$ rpki-client -vvf rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft File: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft (raw, json) Hash identifier: JnwBtrgv00T5bzmNIg+T9SPuX/zEZZme78nhXwioBKw= Subject key identifier: C0:5E:30:5E:C1:5D:E0:A2:15:8E:57:12:92:C8:62:E8:DE:E0:B3:26 Authority key identifier: EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 Certificate issuer: /CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Certificate serial: 0EA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft Manifest number: 0E9B Signing time: Sun 02 Nov 2025 17:41:25 +0000 Manifest this update: Sun 02 Nov 2025 17:41:24 +0000 Manifest next update: Sun 09 Nov 2025 17:41:24 +0000 Files and hashes: 1: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl (hash: tdc4kEGGll9/90Le+s+IjX12MC9LgVcq/M2b2sEdHxI=) 2: 0DFAD3529E1611E98059B049C4F9AE02.roa (hash: xrn7kqtWfpKDJ8ptvmKz6itXOdAPKg554aAbP2n2DQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3747 (0xea3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FEA1, serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Validity Not Before: Nov 2 17:41:24 2025 GMT Not After : Nov 9 17:41:24 2025 GMT Subject: CN=690797c5-7446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0e:41:93:0e:93:56:00:6e:dc:7a:51:6d:34: 72:48:ce:64:bc:bc:39:42:f4:97:ca:a4:0b:8b:af: 2d:c4:35:4c:5a:e3:65:cf:fd:21:da:78:37:a6:99: d1:f3:49:ce:85:60:7e:cf:c5:7d:9c:ab:f8:1d:a6: ad:9c:05:29:0f:93:c4:24:7a:ab:6f:1a:6b:38:12: 51:9e:9f:69:96:59:e9:a5:ae:56:53:55:c4:e7:4d: bd:0d:5c:2a:fe:19:d2:01:bd:05:89:6a:c1:0c:b6: 91:2f:bd:0f:40:d3:6d:8d:09:32:9a:5d:7a:28:5b: 01:41:4a:d6:04:d9:e9:f6:05:fc:f7:6c:9e:4a:d7: 74:5d:aa:4a:f6:13:d6:be:46:79:05:f3:0d:79:1c: ef:9e:b1:12:04:f9:40:57:ab:06:74:ce:16:f9:cf: 7b:08:cf:5f:f5:20:71:5f:7d:78:27:44:39:60:aa: b3:ca:1a:3c:46:6e:7d:5b:b6:3f:64:2d:af:66:39: 6d:07:da:38:58:61:6c:bb:21:33:2c:d1:e5:ae:70: 58:da:bf:67:9b:b5:42:7f:9e:2d:f5:14:48:ca:48: 68:21:53:cc:90:84:f0:78:8a:17:21:80:92:27:01: a9:32:37:a0:fb:b8:8f:f0:a3:97:d6:8c:23:f2:0a: f9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:5E:30:5E:C1:5D:E0:A2:15:8E:57:12:92:C8:62:E8:DE:E0:B3:26 X509v3 Authority Key Identifier: keyid:EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:da:52:4a:58:e0:6f:3a:2e:f7:d7:cb:e0:96:fa:01:23:c0: ce:2b:80:9c:ad:a0:aa:3a:09:b9:1d:05:85:6c:81:22:7d:d8: 9b:12:6b:67:ed:c5:d8:07:7c:de:83:69:70:26:8f:e5:f2:ef: c1:e8:5f:58:cb:c1:3c:1d:30:13:3c:5a:33:44:9b:8a:03:84: 4e:f2:19:ee:a0:25:05:f8:ec:62:c0:89:50:53:7a:56:de:60: 80:b7:e6:aa:6d:c8:b5:64:c4:d1:98:11:ae:95:ad:3b:fa:49: ad:a0:20:52:a1:7c:30:76:85:e2:c6:4b:b7:6d:25:9d:80:20: 54:d0:1a:c0:2a:28:f3:43:b4:9f:36:87:03:d4:06:43:2c:a1: 19:dc:ca:e0:26:01:fe:f9:9b:60:37:31:02:d1:6b:82:cc:f5: e0:2b:25:4a:f8:43:19:b5:e8:7d:68:a6:42:7b:35:13:ed:de: f3:b7:eb:e9:64:53:46:64:48:b3:51:31:ac:e7:48:6e:bd:02: b5:40:e8:87:88:3c:0b:a0:de:d7:3b:08:b1:d8:a1:cd:ec:d1: 9f:67:16:81:26:5a:06:28:22:a4:56:4d:e6:62:1d:85:55:da: 94:5b:8e:a3:6a:c3:61:b6:ad:93:8a:7a:b2:dc:b0:33:d6:d1: 26:ec:ba:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFQTExMTAvBgNVBAUTKEVGNkMxOTRCQjI4OTREMzNFNkRFMDY0MjIzMkQ5NENF NEU5RUYxOTQwHhcNMjUxMTAyMTc0MTI0WhcNMjUxMTA5MTc0MTI0WjAYMRYwFAYD VQQDEw02OTA3OTdjNS03NDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArw5Bkw6TVgBu3HpRbTRySM5kvLw5QvSXyqQLi68txDVMWuNlz/0h2ng3ppnR 80nOhWB+z8V9nKv4HaatnAUpD5PEJHqrbxprOBJRnp9pllnppa5WU1XE5029DVwq /hnSAb0FiWrBDLaRL70PQNNtjQkyml16KFsBQUrWBNnp9gX892yeStd0XapK9hPW vkZ5BfMNeRzvnrESBPlAV6sGdM4W+c97CM9f9SBxX314J0Q5YKqzyho8Rm59W7Y/ ZC2vZjltB9o4WGFsuyEzLNHlrnBY2r9nm7VCf54t9RRIykhoIVPMkITweIoXIYCS JwGpMjeg+7iP8KOX1owj8gr57QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBeMF7B XeCiFY5XEpLIYuje4LMmMB8GA1UdIwQYMBaAFO9sGUuyiU0z5t4GQiMtlM5OnvGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkVBMS9CRkNCODVFQzlF MTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRUUG0zZ1pDSXkyVXprNmU4 WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyd1pTN0tKVFRQbTNnWkNJeTJVems2ZThaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkVBMS9CRkNCODVFQzlFMTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRU UG0zZ1pDSXkyVXprNmU4WlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN2lJKWOBvOi7318vglvoBI8DOK4CcraCqOgm5HQWFbIEifdibEmtn 7cXYB3zeg2lwJo/l8u/B6F9Yy8E8HTATPFozRJuKA4RO8hnuoCUF+OxiwIlQU3pW 3mCAt+aqbci1ZMTRmBGula07+kmtoCBSoXwwdoXixku3bSWdgCBU0BrAKijzQ7Sf NocD1AZDLKEZ3MrgJgH++ZtgNzEC0WuCzPXgKyVK+EMZteh9aKZCezUT7d7zt+vp ZFNGZEizUTGs50huvQK1QOiHiDwLoN7XOwix2KHN7NGfZxaBJloGKCKkVk3mYh2F VdqUW46jasNhtq2Tinqy3LAz1tEm7LoK -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:25 2025 by rpki-client