$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft File: 72cCp9CuyDTe-49BaLL-j01YQ-g.mft (raw, json) Hash identifier: 6q+mf0DWXuOrf9TDuy7YV7xRQRZxxPC781xvr6GbHrE= Subject key identifier: 5B:E9:29:6B:E5:1B:43:21:F0:BB:FF:94:85:A2:93:12:DC:15:DB:0A Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft Manifest number: 01C2 Signing time: Mon 03 Nov 2025 03:17:43 +0000 Manifest this update: Mon 03 Nov 2025 03:17:42 +0000 Manifest next update: Mon 10 Nov 2025 03:17:42 +0000 Files and hashes: 1: 72cCp9CuyDTe-49BaLL-j01YQ-g.crl (hash: iZpZAbeJsXjvfvpM5tld89vCOmWvhT7QT1f0/s5BUBU=) 2: 3E734F70B9A311EE85D60B49C4F9AE02.roa (hash: 9gR2lRbVVIU22KEWmoGtOBdRGANvKvJYg+mYVptNNuo=) 3: C3835BF6B9A311EEB293524AC4F9AE02.roa (hash: UlpJBRG/slW4YmDu7jI0m8GwClz9FqM/W/iTuDuu4YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E, serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Nov 3 03:17:42 2025 GMT Not After : Nov 10 03:17:42 2025 GMT Subject: CN=69081ed6-8d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0e:8e:be:31:ef:0d:ec:8f:1d:7c:4c:50:6d: ec:e7:d3:f4:49:5f:45:99:db:36:3c:a4:17:2b:19: 46:14:a4:55:92:40:4e:70:98:fd:c9:cf:ce:15:44: ad:5a:47:8c:cd:7b:02:fe:7e:9b:9a:3e:29:92:3a: fa:ca:07:01:70:6a:ca:5c:60:5c:80:d6:f3:ed:e1: cd:95:44:0a:3d:31:51:e9:7b:e0:b4:72:ac:26:37: 4a:5c:e2:f2:a4:d2:ae:31:c6:17:e6:1c:b8:8f:91: c9:d4:e4:05:5e:7c:2a:75:c6:35:e3:a6:c2:e3:27: ec:e2:ec:23:89:d8:2c:0a:cb:bc:43:fa:28:0f:96: e9:67:43:c4:e3:73:c2:de:f7:ed:69:43:5b:e9:15: b8:08:a5:c7:1c:8b:4b:74:b8:22:7d:b1:0c:e5:02: 41:a4:4d:80:03:fd:c2:c4:1d:f9:8a:45:31:b6:95: a1:ab:9a:9d:19:fa:01:7d:b9:94:b8:bf:19:dc:a8: 3f:c3:d9:a8:b1:11:1d:0f:41:91:c4:ec:b2:7b:13: 21:81:c7:46:c1:16:c3:90:8b:98:57:29:71:a4:33: 1b:4a:13:01:82:74:5b:28:09:7f:4a:08:95:26:8f: c1:64:06:c4:35:e7:54:3d:8f:ea:7e:f2:f7:6c:da: 21:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E9:29:6B:E5:1B:43:21:F0:BB:FF:94:85:A2:93:12:DC:15:DB:0A X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:fd:f9:14:b6:5c:1a:54:5c:86:f0:bb:94:25:77:01:cf:64: 4f:32:15:73:b4:39:2c:5c:9f:7d:22:32:f5:95:cc:5e:e9:d3: 6a:79:2b:fd:29:ba:b2:3a:66:8c:34:f8:2c:08:42:b8:e4:b2: 6e:ca:6d:ca:dc:63:3d:d4:73:7a:f2:54:df:2b:0c:8e:4d:fe: 88:d4:6d:df:f6:ea:5c:9f:16:3b:66:3d:b5:8b:fb:f2:b2:f0: ef:d6:a5:85:56:07:0a:6c:a3:2a:62:a2:99:06:21:ff:0a:ef: d6:db:6a:52:77:6f:d6:2d:f3:bb:25:ed:03:f2:c8:4a:f1:c3: 36:a2:58:c8:6a:7a:4d:2a:74:34:82:9e:5c:97:9c:80:b4:67: ab:53:64:0c:2e:2b:b3:8b:ae:ff:fe:5a:3a:42:b4:6c:02:75: 01:53:fb:f4:0f:8c:cb:bf:bc:fc:0b:c9:66:f8:14:f2:1c:a7: 4a:a2:4d:04:cf:ce:79:28:4f:41:39:63:b9:b5:60:9e:a8:64: c8:0e:ca:1d:16:5e:b5:06:66:d7:7c:16:65:d0:14:5d:41:79: 2d:6c:0c:32:8d:dc:5b:10:d6:fc:ab:81:7e:de:57:14:a8:78: c9:eb:75:c2:ef:5d:9b:ed:39:d8:09:63:fa:99:d5:a9:b0:d1: dc:f5:12:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjUxMTAzMDMxNzQyWhcNMjUxMTEwMDMxNzQyWjAYMRYwFAYD VQQDEw02OTA4MWVkNi04ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0g6OvjHvDeyPHXxMUG3s59P0SV9Fmds2PKQXKxlGFKRVkkBOcJj9yc/OFUSt WkeMzXsC/n6bmj4pkjr6ygcBcGrKXGBcgNbz7eHNlUQKPTFR6XvgtHKsJjdKXOLy pNKuMcYX5hy4j5HJ1OQFXnwqdcY146bC4yfs4uwjidgsCsu8Q/ooD5bpZ0PE43PC 3vftaUNb6RW4CKXHHItLdLgifbEM5QJBpE2AA/3CxB35ikUxtpWhq5qdGfoBfbmU uL8Z3Kg/w9mosREdD0GRxOyyexMhgcdGwRbDkIuYVylxpDMbShMBgnRbKAl/SgiV Jo/BZAbENedUPY/qfvL3bNoh+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvpKWvl G0Mh8Lv/lIWikxLcFdsKMB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyRS9EQzMzNTk3QzBCNjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlE VGUtNDlCYUxMLWowMVlRLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt/fkUtlwaVFyG8LuUJXcBz2RPMhVztDksXJ99IjL1lcxe6dNqeSv9 KbqyOmaMNPgsCEK45LJuym3K3GM91HN68lTfKwyOTf6I1G3f9upcnxY7Zj21i/vy svDv1qWFVgcKbKMqYqKZBiH/Cu/W22pSd2/WLfO7Je0D8shK8cM2oljIanpNKnQ0 gp5cl5yAtGerU2QMLiuzi67//lo6QrRsAnUBU/v0D4zLv7z8C8lm+BTyHKdKok0E z855KE9BOWO5tWCeqGTIDsodFl61BmbXfBZl0BRdQXktbAwyjdxbENb8q4F+3lcU qHjJ63XC712b7TnYCWP6mdWpsNHc9RKA -----END CERTIFICATE-----Generated at Tue Nov 4 13:52:41 2025 by rpki-client