$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: 1p+UrnbhxScTSQSIILv9/FfM5469hsvX0AciAvQXD8o= Subject key identifier: D5:C7:3E:DA:A7:22:F0:D6:0D:CB:A6:D4:5E:EB:1E:D6:76:E8:58:B6 Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 3503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 34F7 Signing time: Sun 02 Nov 2025 15:01:13 +0000 Manifest this update: Sun 02 Nov 2025 15:01:13 +0000 Manifest next update: Sun 09 Nov 2025 15:01:13 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: P9AKQBDgsWCZP8HZHvB0AJuszPb5iMEfYBptG1IoBd0=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: rz7KWjBZEYdZagJgiTo6rpG1kH3c3NzFacklKm2JF8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13571 (0x3503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Nov 2 15:01:13 2025 GMT Not After : Nov 9 15:01:13 2025 GMT Subject: CN=69077239-889a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:60:5f:4e:fc:98:cb:06:f4:89:8c:6c:98:55: c6:68:7c:ee:71:01:01:82:08:14:51:ed:d7:d2:df: 3c:40:ec:65:f3:88:45:70:42:52:19:b8:4e:b4:07: 5f:7e:76:1b:33:f1:01:52:f2:da:60:4e:04:91:1d: 8c:8c:1f:c9:b5:79:49:57:44:85:1f:d0:31:32:d7: 78:e7:ee:e5:c7:58:02:aa:21:10:58:d1:bd:73:dc: 12:ed:6f:d8:5c:79:17:01:78:78:ec:e4:5c:52:ba: e8:02:96:f0:63:d6:7e:8a:dd:7e:f2:57:03:67:1e: c9:ff:59:eb:46:93:54:83:b4:d5:d1:e3:d0:20:09: cf:a2:c5:cb:53:4e:52:05:5d:58:70:dc:71:a3:86: 40:0b:25:f6:1b:38:71:58:45:b9:b7:a9:c2:4e:53: ab:9d:f8:85:65:00:04:f9:3d:54:19:4a:01:29:2a: dc:3f:88:d8:ae:86:c5:e5:1c:55:dc:85:10:2a:97: 3b:ad:7e:7a:71:4c:22:b5:1c:f0:8c:e9:33:f0:9c: 1c:50:94:c2:ab:e1:02:24:8e:b2:8b:fe:c7:07:64: d4:ce:48:4f:f7:bd:dc:49:e9:af:97:24:80:99:cb: 47:87:1c:9d:2a:db:dc:e3:97:bd:04:de:87:d0:b8: 34:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C7:3E:DA:A7:22:F0:D6:0D:CB:A6:D4:5E:EB:1E:D6:76:E8:58:B6 X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:8c:04:f9:68:45:b8:f2:65:30:2d:79:45:a5:80:df:64:53: ab:11:8b:f6:95:bb:0c:20:48:1d:ad:cf:73:c3:68:13:37:b8: 6d:8e:58:53:d9:67:85:6e:e4:3f:0c:7d:2f:71:c2:c1:f0:74: 92:73:f5:15:e2:d4:df:1e:22:ce:76:4a:b3:48:59:b0:a1:d5: b8:5e:7c:96:92:2e:47:09:f7:f5:83:47:94:98:f6:14:c6:5a: d7:fe:a5:c5:6a:20:5f:22:4e:4b:bf:f2:e4:05:15:44:e9:fa: 48:6c:cd:2f:40:1d:05:36:51:9c:b6:da:3d:e9:79:b0:5a:05: be:64:e6:80:63:1e:1d:ab:10:1c:c2:f1:ab:29:bb:da:7b:51: b4:9b:03:b8:bd:0f:78:0f:52:83:ee:c1:3c:1a:b1:cf:79:cd: 61:70:42:7c:35:d4:c9:42:15:54:66:4d:1b:5f:51:de:07:e9: ad:03:a6:d5:8b:a2:7a:56:10:56:81:9e:df:2a:83:11:a9:e4: fc:1d:a7:0b:b4:e6:bd:36:a7:6a:96:29:27:41:0a:dc:ac:ce: 9e:a7:6d:05:d5:79:69:5e:b6:ce:d9:76:0f:57:10:78:fb:b1: 1f:39:23:45:ed:dd:b9:86:c4:99:2b:37:aa:30:8c:c8:89:e5: 53:c1:f5:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUxMTAyMTUwMTEzWhcNMjUxMTA5MTUwMTEzWjAYMRYwFAYD VQQDEw02OTA3NzIzOS04ODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmBfTvyYywb0iYxsmFXGaHzucQEBgggUUe3X0t88QOxl84hFcEJSGbhOtAdf fnYbM/EBUvLaYE4EkR2MjB/JtXlJV0SFH9AxMtd45+7lx1gCqiEQWNG9c9wS7W/Y XHkXAXh47ORcUrroApbwY9Z+it1+8lcDZx7J/1nrRpNUg7TV0ePQIAnPosXLU05S BV1YcNxxo4ZACyX2GzhxWEW5t6nCTlOrnfiFZQAE+T1UGUoBKSrcP4jYrobF5RxV 3IUQKpc7rX56cUwitRzwjOkz8JwcUJTCq+ECJI6yi/7HB2TUzkhP973cSemvlySA mctHhxydKtvc45e9BN6H0Lg0swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXHPtqn IvDWDcum1F7rHtZ26Fi2MB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNjAT5aEW48mUwLXlFpYDfZFOrEYv2lbsMIEgdrc9zw2gTN7htjlhT 2WeFbuQ/DH0vccLB8HSSc/UV4tTfHiLOdkqzSFmwodW4XnyWki5HCff1g0eUmPYU xlrX/qXFaiBfIk5Lv/LkBRVE6fpIbM0vQB0FNlGctto96XmwWgW+ZOaAYx4dqxAc wvGrKbvae1G0mwO4vQ94D1KD7sE8GrHPec1hcEJ8NdTJQhVUZk0bX1HeB+mtA6bV i6J6VhBWgZ7fKoMRqeT8HacLtOa9NqdqliknQQrcrM6ep20F1XlpXrbO2XYPVxB4 +7EfOSNF7d25hsSZKzeqMIzIieVTwfV3 -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:44 2025 by rpki-client