$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft File: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft (raw, json) Hash identifier: 8KenWtbWXDZRO9043U+GaQhM56mmXpfoM8rFRtJYTX4= Subject key identifier: 86:8A:51:0C:F4:C0:F7:92:ED:1C:7C:4C:21:8B:CF:34:A3:CE:52:55 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 1BBB6D6CC515976D9192718D8298DD0D676DF63D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft Manifest number: 0393 Signing time: Mon 20 Oct 2025 00:19:07 +0000 Manifest this update: Mon 20 Oct 2025 00:14:07 +0000 Manifest next update: Tue 21 Oct 2025 01:38:07 +0000 Files and hashes: 1: 3130332e3233382e3133302e302f32342d3234203d3e2039333034.roa (hash: VxvWKIapnz/NHAaRWVjdN31at45PwCfti5amyZ3Xs/Y=) 2: 34332e3235352e38312e302f32342d3234203d3e20313531393634.roa (hash: 4e0hnp+mBksFQSBkEEMhLS8Zc6XMB5AlAB7ew9DvGO8=) 3: 3130332e3233382e3132382e302f32342d3234203d3e20313338303737.roa (hash: 5sZFV0hCMUC2n4iWJ3AfJgpDZ6n5Bs/7eOe7YiQjRcQ=) 4: 34332e3235352e38302e302f32342d3234203d3e20323134373636.roa (hash: R06pByin/m/phSrNQN6fLr1e43axG1JDp2GOwtmPcDQ=) 5: 3130332e3233382e3132392e302f32342d3234203d3e20313938313030.roa (hash: befyV0hRkZPjsj2HiXn8OpPP07iuTlgDyNJrlhl8VkA=) 6: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (hash: XW5ROJXsHtfkngdlXEUs0YnhnPoR10fb35FCOeUkreg=) 7: 3130332e3233382e3132392e302f32342d3234203d3e20343031343433.roa (hash: rpJIqb75YDR5gHdSyUBQhuto0oiBHBiqa+gpsVl1Cpo=) 8: 34332e3235352e38322e302f32342d3234203d3e20393834.roa (hash: YRgjmmE+nVi/PAXhqb3JUaahbh35VPMhIEe6x6m98Ho=) 9: 3130332e3233382e3133312e302f32342d3234203d3e2039333034.roa (hash: xJHD6oJOmKsdm6y2bTs9H7Pd88grt6jIjKGTOKL3muY=) 10: 72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl (hash: YKsrhmG+UiCqQf4H/I8h2fCOIcJvJDncy5HQ7M9QXy0=) 11: 34332e3235352e38312e302f32342d3234203d3e203436353539.roa (hash: //UuXn9WtkO4gR2SmefousyCafMw89f9w0hXvN+V6kA=) 12: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (hash: S8rFfs7IoEg3XYYnsyLOBvR6RACIA3juzHhODPn7ChQ=) 13: 3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa (hash: E4ONBceQGtTtMJwjbxI/zmDC8SS3yBbRlcMhg4vXlLU=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 01:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bb:6d:6c:c5:15:97:6d:91:92:71:8d:82:98:dd:0d:67:6d:f6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Oct 20 00:14:07 2025 GMT Not After : Oct 21 01:38:07 2025 GMT Subject: CN=868A510CF4C0F792ED1C7C4C218BCF34A3CE5255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dc:d5:03:54:ea:79:76:25:91:cc:64:35:d0: b7:45:b3:9a:a4:36:7b:5e:18:9b:21:e0:cd:87:09: ed:ea:a8:b7:0d:02:b1:4c:e5:5d:06:87:29:62:d7: 75:ab:a4:e6:7d:22:bc:16:1c:9d:cb:d4:0c:56:ce: f5:45:ae:a4:fd:83:42:a5:c7:1c:96:bb:18:79:3f: e8:f2:f9:88:31:92:e9:6d:be:e4:13:d8:c7:73:38: a2:1f:e8:d6:77:c4:b1:0c:f4:f5:42:4a:95:4c:30: aa:f9:f4:f8:e0:32:78:b3:b8:f7:30:e2:2b:47:85: 96:ae:ec:a9:62:ca:dc:3c:42:85:59:f7:4e:b5:73: d0:38:46:d9:ac:61:3c:eb:1e:16:a8:8e:6c:0b:70: 11:3a:11:54:bc:5a:f6:0e:70:66:a7:78:6d:ab:5f: 41:67:f2:3c:4e:9c:22:90:07:bc:35:99:e0:59:22: f6:c2:e3:42:7f:6b:8f:6a:fe:13:5c:68:f8:62:97: b1:d2:9d:0d:8c:05:ae:6c:41:f0:4b:02:19:32:68: b1:40:3a:59:2a:d8:75:87:06:b0:86:bb:75:5d:42: 81:f3:ee:04:aa:39:21:9a:6d:08:5b:fc:e5:00:e6: e5:ed:57:b5:b9:bc:12:52:dc:89:15:48:05:44:32: de:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8A:51:0C:F4:C0:F7:92:ED:1C:7C:4C:21:8B:CF:34:A3:CE:52:55 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:df:ef:6d:6f:20:2d:3a:d7:b8:d0:56:f9:2a:fd:6d:4b:8e: 2a:af:1f:95:7d:8b:7f:70:91:fe:3e:78:f5:53:b8:f6:4d:15: a6:31:ef:62:0c:ee:4c:5e:dd:61:a7:63:47:a0:62:c8:f6:d0: e7:1f:e5:21:9e:aa:43:84:4e:09:ae:10:93:bb:46:fe:75:fd: 08:25:5e:96:2e:1c:d6:d7:de:b0:47:75:2a:45:c4:5e:91:3e: a3:19:8d:e3:6a:87:94:7f:44:d5:46:aa:09:53:79:01:11:de: 33:c2:bd:ed:11:81:38:e0:da:32:aa:19:06:be:9e:cf:f5:2b: 7e:30:b8:9c:29:a1:eb:9e:07:4a:60:c3:8f:d8:5f:72:17:d8: 5f:98:a3:c4:a7:c8:18:d9:5c:64:76:74:22:cd:1d:aa:56:ca: 23:55:4c:00:64:85:90:83:99:77:6d:04:a8:90:69:20:9a:20: 37:48:81:92:73:f5:87:a5:9c:eb:73:d2:a3:c3:05:54:e1:33: 98:63:af:dc:3a:8c:29:7d:70:1a:d0:c6:2c:3a:48:87:d8:3a: df:08:9c:6c:e2:2e:77:fb:be:b7:1a:6a:c4:0a:40:6b:2a:4f: 16:d7:ab:a6:a4:21:19:d0:1c:09:78:c3:17:21:96:34:ab:c2: 6c:78:e5:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG7ttbMUVl22RknGNgpjdDWdt9j0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MTAyMDAwMTQwN1oX DTI1MTAyMTAxMzgwN1owMzExMC8GA1UEAxMoODY4QTUxMENGNEMwRjc5MkVEMUM3 QzRDMjE4QkNGMzRBM0NFNTI1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDc1QNU6nl2JZHMZDXQt0WzmqQ2e14YmyHgzYcJ7eqotw0CsUzlXQaHKWLX dauk5n0ivBYcncvUDFbO9UWupP2DQqXHHJa7GHk/6PL5iDGS6W2+5BPYx3M4oh/o 1nfEsQz09UJKlUwwqvn0+OAyeLO49zDiK0eFlq7sqWLK3DxChVn3TrVz0DhG2axh POseFqiObAtwEToRVLxa9g5wZqd4batfQWfyPE6cIpAHvDWZ4Fki9sLjQn9rj2r+ E1xo+GKXsdKdDYwFrmxB8EsCGTJosUA6WSrYdYcGsIa7dV1CgfPuBKo5IZptCFv8 5QDm5e1Xtbm8ElLciRVIBUQy3tMCAwEAAaOCAhswggIXMB0GA1UdDgQWBBSGilEM 9MD3ku0cfEwhi880o85SVTAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEz MTAwMDAvMC83MkVDMEQ4QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAw Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAf9/vbW8gLTrXuNBW+Sr9bUuOKq8flX2Lf3CR/j549VO49k0V pjHvYgzuTF7dYadjR6BiyPbQ5x/lIZ6qQ4ROCa4Qk7tG/nX9CCVeli4c1tfesEd1 KkXEXpE+oxmN42qHlH9E1UaqCVN5ARHeM8K97RGBOODaMqoZBr6ez/UrfjC4nCmh 654HSmDDj9hfchfYX5ijxKfIGNlcZHZ0Is0dqlbKI1VMAGSFkIOZd20EqJBpIJog N0iBknP1h6Wc63PSo8MFVOEzmGOv3DqMKX1wGtDGLDpIh9g63wicbOIud/u+txpq xApAaypPFterpqQhGdAcCXjDFyGWNKvCbHjl3w== -----END CERTIFICATE-----Generated at Mon Oct 20 04:23:43 2025 by rpki-client