$ rpki-client -vvf rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft File: wfSjmGHK0883hCGN7aegXoUvIn8.mft (raw, json) Hash identifier: WOxYHh8nC9cUDafIQASBV362A1G0PYLQfN/HuL8KRc0= Subject key identifier: F2:B1:DF:85:B5:3C:43:AC:BD:2E:DA:CC:82:30:0C:07:9C:2C:E0:E4 Authority key identifier: C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F Certificate issuer: /CN=A912DB97/serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft Manifest number: 72 Signing time: Mon 03 Nov 2025 06:53:43 +0000 Manifest this update: Mon 03 Nov 2025 06:53:43 +0000 Manifest next update: Mon 10 Nov 2025 06:53:43 +0000 Files and hashes: 1: wfSjmGHK0883hCGN7aegXoUvIn8.crl (hash: okp4CboHquCrQkkcpvVfToAStbKUmIO7mQE90IbmWgA=) 2: 28F87D180A1611F0BC8FD10DC4F9AE02.roa (hash: kwR4HiPzGhpK5SEPo+ThTcF7apxZuPZzTOyt4h1UDag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DB97, serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Validity Not Before: Nov 3 06:53:43 2025 GMT Not After : Nov 10 06:53:43 2025 GMT Subject: CN=69085177-7685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:69:ac:c7:fe:ba:52:bc:ae:52:70:24:2a: 65:d5:3d:55:52:f3:a4:3f:83:e2:9a:5d:cd:4a:e6: 19:52:22:cc:6c:46:02:26:88:94:6f:09:a0:51:26: 01:9f:1d:9b:1a:d1:0e:2b:b3:64:55:ef:95:f4:36: 8d:5a:df:a4:1e:16:ef:ef:34:51:1f:fc:2d:91:30: bf:95:c9:b8:61:e0:04:fb:7e:69:fc:36:71:d7:8a: 06:63:f4:9f:e1:3c:e1:7c:2d:a9:1f:49:43:e7:b6: cf:1f:6e:3b:c8:8e:c3:ca:38:b5:7c:60:ca:55:38: b2:31:df:6e:01:0b:35:08:2e:79:29:28:97:ea:ef: d8:94:2f:9e:df:1b:c0:bc:89:bf:02:2d:42:c9:a6: 99:4d:59:4e:16:35:30:78:23:ad:30:55:2b:c1:1d: ab:68:79:fb:1c:57:23:9e:f6:88:86:97:f5:21:a5: 94:30:fe:c4:c9:10:31:8d:cb:ad:eb:38:65:40:ca: a5:55:74:4b:1d:1f:d3:2e:fc:80:f9:55:2a:d6:00: 62:31:ed:81:7d:fb:ce:9a:58:4a:d3:1c:a7:a2:38: c6:02:96:b2:71:a3:e1:d3:7a:fb:22:1b:a9:9f:ee: 38:a0:b3:62:2a:ca:70:72:3b:1a:1f:92:61:19:01: b5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B1:DF:85:B5:3C:43:AC:BD:2E:DA:CC:82:30:0C:07:9C:2C:E0:E4 X509v3 Authority Key Identifier: keyid:C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:bc:35:5e:18:06:78:09:26:df:c7:6d:89:be:b3:43:58:64: 37:82:28:f5:05:bb:5b:25:52:e5:40:5b:db:16:1e:31:12:17: 00:17:3b:c5:23:db:97:e5:ab:d9:ce:55:e5:f8:c9:9a:60:5f: 88:02:73:10:62:5d:ac:41:b0:cd:3f:c5:29:bd:5e:5d:fe:ca: e8:92:95:e2:20:30:69:c6:ff:b6:68:82:99:9e:1d:45:c0:e2: 03:c9:72:44:89:f9:54:23:c9:a5:8d:79:6b:81:b5:2c:f0:08: 03:a4:3f:68:6f:41:95:38:ea:a5:0c:1f:5d:bd:9c:2b:bd:dc: de:2d:36:74:33:26:ee:f7:34:20:1a:80:95:bd:85:82:cc:3e: c1:a2:6a:30:0c:04:e6:9d:81:18:78:82:e9:a4:69:40:20:0c: f8:f1:53:6d:e2:0f:14:7a:a1:83:17:af:53:e9:9d:31:19:ad: 17:fd:4b:5e:16:43:ae:28:a1:7d:e4:6d:b7:17:93:85:8e:72: d9:ab:ba:7c:db:c3:37:3a:e2:1a:11:9c:92:dd:18:da:c5:fc: 76:b1:c4:b1:54:b1:02:c8:12:61:b2:ec:bc:37:a1:56:d1:3b: b1:b5:ad:37:d0:b9:dd:9e:0b:d8:7d:3b:78:d3:79:2b:08:77: 3f:7d:b5:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REI5NzExMC8GA1UEBRMoQzFGNEEzOTg2MUNBRDNDRjM3ODQyMThERURBN0EwNUU4 NTJGMjI3RjAeFw0yNTExMDMwNjUzNDNaFw0yNTExMTAwNjUzNDNaMBgxFjAUBgNV BAMTDTY5MDg1MTc3LTc2ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC552msx/66UryuUnAkKmXVPVVS86Q/g+KaXc1K5hlSIsxsRgImiJRvCaBRJgGf HZsa0Q4rs2RV75X0No1a36QeFu/vNFEf/C2RML+Vybhh4AT7fmn8NnHXigZj9J/h POF8LakfSUPnts8fbjvIjsPKOLV8YMpVOLIx324BCzUILnkpKJfq79iUL57fG8C8 ib8CLULJpplNWU4WNTB4I60wVSvBHatoefscVyOe9oiGl/UhpZQw/sTJEDGNy63r OGVAyqVVdEsdH9Mu/ID5VSrWAGIx7YF9+86aWErTHKeiOMYClrJxo+HTevsiG6mf 7jigs2IqynByOxofkmEZAbXrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8rHfhbU8 Q6y9LtrMgjAMB5ws4OQwHwYDVR0jBBgwFoAUwfSjmGHK0883hCGN7aegXoUvIn8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJEQjk3LzVEOEI1MjY0MEEx NDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4M2hDR043YWVnWG9Vdklu OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2ZTam1HSEswODgzaENHTjdhZWdYb1V2SW44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE Qjk3LzVEOEI1MjY0MEExNDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4 M2hDR043YWVnWG9VdkluOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKS8NV4YBngJJt/HbYm+s0NYZDeCKPUFu1slUuVAW9sWHjESFwAXO8Uj 25flq9nOVeX4yZpgX4gCcxBiXaxBsM0/xSm9Xl3+yuiSleIgMGnG/7ZogpmeHUXA 4gPJckSJ+VQjyaWNeWuBtSzwCAOkP2hvQZU46qUMH129nCu93N4tNnQzJu73NCAa gJW9hYLMPsGiajAMBOadgRh4gumkaUAgDPjxU23iDxR6oYMXr1PpnTEZrRf9S14W Q64ooX3kbbcXk4WOctmrunzbwzc64hoRnJLdGNrF/HaxxLFUsQLIEmGy7Lw3oVbR O7G1rTfQud2eC9h9O3jTeSsIdz99tXQ= -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:34 2025 by rpki-client