$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: SrceW3tZaCkDbuP7bQeY1smo9qUTfXbxAUA2PMFeVjg= Subject key identifier: 0E:FC:49:5C:4F:AA:1F:2D:62:3A:9F:12:8D:BF:10:6B:25:D2:D6:17 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 013A Signing time: Fri 25 Apr 2025 03:30:09 +0000 Manifest this update: Fri 25 Apr 2025 03:30:09 +0000 Manifest next update: Fri 02 May 2025 03:30:09 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: VlwU/lo1lNn1brWBn9Ov4NTJEle8o7wnanLTOhXULXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Apr 25 03:30:09 2025 GMT Not After : May 2 03:30:09 2025 GMT Subject: CN=680b01c1-fde3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:76:b1:71:1e:ab:a5:af:fa:7d:80:ea:6f:09: 62:10:c2:22:85:cf:27:1b:32:ba:3a:c2:da:fe:d2: e7:6b:a1:bf:57:15:bd:a5:08:df:5d:6b:38:23:c2: cd:9a:44:0d:97:0c:de:2d:26:35:25:37:83:bf:26: 20:20:59:6c:d4:e6:3b:17:08:c4:b2:38:eb:50:b3: 02:ff:8e:ad:32:a2:fb:92:02:cd:3f:8b:1e:80:73: 11:72:e7:3c:73:4c:33:b6:90:b0:87:63:72:22:7d: fc:6f:e7:59:9d:8c:8b:45:8d:e4:de:52:8d:ac:d5: b5:4f:5d:73:e7:3f:22:ac:69:ea:36:d5:bf:96:55: 1a:b1:a5:70:1c:d5:3b:8a:3b:2a:04:fd:ed:20:50: 3f:c9:5c:e3:de:1b:7f:4e:2b:06:55:df:ea:9a:22: e5:2f:91:f9:e9:ee:7b:8f:8d:e1:05:c6:37:52:10: eb:7c:db:20:b7:13:b4:84:98:be:25:fa:fb:84:1d: 68:08:a2:12:b9:c5:30:fe:bb:6c:28:c8:f4:ad:4d: 27:6c:65:a8:2b:f9:dd:84:48:ef:62:a6:e7:8d:2e: 38:8b:a6:85:e8:2a:03:09:8a:8d:c9:11:33:10:4e: 57:73:ee:e4:09:84:88:c1:04:c0:fe:24:7b:c3:d5: 4e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FC:49:5C:4F:AA:1F:2D:62:3A:9F:12:8D:BF:10:6B:25:D2:D6:17 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:cc:d8:10:89:3e:11:d3:59:09:f1:70:fa:71:15:8b:9b:03: 8e:59:c5:06:3b:2c:85:0b:0f:2c:df:f2:9d:1d:82:cf:e4:57: bb:f9:82:9f:11:a4:53:ad:2d:05:6c:76:8e:89:55:6c:b8:5f: 4a:7f:93:0b:86:01:6e:03:08:57:3f:65:0f:df:a8:a1:54:df: 54:0d:95:08:04:4b:c4:33:30:c0:2e:c5:75:c1:80:42:6a:c0: 10:12:ae:cd:45:2f:69:0d:f6:90:a1:80:f9:29:09:93:27:79: e1:46:cd:33:6c:81:70:d6:4f:71:68:78:7c:2a:c5:13:38:a7: 53:8e:2f:83:73:17:97:bb:e6:51:3f:43:91:2f:89:ce:34:a4: b9:df:a4:49:2c:4e:27:0c:25:a6:06:3e:db:61:d5:15:b9:e2: f1:15:c8:6b:7f:3f:0a:55:e5:0d:23:56:07:d3:3e:d2:3d:5b: 41:aa:d5:15:94:37:54:59:7d:ec:39:d9:c0:a1:22:bf:ce:b5: f4:1d:c2:47:f0:f0:0e:20:d0:fa:40:39:60:66:f1:5a:6d:81: cd:b4:8d:8c:20:c9:93:62:bb:1b:86:5c:9d:bb:82:44:c1:06: 97:e0:77:2b:6d:e1:15:26:a1:40:ad:83:97:02:06:c9:93:03: 45:79:bf:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUwNDI1MDMzMDA5WhcNMjUwNTAyMDMzMDA5WjAYMRYwFAYD VQQDEw02ODBiMDFjMS1mZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HaxcR6rpa/6fYDqbwliEMIihc8nGzK6OsLa/tLna6G/VxW9pQjfXWs4I8LN mkQNlwzeLSY1JTeDvyYgIFls1OY7FwjEsjjrULMC/46tMqL7kgLNP4segHMRcuc8 c0wztpCwh2NyIn38b+dZnYyLRY3k3lKNrNW1T11z5z8irGnqNtW/llUasaVwHNU7 ijsqBP3tIFA/yVzj3ht/TisGVd/qmiLlL5H56e57j43hBcY3UhDrfNsgtxO0hJi+ Jfr7hB1oCKISucUw/rtsKMj0rU0nbGWoK/ndhEjvYqbnjS44i6aF6CoDCYqNyREz EE5Xc+7kCYSIwQTA/iR7w9VO+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA78SVxP qh8tYjqfEo2/EGsl0tYXMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkzNgQiT4R01kJ8XD6cRWLmwOOWcUGOyyFCw8s3/KdHYLP5Fe7+YKf EaRTrS0FbHaOiVVsuF9Kf5MLhgFuAwhXP2UP36ihVN9UDZUIBEvEMzDALsV1wYBC asAQEq7NRS9pDfaQoYD5KQmTJ3nhRs0zbIFw1k9xaHh8KsUTOKdTji+DcxeXu+ZR P0ORL4nONKS536RJLE4nDCWmBj7bYdUVueLxFchrfz8KVeUNI1YH0z7SPVtBqtUV lDdUWX3sOdnAoSK/zrX0HcJH8PAOIND6QDlgZvFabYHNtI2MIMmTYrsbhlydu4JE wQaX4HcrbeEVJqFArYOXAgbJkwNFeb+3 -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:04 2025 by rpki-client