39:c4:2c:e7: 52:f4:83:0f:6e:9b:5e:72:17:dc:54:7e:2b:00:a7: b9:52:3e:0c:e9:75:9e:66:90:ce:93:a4:c5:b7:58: 67:e8:58:36:b2:d0:39:40:4a:15:9a:15:98:33:53: e6:29:fd:07:ac:d4:28:ce:d0:ed:f8:dc:63:9f:8a: 71:4b:96:3f:ca:e1:81:d7:65:de:17:91:cf:e8:7e: e9:23:9a:d2:bc:89:cc:da:b9:8e:f0:4e:9c:e4:9c: 65:24:dc:45:10:f7:a7:50:c7:52:c0:4a:1d:08:f8: 46:4b:87:fa:3f:53:32:dd:59:b1:57:4f:6a:75:05: a4:cf:89:dc:24:de:d6:1d:77:12:8d:f0:50:fb:d3: 43:0d:20:87:ad:e9:fe:9d:e5:d0:c8:da:42:e0:09: ea:60:fc:af:73:c9:6e:45:1f:6b:29:54:38:e2:52: a2:0b:ee:0b:07:11:9f:3f:66:76:05:78:0f:3e:e8: ba:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:48:A9:C4:2F:DA:E8:6B:E3:53:87:05:1D:70:69:5D:72:89:A5:01 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:db:a8:ae:0a:68:a1:c9:59:2e:9b:4f:cf:f3:a6:94:c8:72: 1f:ac:7e:84:3e:b7:a6:16:d8:2f:c2:6d:fe:34:24:e6:99:31: 9a:fa:3c:ab:da:94:32:56:ad:91:ed:9a:30:27:8c:00:ee:5d: ab:b5:db:e2:21:d8:6e:47:30:88:d0:07:f6:fe:53:7a:1f:58: 4f:fb:b6:82:1f:4f:4d:15:89:ee:e3:81:3e:05:f1:e8:5d:88: 68:1a:8b:2c:b7:f3:41:c8:02:cd:37:57:44:25:71:2e:9c:7c: b6:bc:ad:a1:9f:c5:64:0c:5b:93:0f:03:89:f2:14:67:38:db: c5:2a:16:8a:1c:a0:21:ae:b1:c7:ae:0e:05:e8:52:c9:71:d4: d1:e1:42:f8:c8:ef:a5:dd:cb:c1:82:ed:95:c9:9a:f6:dd:d9: a5:f5:bf:26:20:d4:ef:56:7e:d5:7c:a3:81:40:20:c2:38:bd: 86:c6:20:0e:04:35:1d:82:48:38:4e:ed:c8:5b:cf:02:65:d5: 27:82:7b:10:b3:b8:61:9b:0e:e6:3b:7f:6a:23:9f:b6:48:aa: 83:22:0f:0c:af:cc:29:49:cc:bf:44:19:03:99:a0:bc:70:4e: 57:dd:93:d6:18:b5:93:fd:01:19:e6:fb:89:b8:72:53:fe:3f: 8b:75:41:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUwNjE0MTcwMzEzWhcNMjUwNjIxMTcwMzEzWjAYMRYwFAYD VQQDEw02ODRkYWI1MS0yYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssWQga84Q04x7SvTjF+FWTdhuf6WG86rx8us3p7LWvOgnfYLBjkUGmf0j9A2 rAlXhWgDeCq2vN1finB9vrdaVKsYCaurSDnELOdS9IMPbptechfcVH4rAKe5Uj4M 6XWeZpDOk6TFt1hn6Fg2stA5QEoVmhWYM1PmKf0HrNQoztDt+Nxjn4pxS5Y/yuGB 12XeF5HP6H7pI5rSvInM2rmO8E6c5JxlJNxFEPenUMdSwEodCPhGS4f6P1My3Vmx V09qdQWkz4ncJN7WHXcSjfBQ+9NDDSCHren+neXQyNpC4AnqYPyvc8luRR9rKVQ4 4lKiC+4LBxGfP2Z2BXgPPui6GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpIqcQv 2uhr41OHBR1waV1yiaUBMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU2QS8xRDY0MzI4RUQzODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhW QkpRZlZ4N3Qtc0N2ekZLRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL26iuCmihyVkum0/P86aUyHIfrH6EPremFtgvwm3+NCTmmTGa+jyr 2pQyVq2R7ZowJ4wA7l2rtdviIdhuRzCI0Af2/lN6H1hP+7aCH09NFYnu44E+BfHo XYhoGosst/NByALNN1dEJXEunHy2vK2hn8VkDFuTDwOJ8hRnONvFKhaKHKAhrrHH rg4F6FLJcdTR4UL4yO+l3cvBgu2VyZr23dml9b8mINTvVn7VfKOBQCDCOL2GxiAO BDUdgkg4Tu3IW88CZdUngnsQs7hhmw7mO39qI5+2SKqDIg8Mr8wpScy/RBkDmaC8 cE5X3ZPWGLWT/QEZ5vuJuHJT/j+LdUF0 -----END CERTIFICATE-----Generated at Sun Jun 15 08:52:38 2025 by rpki-client