$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft File: x8206hgWXlmC0KkZ_0f3JnbgUHM.mft (raw, json) Hash identifier: YJeqaquhoT15TGOV1H/xP3lsKma/n8jtayLpVVmLhsM= Subject key identifier: 4F:AA:D2:55:70:8A:77:73:30:12:C4:AF:9C:DA:50:FF:EC:89:7F:8C Authority key identifier: C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 Certificate issuer: /CN=A91FBEFA/serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft Manifest number: 72 Signing time: Mon 03 Nov 2025 06:54:09 +0000 Manifest this update: Mon 03 Nov 2025 06:54:08 +0000 Manifest next update: Mon 10 Nov 2025 06:54:08 +0000 Files and hashes: 1: x8206hgWXlmC0KkZ_0f3JnbgUHM.crl (hash: 8eOwZ7I46qSYLvoXymJAzlqOFaWYTEsboYfe4Qm5L0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Validity Not Before: Nov 3 06:54:08 2025 GMT Not After : Nov 10 06:54:08 2025 GMT Subject: CN=69085190-a4fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c8:6f:70:84:3a:b6:77:8e:7d:8f:57:0e:37: f5:8a:5f:3a:b1:b8:be:aa:07:c0:84:bb:87:5e:f8: cc:c7:f0:f4:71:de:21:5b:f1:cf:80:6d:78:36:ff: ce:f8:c9:11:34:be:8d:cd:a4:66:01:b5:92:6b:11: bd:0b:05:1a:cc:09:bb:e4:5b:9e:e6:61:f1:03:a7: ad:32:a7:80:32:be:8d:52:c1:cc:f1:a0:99:ba:e8: 32:ee:76:87:5d:09:da:84:fc:4e:d3:67:4b:fc:10: 08:a1:8e:b0:b5:8f:32:24:39:9e:0f:ba:ab:87:6b: e0:ae:fd:a3:d0:f2:3c:21:ea:0b:eb:72:38:5b:a0: cb:3e:7f:78:c8:86:c0:6b:0e:cc:86:04:d3:8d:f8: 36:cd:09:b0:84:c7:a0:82:2c:3a:a2:94:9b:5a:e5: 29:8a:67:55:b3:f1:56:8a:f7:9c:22:d8:7d:d5:fb: 56:61:c8:35:b2:71:76:37:95:f4:4a:22:2c:b2:c9: de:9c:cf:fe:cd:e7:48:7a:e8:1d:8f:e4:75:fe:d2: 83:5d:1f:af:a3:30:af:17:f9:3b:c2:24:35:bb:3c: 6f:78:af:b3:cd:85:bf:b7:16:93:21:7a:b8:b7:ce: cb:c3:48:b1:2b:ac:94:f2:d4:2c:59:d9:3b:7b:fb: 75:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AA:D2:55:70:8A:77:73:30:12:C4:AF:9C:DA:50:FF:EC:89:7F:8C X509v3 Authority Key Identifier: keyid:C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c4:6e:99:ea:02:1e:91:ef:da:93:db:ec:f7:ab:37:d1:73: d9:f8:88:1d:c5:bc:ca:fc:15:a1:63:98:14:c6:1c:9c:aa:e8: 9a:0c:25:27:c4:4b:5a:45:36:5a:18:1c:7f:24:cd:a7:ae:2e: d9:cd:cc:8e:aa:aa:9e:86:45:6d:2f:32:23:d6:ae:77:c7:99: f3:f8:b1:ff:c4:e0:e9:08:5b:57:cf:ba:e8:7e:f6:2b:5b:09: b9:09:f6:f9:ac:30:5e:21:4b:0c:dd:d8:4b:88:77:a1:d6:a6: f9:9e:33:c7:fa:c2:3a:2f:e0:e5:55:d9:6c:f8:77:dc:ab:e1: 23:66:5f:24:da:d5:18:e5:c2:8a:6c:a5:c3:78:73:f4:b2:7e: 4e:e1:da:6f:5b:98:99:c4:9d:c1:43:ab:59:bd:84:df:ac:38: 08:f6:6a:50:55:c8:53:37:29:02:a9:be:d1:7d:12:a5:b8:9f: 9c:4a:21:fd:b8:bb:ce:89:8b:d9:52:a6:93:10:6d:53:19:4d: 4c:27:40:9e:a9:18:9f:9c:e8:ce:81:04:ca:02:ae:45:84:e1: 8f:39:a5:78:cb:5f:6a:9f:ad:b6:28:47:da:9d:f2:60:e9:77: 59:81:56:be:c5:4c:29:9f:6c:6d:49:a6:28:88:85:fa:80:9c: a4:ac:66:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkVGQTExMC8GA1UEBRMoQzdDREI0RUExODE2NUU1OTgyRDBBOTE5RkY0N0Y3MjY3 NkUwNTA3MzAeFw0yNTExMDMwNjU0MDhaFw0yNTExMTAwNjU0MDhaMBgxFjAUBgNV BAMTDTY5MDg1MTkwLWE0ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbyG9whDq2d459j1cON/WKXzqxuL6qB8CEu4de+MzH8PRx3iFb8c+AbXg2/874 yRE0vo3NpGYBtZJrEb0LBRrMCbvkW57mYfEDp60yp4Ayvo1SwczxoJm66DLudodd CdqE/E7TZ0v8EAihjrC1jzIkOZ4PuquHa+Cu/aPQ8jwh6gvrcjhboMs+f3jIhsBr DsyGBNON+DbNCbCEx6CCLDqilJta5SmKZ1Wz8VaK95wi2H3V+1ZhyDWycXY3lfRK Iiyyyd6cz/7N50h66B2P5HX+0oNdH6+jMK8X+TvCJDW7PG94r7PNhb+3FpMheri3 zsvDSLErrJTy1CxZ2Tt7+3VtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT6rSVXCK d3MwEsSvnNpQ/+yJf4wwHwYDVR0jBBgwFoAUx8206hgWXlmC0KkZ/0f3JnbgUHMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRUZBLzE3MjU0NkJDMEIz NzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxtQzBLa1pfMGYzSm5iZ1VI TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDgyMDZoZ1dYbG1DMEtrWl8wZjNKbmJnVUhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RUZBLzE3MjU0NkJDMEIzNzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxt QzBLa1pfMGYzSm5iZ1VITS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACTEbpnqAh6R79qT2+z3qzfRc9n4iB3FvMr8FaFjmBTGHJyq6JoMJSfE S1pFNloYHH8kzaeuLtnNzI6qqp6GRW0vMiPWrnfHmfP4sf/E4OkIW1fPuuh+9itb CbkJ9vmsMF4hSwzd2EuId6HWpvmeM8f6wjov4OVV2Wz4d9yr4SNmXyTa1Rjlwops pcN4c/Syfk7h2m9bmJnEncFDq1m9hN+sOAj2alBVyFM3KQKpvtF9EqW4n5xKIf24 u86Ji9lSppMQbVMZTUwnQJ6pGJ+c6M6BBMoCrkWE4Y85pXjLX2qfrbYoR9qd8mDp d1mBVr7FTCmfbG1JpiiIhfqAnKSsZko= -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:19 2025 by rpki-client