$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft File: 72LxVcGXHVBJQfVx7t-sCvzFKFk.mft (raw, json) Hash identifier: ldUMtxApa3IUqeVj8gy4z4fHO8+SAdlaSL8MA16ivOA= Subject key identifier: A5:6A:E9:15:F6:15:A4:FA:0B:BB:EF:DA:28:D7:77:81:16:E0:C0:3C Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 12DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft Manifest number: 12B9 Signing time: Tue 04 Nov 2025 17:09:51 +0000 Manifest this update: Tue 04 Nov 2025 17:09:50 +0000 Manifest next update: Tue 11 Nov 2025 17:09:50 +0000 Files and hashes: 1: 72LxVcGXHVBJQfVx7t-sCvzFKFk.crl (hash: CE3soWDkgO5h9EYZ4wuLqwnXmYkWMlGp88x3Zr00QQI=) 2: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (hash: 8Neml3oC6KcoFUvC+s8BLmWMEpSAAtUFs6SqBjTSq9o=) 3: ED388A1840BB11E9A6718844C4F9AE02.roa (hash: gcGbaS+C10OxA3/sWZJEHnaLaEauoh+9kGT7bNc0D6Q=) 4: CEBECC28D38811E8A763B462C4F9AE02.roa (hash: IgiJhZRqcSbgHymfJ2UkdTHsUcRz7FOMB1+md3krEv8=) 5: 5122B56A51F311E9AB54691EC4F9AE02.roa (hash: 3BEJ1gCiaz/4ZdrE3qzkDJ5+ojL/iMHnMesKRyA+c6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4830 (0x12de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Nov 4 17:09:50 2025 GMT Not After : Nov 11 17:09:50 2025 GMT Subject: CN=690a335e-18cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cb:57:4f:06:02:38:93:17:2d:36:ec:89:3b: 0e:82:e4:09:2b:d9:3c:88:49:f6:62:f1:01:55:03: 8f:05:c2:b7:eb:77:70:5a:d8:cb:78:4d:0b:3b:57: 6f:62:9f:75:ea:80:ea:7b:95:a8:44:da:44:ba:9d: e3:c7:dd:f9:0e:c2:1b:48:cd:ba:0e:22:6d:75:ee: e4:34:16:72:59:9e:11:ca:d9:b2:67:18:5f:fe:04: a7:df:14:e5:74:c9:ef:01:95:b9:9a:cd:7e:ce:20: 55:93:5e:55:6a:cd:6d:a2:20:f6:86:5f:b7:9a:87: 59:28:d2:01:9c:9d:91:67:f4:73:be:46:0c:ca:d4: ae:7a:8f:e3:d1:1f:10:a5:3b:16:d8:c3:b7:97:da: 70:0b:11:0f:2e:ea:89:b1:c9:91:6c:2f:62:f4:a2: 93:09:ea:bd:ad:ad:d6:b8:f7:02:3f:88:55:bf:5f: 6a:a1:bd:49:01:dc:37:fb:f0:ba:d2:2c:5a:4d:c3: 54:03:4a:44:f2:8b:4c:16:1a:16:bb:19:5a:aa:3e: 64:8a:88:20:e1:e1:1b:41:23:62:1b:0d:de:a8:75: d6:44:55:7c:5b:da:2b:fa:98:93:11:ee:18:48:c6: 1e:29:1d:e0:c0:c2:53:71:7f:46:ee:04:63:3d:c4: 24:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6A:E9:15:F6:15:A4:FA:0B:BB:EF:DA:28:D7:77:81:16:E0:C0:3C X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:74:47:46:6e:f8:be:9a:8e:89:c8:b0:b8:36:7b:50:a7:f4: 08:c1:ba:2f:db:e6:a3:0d:51:9e:ea:41:01:4d:1a:ac:65:3d: 2b:53:d3:84:f2:71:c4:30:c6:a7:43:70:4c:a6:8f:cc:1f:d9: 75:90:c7:ea:ce:30:1a:98:c0:d9:1e:df:16:8c:1d:66:c9:93: 04:f6:d7:df:4e:b1:97:74:8e:9e:f7:4c:6e:ea:8e:80:d6:65: 80:5c:97:8f:78:09:91:c6:19:a8:36:0a:5b:ca:46:85:39:eb: a8:c7:cb:5a:66:7a:51:b1:ee:db:05:ca:4a:ab:8c:40:62:37: 51:7d:f5:ef:e4:fd:99:1e:24:58:95:20:58:73:ce:b8:ac:c0: 7d:57:66:dc:a9:1c:f1:4c:33:fc:51:d4:ee:4d:90:de:87:bc: f3:0d:df:b4:49:63:02:a7:fb:cb:71:0a:27:65:a2:83:9d:1d: 9e:c4:19:a6:28:32:57:d4:ef:4a:22:f7:b7:2a:1d:85:ff:6b: 45:10:2d:b9:01:85:58:3f:3c:85:b0:f2:49:28:82:ae:13:a9: 4c:eb:f4:9b:10:c8:4f:24:c5:c0:40:e9:08:77:37:9c:42:13: ae:52:97:47:86:cd:4e:46:ab:b9:a8:3a:09:c1:63:e3:98:f9: ea:4e:b7:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUxMTA0MTcwOTUwWhcNMjUxMTExMTcwOTUwWjAYMRYwFAYD VQQDEw02OTBhMzM1ZS0xOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMtXTwYCOJMXLTbsiTsOguQJK9k8iEn2YvEBVQOPBcK363dwWtjLeE0LO1dv Yp916oDqe5WoRNpEup3jx935DsIbSM26DiJtde7kNBZyWZ4RytmyZxhf/gSn3xTl dMnvAZW5ms1+ziBVk15Vas1toiD2hl+3modZKNIBnJ2RZ/RzvkYMytSueo/j0R8Q pTsW2MO3l9pwCxEPLuqJscmRbC9i9KKTCeq9ra3WuPcCP4hVv19qob1JAdw3+/C6 0ixaTcNUA0pE8otMFhoWuxlaqj5kiogg4eEbQSNiGw3eqHXWRFV8W9or+piTEe4Y SMYeKR3gwMJTcX9G7gRjPcQkRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVq6RX2 FaT6C7vv2ijXd4EW4MA8MB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU2QS8xRDY0MzI4RUQzODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhW QkpRZlZ4N3Qtc0N2ekZLRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAddEdGbvi+mo6JyLC4NntQp/QIwbov2+ajDVGe6kEBTRqsZT0rU9OE 8nHEMManQ3BMpo/MH9l1kMfqzjAamMDZHt8WjB1myZME9tffTrGXdI6e90xu6o6A 1mWAXJePeAmRxhmoNgpbykaFOeuox8taZnpRse7bBcpKq4xAYjdRffXv5P2ZHiRY lSBYc864rMB9V2bcqRzxTDP8UdTuTZDeh7zzDd+0SWMCp/vLcQonZaKDnR2exBmm KDJX1O9KIve3Kh2F/2tFEC25AYVYPzyFsPJJKIKuE6lM6/SbEMhPJMXAQOkIdzec QhOuUpdHhs1ORqu5qDoJwWPjmPnqTrft -----END CERTIFICATE-----Generated at Wed Nov 5 07:51:58 2025 by rpki-client