$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft File: A72QmhoVpFA9-tWUw8bem5RgTmY.mft (raw, json) Hash identifier: n74UabYem1lUyetLmLX06HvXdD8TY6O/pyLtXMmKXGA= Subject key identifier: 7E:41:7A:FB:A3:55:05:33:6D:5D:08:24:6D:53:20:AA:4F:8C:39:7A Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft Manifest number: 0378 Signing time: Sun 19 Oct 2025 02:53:33 +0000 Manifest this update: Sun 19 Oct 2025 02:53:32 +0000 Manifest next update: Sun 26 Oct 2025 02:53:32 +0000 Files and hashes: 1: A72QmhoVpFA9-tWUw8bem5RgTmY.crl (hash: ciNCaxsl1DVBySOMR8M9GjOhHNDuoEhkRZ4R3Eb30fc=) 2: E15CC33CD55011EFB17CB022C4F9AE02.roa (hash: YkgVY3NySYm4wFHmOVUk89wTvIIkdJt3TNVnKoMCNEA=) 3: 5409C188C6CB11ECB185E43EC4F9AE02.roa (hash: qkNJcqJasGm5DqRK6RDLwIc76BxJl9ChsFknMyrjOEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Oct 19 02:53:32 2025 GMT Not After : Oct 26 02:53:32 2025 GMT Subject: CN=68f452ac-bbf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d6:e1:e6:11:6b:da:ba:7b:89:0a:26:4a:9f: a0:3a:19:9b:8d:73:74:3b:6b:54:62:ed:75:69:f7: 8b:78:8c:80:58:72:d3:9d:8b:b2:3a:e1:38:3e:a2: 6e:14:e9:49:0c:96:0c:17:0b:10:fa:91:83:52:60: 3c:fe:7d:e8:b5:8c:fc:d7:5d:1c:2d:74:41:76:84: 20:af:d0:35:ee:dd:fd:a9:64:4f:19:ad:26:71:54: 46:aa:73:be:e1:66:42:c8:e4:a8:17:50:a8:67:26: ed:03:25:29:e0:e0:a2:30:a5:d0:4a:dc:32:b9:00: ef:d6:a6:2b:d1:f0:b0:25:05:8b:f4:70:8f:f7:83: c2:9d:67:a5:b8:07:e2:97:c3:8b:bd:fa:ce:48:43: 8b:95:c6:2f:43:8d:95:f9:c1:3d:e6:e5:d5:97:d6: b3:a2:01:8d:63:33:b1:23:fe:aa:4b:7d:78:44:81: 4d:03:ad:a1:7b:14:3e:ec:34:0c:2b:cd:ac:cf:23: 8c:b8:a5:7e:e9:12:0a:dd:fe:15:fb:95:f3:0e:51: fd:b7:52:4d:42:38:9c:0f:ec:06:96:3b:a6:7f:37: 43:8b:35:3e:de:96:0a:3d:66:82:7a:91:9c:35:f9: 29:b5:dd:48:d6:cc:8e:4d:c9:09:fa:64:9b:ad:ee: 5f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:41:7A:FB:A3:55:05:33:6D:5D:08:24:6D:53:20:AA:4F:8C:39:7A X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:13:b3:f1:7f:b0:8d:09:ee:83:10:f0:4b:40:97:f9:52:51: fd:c4:6f:9c:53:2e:c3:29:d4:ad:27:53:fb:ca:59:86:63:ec: 3a:f7:e9:ff:b0:5d:6f:e8:08:63:ca:72:d5:56:b6:c7:94:c3: 9a:5c:7f:e4:b3:45:77:44:1d:f6:48:aa:cd:e4:98:06:1a:2c: b9:52:74:c4:44:19:57:1a:d0:69:7a:a7:5f:ff:10:a6:35:95: 78:19:b0:12:57:8e:d4:8c:b7:ba:6d:f7:28:c8:9b:51:da:8d: 8e:fe:d7:d5:1c:1c:15:df:04:e3:e4:0c:34:f0:48:5e:4f:84: a5:7b:5c:b7:9a:68:a6:02:e2:e4:ff:a6:bb:d6:30:0d:bb:7b: fb:4d:0c:18:a0:21:c8:e7:d8:67:c2:1c:f0:0a:7d:06:c2:45: 1b:b5:87:47:4c:36:64:eb:56:e0:bd:8f:2c:0e:f7:3d:4d:9c: 40:bc:f6:18:19:db:3f:0b:a1:39:94:3a:5b:b4:26:dd:70:b6: af:c4:e6:aa:9a:e1:18:bc:2a:0d:96:cc:3e:9f:9a:bd:99:6d: 74:06:72:48:9d:ac:b5:1d:8a:d8:aa:60:01:f9:6d:f4:fb:b9: 4c:3f:5c:f0:bb:86:c5:7e:2f:9a:14:7f:54:bd:ec:d1:f7:f6: 39:36:64:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjUxMDE5MDI1MzMyWhcNMjUxMDI2MDI1MzMyWjAYMRYwFAYD VQQDEw02OGY0NTJhYy1iYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Nbh5hFr2rp7iQomSp+gOhmbjXN0O2tUYu11afeLeIyAWHLTnYuyOuE4PqJu FOlJDJYMFwsQ+pGDUmA8/n3otYz8110cLXRBdoQgr9A17t39qWRPGa0mcVRGqnO+ 4WZCyOSoF1CoZybtAyUp4OCiMKXQStwyuQDv1qYr0fCwJQWL9HCP94PCnWeluAfi l8OLvfrOSEOLlcYvQ42V+cE95uXVl9azogGNYzOxI/6qS314RIFNA62hexQ+7DQM K82szyOMuKV+6RIK3f4V+5XzDlH9t1JNQjicD+wGljumfzdDizU+3pYKPWaCepGc Nfkptd1I1syOTckJ+mSbre5fDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5Bevuj VQUzbV0IJG1TIKpPjDl6MB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODczQi80QTE2QkJEQUM2MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBG QTktdFdVdzhiZW01UmdUbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtE7Pxf7CNCe6DEPBLQJf5UlH9xG+cUy7DKdStJ1P7ylmGY+w69+n/ sF1v6AhjynLVVrbHlMOaXH/ks0V3RB32SKrN5JgGGiy5UnTERBlXGtBpeqdf/xCm NZV4GbASV47UjLe6bfcoyJtR2o2O/tfVHBwV3wTj5Aw08EheT4Sle1y3mmimAuLk /6a71jANu3v7TQwYoCHI59hnwhzwCn0GwkUbtYdHTDZk61bgvY8sDvc9TZxAvPYY Gds/C6E5lDpbtCbdcLavxOaqmuEYvCoNlsw+n5q9mW10BnJInay1HYrYqmAB+W30 +7lMP1zwu4bFfi+aFH9UvezR9/Y5NmRf -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:45 2025 by rpki-client