$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: 4wL/s4r9RMAObvrfYvgkZoPi1m3RhaD5S1tKctrBqw8= Subject key identifier: DA:BC:21:99:FF:A8:D8:0B:AE:B8:B7:ED:79:B8:22:6A:AC:C4:8E:18 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 016F Signing time: Tue 05 Aug 2025 04:15:43 +0000 Manifest this update: Tue 05 Aug 2025 04:15:43 +0000 Manifest next update: Tue 12 Aug 2025 04:15:43 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: EIAbmrV1Q7Pbj2UCWsIBijqG+DR8R3gFTV3OVqrxhwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Aug 5 04:15:43 2025 GMT Not After : Aug 12 04:15:43 2025 GMT Subject: CN=6891856f-8238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9b:d2:5a:1d:b6:e5:50:e7:53:fb:52:f6:37: c6:ff:fd:e1:2c:70:2b:4b:c1:07:b1:1b:5e:4b:2a: 19:92:cc:59:ed:7c:da:04:fe:35:f7:70:04:b9:28: 14:e8:95:fe:25:61:97:00:1b:d7:50:68:87:11:5a: ac:41:07:bf:17:93:ac:5f:86:f7:8f:d7:14:37:dc: 92:32:2b:09:23:0e:36:49:17:b3:0b:73:26:62:46: 29:cb:c5:89:73:14:1b:c1:36:f5:71:d3:72:eb:c2: 6c:ff:73:01:2a:8b:2f:04:a8:19:f1:8f:4b:ff:51: 7a:6b:66:25:6d:ed:10:e8:72:d7:35:fe:3f:7b:64: 0f:18:2c:cc:2f:e3:30:2a:ad:45:03:c4:6b:f2:89: ac:b1:6d:9e:a0:02:1a:f6:d1:73:ae:c1:67:c7:54: fd:9b:9b:29:94:67:cc:a3:a0:35:ce:37:d7:04:85: da:9d:d5:ec:de:a6:24:f7:f8:68:91:ad:e5:b7:c4: bd:a4:85:d4:ce:f9:02:06:44:7b:e7:cb:b6:3d:9c: 10:b0:20:52:cc:d9:e0:09:f2:f9:99:2d:4e:bd:c3: 18:dc:b0:45:dd:f6:8c:82:09:8f:11:f9:25:c3:f3: 18:40:9e:f2:df:8f:f4:9f:14:0f:0c:c7:d5:b0:b3: a8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BC:21:99:FF:A8:D8:0B:AE:B8:B7:ED:79:B8:22:6A:AC:C4:8E:18 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:4e:12:bc:38:da:6d:ec:59:5d:81:27:02:97:05:82:36:9c: 4d:4a:f8:91:9d:41:2f:ed:d9:95:80:73:f0:c6:25:0a:f8:22: f3:31:ff:b8:c7:0e:d9:63:5d:aa:58:b6:29:05:f1:ff:e7:56: 8b:d4:48:e7:d3:a0:30:b9:e9:b1:68:7e:72:59:23:73:24:63: d4:ec:86:65:8e:89:df:7f:2e:73:15:de:d5:c2:f5:f5:40:91: 56:88:4e:55:54:56:64:e6:c3:92:59:89:ff:10:3d:4d:4d:c3: 98:8b:17:ff:7e:bb:47:e5:a7:f0:fc:25:d8:8a:f6:6e:bc:5f: 9b:47:d6:05:91:c4:89:9a:bd:f9:5c:b5:b9:ca:b2:63:5a:ec: 03:e9:55:cd:2b:0c:c8:a3:66:c9:0f:83:b6:d3:15:87:3e:1f: 37:b7:86:b6:4e:f1:65:80:c0:73:aa:b6:6f:ae:ef:43:9e:86: b5:39:6c:5c:a2:cd:c8:40:41:93:4e:fd:a2:e0:41:5e:f2:7a: 77:ab:c6:46:35:b0:54:0f:5f:7e:33:86:7c:25:f4:3f:fc:1f: 81:37:7b:93:f8:28:4a:aa:29:6b:b5:41:2c:9a:77:27:c2:71: 1d:e8:d0:fe:e5:2a:5d:8f:50:8e:0b:ca:99:25:58:7f:54:52: 34:f5:b4:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUwODA1MDQxNTQzWhcNMjUwODEyMDQxNTQzWjAYMRYwFAYD VQQDEw02ODkxODU2Zi04MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppvSWh225VDnU/tS9jfG//3hLHArS8EHsRteSyoZksxZ7XzaBP4193AEuSgU 6JX+JWGXABvXUGiHEVqsQQe/F5OsX4b3j9cUN9ySMisJIw42SRezC3MmYkYpy8WJ cxQbwTb1cdNy68Js/3MBKosvBKgZ8Y9L/1F6a2Ylbe0Q6HLXNf4/e2QPGCzML+Mw Kq1FA8Rr8omssW2eoAIa9tFzrsFnx1T9m5splGfMo6A1zjfXBIXandXs3qYk9/ho ka3lt8S9pIXUzvkCBkR758u2PZwQsCBSzNngCfL5mS1OvcMY3LBF3faMggmPEfkl w/MYQJ7y34/0nxQPDMfVsLOovwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq8IZn/ qNgLrri37Xm4ImqsxI4YMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ThK8ONpt7FldgScClwWCNpxNSviRnUEv7dmVgHPwxiUK+CLzMf+4 xw7ZY12qWLYpBfH/51aL1Ejn06AwuemxaH5yWSNzJGPU7IZljonffy5zFd7VwvX1 QJFWiE5VVFZk5sOSWYn/ED1NTcOYixf/frtH5afw/CXYivZuvF+bR9YFkcSJmr35 XLW5yrJjWuwD6VXNKwzIo2bJD4O20xWHPh83t4a2TvFlgMBzqrZvru9Dnoa1OWxc os3IQEGTTv2i4EFe8np3q8ZGNbBUD19+M4Z8JfQ//B+BN3uT+ChKqilrtUEsmncn wnEd6ND+5Spdj1COC8qZJVh/VFI09bRc -----END CERTIFICATE-----Generated at Wed Aug 6 16:14:28 2025 by rpki-client