$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: wqzUGZ+l2+p6vUNaOJGOkHBufu0HliwTb0m/dxxLWME= Subject key identifier: D7:72:F3:0D:E2:06:69:A0:13:15:CD:F7:35:79:BE:8D:03:90:7D:2B Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 0195 Signing time: Sun 19 Oct 2025 05:59:20 +0000 Manifest this update: Sun 19 Oct 2025 05:59:20 +0000 Manifest next update: Sun 26 Oct 2025 05:59:20 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: i350HOcR1tjMwysbUulu/MUk7knWzT0ARQiCgumtY5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Oct 19 05:59:20 2025 GMT Not After : Oct 26 05:59:20 2025 GMT Subject: CN=68f47e38-b97a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:37:5d:db:4e:4c:da:6d:b9:a8:9e:92:f1:4f: 06:24:0b:a8:78:7c:fd:5e:20:e8:e3:19:96:3c:2e: fb:1e:2b:bb:a2:84:a7:c0:e1:c6:41:75:3e:2c:fe: ed:03:f5:87:08:0f:b3:28:80:0d:58:15:e5:d0:c5: 58:40:78:6b:51:05:3e:92:1d:75:7a:d8:a8:73:38: 29:15:01:54:1a:f9:83:7b:f6:95:fd:c5:ae:b9:62: a4:f6:c5:60:71:dc:65:b6:87:6d:d7:cd:a6:e8:28: d4:2e:69:9e:fd:f3:32:a0:84:4e:09:48:00:65:1f: c4:bc:f3:99:7d:b2:ee:15:27:90:d5:fa:03:1d:05: 7e:5c:3b:76:bc:bc:7d:29:75:b9:64:b8:ba:4d:a9: cd:59:5d:f6:e6:50:56:99:39:bb:5c:56:ed:66:e5: 6f:d5:b5:4d:4d:3b:02:91:0e:7b:09:6c:3d:9b:cc: db:0a:17:4c:af:2e:55:a9:15:a9:09:8d:f9:7c:2a: d3:78:e6:84:6b:f1:09:a4:32:ec:4a:e4:4a:23:d7: cc:e6:a4:5c:87:ce:84:62:a6:a0:0f:53:ff:86:30: b3:29:fc:10:80:72:36:24:3b:ec:a6:70:b1:8f:37: be:8f:cf:a9:29:62:5b:bd:cb:ae:c0:6a:76:3b:c5: 2d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:72:F3:0D:E2:06:69:A0:13:15:CD:F7:35:79:BE:8D:03:90:7D:2B X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:1b:a4:27:d6:ab:f3:28:15:bc:f6:ea:25:81:04:bb:ec:57: 3a:54:38:b4:17:67:4d:d3:09:3a:66:4d:84:71:db:00:16:7f: 66:36:07:e1:62:84:8b:f2:2c:dd:13:2a:1f:4c:57:4a:d1:41: b0:9b:81:39:33:fa:88:10:46:72:ae:35:67:98:e9:29:28:fb: 04:d6:d7:7e:14:dd:92:4a:48:f5:11:d0:77:cc:68:7c:c3:d0: 11:46:b6:36:a9:e3:52:3f:08:83:5f:4f:68:45:57:75:6b:24: 96:35:a6:05:d9:92:9e:b5:e3:c5:32:1f:30:c1:74:f9:11:ba: 24:7f:2e:9c:99:d1:f8:e1:64:65:fb:a6:84:c0:72:b8:d5:1e: e0:8b:cd:9f:91:e2:5c:1e:23:e7:36:9b:19:9e:99:a3:bb:06: 9d:19:e0:4e:bd:6b:38:92:1f:3f:d4:9c:2d:e9:d0:a4:f5:75: 01:ae:ff:d8:4c:ea:57:89:90:be:52:53:4b:48:51:3e:c3:32: 16:85:be:fd:4c:27:e6:70:69:6d:64:bd:7c:e5:86:76:79:b6: ee:f6:b3:0f:1e:e2:e2:76:2c:15:ea:d7:f9:3e:82:b3:cb:2c: d5:51:ba:bb:44:28:4d:8b:31:48:78:a4:e7:a4:21:c1:07:20: 33:ff:52:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUxMDE5MDU1OTIwWhcNMjUxMDI2MDU1OTIwWjAYMRYwFAYD VQQDEw02OGY0N2UzOC1iOTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jdd205M2m25qJ6S8U8GJAuoeHz9XiDo4xmWPC77Hiu7ooSnwOHGQXU+LP7t A/WHCA+zKIANWBXl0MVYQHhrUQU+kh11etioczgpFQFUGvmDe/aV/cWuuWKk9sVg cdxltodt182m6CjULmme/fMyoIROCUgAZR/EvPOZfbLuFSeQ1foDHQV+XDt2vLx9 KXW5ZLi6TanNWV325lBWmTm7XFbtZuVv1bVNTTsCkQ57CWw9m8zbChdMry5VqRWp CY35fCrTeOaEa/EJpDLsSuRKI9fM5qRch86EYqagD1P/hjCzKfwQgHI2JDvspnCx jze+j8+pKWJbvcuuwGp2O8UtSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdy8w3i BmmgExXN9zV5vo0DkH0rMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTG6Qn1qvzKBW89uolgQS77Fc6VDi0F2dN0wk6Zk2EcdsAFn9mNgfh YoSL8izdEyofTFdK0UGwm4E5M/qIEEZyrjVnmOkpKPsE1td+FN2SSkj1EdB3zGh8 w9ARRrY2qeNSPwiDX09oRVd1aySWNaYF2ZKetePFMh8wwXT5Ebokfy6cmdH44WRl +6aEwHK41R7gi82fkeJcHiPnNpsZnpmjuwadGeBOvWs4kh8/1Jwt6dCk9XUBrv/Y TOpXiZC+UlNLSFE+wzIWhb79TCfmcGltZL185YZ2ebbu9rMPHuLidiwV6tf5PoKz yyzVUbq7RChNizFIeKTnpCHBByAz/1K9 -----END CERTIFICATE-----Generated at Mon Oct 20 18:52:58 2025 by rpki-client