$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: JG5kC3b071fuq/Ylr3vFnDyOkoHIqM5/O8aEYCj6oPU= Subject key identifier: 0D:AA:10:EB:15:93:9E:6D:70:12:64:F0:5A:D8:E5:5A:30:36:F6:D1 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 04FD Signing time: Sun 02 Nov 2025 23:39:34 +0000 Manifest this update: Sun 02 Nov 2025 23:39:33 +0000 Manifest next update: Sun 09 Nov 2025 23:39:33 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: rPPo3I14bI/Vwd6NzcIC2/n7ZX2XM+u0wKS+siWbRuw=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Nov 2 23:39:33 2025 GMT Not After : Nov 9 23:39:33 2025 GMT Subject: CN=6907ebb5-b6bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c6:1b:d9:35:26:20:ab:8a:11:ff:57:27:b3: 9a:dd:b5:c2:5b:8a:a3:2a:c8:7f:5a:da:43:cf:01: d1:71:67:a0:8a:dd:e3:8c:b8:47:de:01:9a:ea:5a: 97:f2:bf:5b:27:a7:6c:8b:0d:e4:ec:74:9e:bb:69: fb:27:82:b4:2c:f5:da:9b:e2:2e:fb:8c:d0:9f:1a: e1:54:9e:c6:f9:9a:7b:a7:4e:cb:ad:ac:7b:f9:22: 6b:14:c4:20:6e:bb:84:04:94:e4:72:66:a0:c1:e4: a4:40:c1:45:bd:b2:cc:e0:c8:47:b4:0d:fb:05:77: b0:5b:f8:8d:5e:b8:db:d3:cc:23:0b:ea:2e:44:de: f1:d3:48:55:a6:39:f0:01:7b:c2:44:f0:d4:fa:21: 17:4e:88:40:77:8e:0f:53:82:c1:26:6e:89:61:b3: d5:12:44:9c:74:a1:61:98:be:bb:ed:f0:a2:95:81: 60:dc:97:03:c4:7c:d6:bc:1c:b2:bb:05:64:c9:30: 98:ae:e1:9e:ca:b7:b1:e6:8b:5a:8e:d0:9a:39:b1: 8e:30:09:32:8b:3e:23:4b:c5:0e:14:6c:c6:d5:29: de:85:f0:7d:29:8a:39:35:68:34:35:87:60:7c:c7: f6:fd:7e:a6:19:e7:13:b9:7c:23:59:4f:19:30:08: 74:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AA:10:EB:15:93:9E:6D:70:12:64:F0:5A:D8:E5:5A:30:36:F6:D1 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:a2:8e:33:12:a3:de:b3:5a:70:a3:84:19:3d:34:d2:ae:1e: 51:17:86:1a:ff:5e:8b:3b:b9:96:54:df:a2:cf:34:89:7f:88: 55:f7:92:37:da:8d:75:2f:42:a5:cc:33:b4:ad:c0:62:c7:0a: 4a:18:5c:19:35:39:50:66:83:8e:dd:59:03:0e:ee:de:a5:ec: fb:1e:dc:50:26:c8:34:b8:86:92:f0:37:1c:52:5d:33:5a:1d: 10:3c:02:af:65:b2:84:e0:23:04:0c:f6:1a:4d:17:8e:a6:25: fe:a0:e4:46:0f:9a:83:4b:91:ed:8e:a0:dd:16:d8:5e:de:9d: 47:40:02:ee:4a:ad:5c:37:f9:ed:9d:83:00:3e:c5:03:26:3e: 26:41:65:83:7b:e7:31:d7:fc:da:46:ee:6a:53:34:45:6c:af: 78:87:54:39:8a:cb:c5:2b:58:bf:9f:52:c0:e6:76:e1:c2:1f: 6c:9c:3a:f4:71:ad:b8:6d:3d:3b:2f:4b:74:7b:11:e5:1b:c6: 24:56:e6:a6:35:24:57:e2:b0:03:b7:5a:3d:78:6c:b9:24:39: d9:f4:92:0c:e5:1b:b3:fc:d4:d3:a0:18:93:94:81:80:57:f4: a0:1e:19:db:0c:43:b1:5b:d4:60:97:25:6a:09:28:54:2c:fb: bd:93:db:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUxMTAyMjMzOTMzWhcNMjUxMTA5MjMzOTMzWjAYMRYwFAYD VQQDEw02OTA3ZWJiNS1iNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cYb2TUmIKuKEf9XJ7Oa3bXCW4qjKsh/WtpDzwHRcWegit3jjLhH3gGa6lqX 8r9bJ6dsiw3k7HSeu2n7J4K0LPXam+Iu+4zQnxrhVJ7G+Zp7p07Lrax7+SJrFMQg bruEBJTkcmagweSkQMFFvbLM4MhHtA37BXewW/iNXrjb08wjC+ouRN7x00hVpjnw AXvCRPDU+iEXTohAd44PU4LBJm6JYbPVEkScdKFhmL677fCilYFg3JcDxHzWvByy uwVkyTCYruGeyrex5otajtCaObGOMAkyiz4jS8UOFGzG1SnehfB9KYo5NWg0NYdg fMf2/X6mGecTuXwjWU8ZMAh05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2qEOsV k55tcBJk8FrY5VowNvbRMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwoo4zEqPes1pwo4QZPTTSrh5RF4Ya/16LO7mWVN+izzSJf4hV95I3 2o11L0KlzDO0rcBixwpKGFwZNTlQZoOO3VkDDu7epez7HtxQJsg0uIaS8DccUl0z Wh0QPAKvZbKE4CMEDPYaTReOpiX+oORGD5qDS5HtjqDdFthe3p1HQALuSq1cN/nt nYMAPsUDJj4mQWWDe+cx1/zaRu5qUzRFbK94h1Q5isvFK1i/n1LA5nbhwh9snDr0 ca24bT07L0t0exHlG8YkVuamNSRX4rADt1o9eGy5JDnZ9JIM5Ruz/NTToBiTlIGA V/SgHhnbDEOxW9RglyVqCShULPu9k9tO -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:08 2025 by rpki-client