$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: P+cATSlYVTUbFWSJSsJSUVipjb+ob2eAM6AiuMpUTwA= Subject key identifier: 59:67:D7:3B:56:67:75:C1:3B:2D:86:69:7D:93:30:DB:AA:E1:B5:7D Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04F6 Signing time: Sun 19 Oct 2025 01:29:42 +0000 Manifest this update: Sun 19 Oct 2025 01:29:42 +0000 Manifest next update: Sun 26 Oct 2025 01:29:42 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: SPnI3pE7diywMoM8/kHKml0/MYiz707tdW72Q95YmKk=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Oct 19 01:29:42 2025 GMT Not After : Oct 26 01:29:42 2025 GMT Subject: CN=68f43f06-48a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:4f:d2:c8:af:7f:07:ea:79:7c:27:5e:ba: f2:1f:41:84:0e:b0:09:84:bc:04:6e:1f:44:12:10: 01:15:d7:8d:44:e5:ca:ff:b1:28:5f:24:b4:6e:05: c3:a8:af:c8:bb:6b:b4:90:77:5c:84:50:3b:b7:69: ee:31:da:e4:71:fb:30:76:d5:48:8f:81:eb:84:03: 69:4f:4b:e2:24:56:ed:26:3a:fb:09:eb:9b:aa:09: ce:02:e9:f3:54:1a:b1:00:bb:aa:29:b2:d2:52:2c: 4f:64:10:91:11:c1:60:bc:3f:b8:27:36:f7:4a:41: 3a:7b:7a:11:41:b7:ea:08:3d:33:a8:e6:9c:f7:e6: 83:db:b6:c3:2c:21:9e:50:6b:7d:1c:83:41:ed:d2: 39:42:1c:4a:62:16:f8:7f:e9:fa:96:ac:f4:d5:ca: 9f:ed:f2:7d:11:27:59:af:7c:a6:1c:b1:75:91:2a: e5:10:b6:19:37:93:86:6d:1c:67:8e:ec:72:fc:07: 33:41:f3:95:9e:a6:34:d0:63:13:36:b8:f5:c2:fe: e3:c5:81:88:9c:cf:7c:3d:ff:f4:7c:a3:96:8f:f8: 4f:6d:5e:5a:56:b6:d0:e0:1c:3a:c9:81:5d:58:51: 25:05:83:19:d4:9a:53:91:20:49:d8:d3:63:08:13: 0d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:67:D7:3B:56:67:75:C1:3B:2D:86:69:7D:93:30:DB:AA:E1:B5:7D X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:1d:36:8e:2d:c9:85:45:d0:59:73:82:25:62:65:fa:0c:fe: 39:d8:b3:4b:cf:46:a6:89:a6:5a:c9:05:49:9a:0b:20:e8:cf: 15:0d:dc:57:96:93:ff:80:15:08:ac:91:fa:a9:42:bc:5d:d4: 6f:67:61:8a:ce:29:bf:bb:f6:2b:65:2a:2f:5a:85:32:fd:e8: 2f:49:8a:c7:09:b2:ad:da:5e:a0:8e:54:76:4a:f3:e6:fe:09: a3:5e:0a:fe:20:2e:09:b6:87:40:34:c5:c6:13:66:75:5e:dc: cd:61:a2:2e:ae:fe:96:f8:b9:02:38:4a:f9:5c:e8:27:96:bd: d1:47:76:0f:07:90:fe:40:33:4c:ad:b9:73:eb:5a:15:ad:e0: f3:9d:79:75:b1:b7:9f:fa:18:ca:5c:85:fd:13:19:3b:ff:59: 72:9e:48:b5:d2:10:30:61:5b:62:c2:15:77:fa:18:25:f1:d0: 96:c4:d1:5d:95:c3:6f:8f:18:ed:0d:21:b5:c1:38:05:45:e3: 95:65:56:9b:6f:8c:d2:bd:b5:d0:26:1b:3a:54:5e:b4:57:c9: 1b:98:ca:2e:c1:54:a0:10:c0:ac:af:e1:87:78:a4:32:bd:8d: 46:04:ee:15:26:ec:af:09:36:d9:d2:30:2a:65:71:a8:6d:e0: 86:6a:5c:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUxMDE5MDEyOTQyWhcNMjUxMDI2MDEyOTQyWjAYMRYwFAYD VQQDEw02OGY0M2YwNi00OGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoVP0sivfwfqeXwnXrryH0GEDrAJhLwEbh9EEhABFdeNROXK/7EoXyS0bgXD qK/Iu2u0kHdchFA7t2nuMdrkcfswdtVIj4HrhANpT0viJFbtJjr7CeubqgnOAunz VBqxALuqKbLSUixPZBCREcFgvD+4Jzb3SkE6e3oRQbfqCD0zqOac9+aD27bDLCGe UGt9HINB7dI5QhxKYhb4f+n6lqz01cqf7fJ9ESdZr3ymHLF1kSrlELYZN5OGbRxn juxy/AczQfOVnqY00GMTNrj1wv7jxYGInM98Pf/0fKOWj/hPbV5aVrbQ4Bw6yYFd WFElBYMZ1JpTkSBJ2NNjCBMN3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFln1ztW Z3XBOy2GaX2TMNuq4bV9MB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtHTaOLcmFRdBZc4IlYmX6DP452LNLz0amiaZayQVJmgsg6M8VDdxX lpP/gBUIrJH6qUK8XdRvZ2GKzim/u/YrZSovWoUy/egvSYrHCbKt2l6gjlR2SvPm /gmjXgr+IC4JtodANMXGE2Z1XtzNYaIurv6W+LkCOEr5XOgnlr3RR3YPB5D+QDNM rblz61oVreDznXl1sbef+hjKXIX9Exk7/1lynki10hAwYVtiwhV3+hgl8dCWxNFd lcNvjxjtDSG1wTgFReOVZVabb4zSvbXQJhs6VF60V8kbmMouwVSgEMCsr+GHeKQy vY1GBO4VJuyvCTbZ0jAqZXGobeCGalzZ -----END CERTIFICATE-----Generated at Mon Oct 20 05:37:14 2025 by rpki-client