$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: PblZ/qGLhDLdWcSWoENEHGcVWpoD8goxqEc2O9Tdttk= Subject key identifier: F0:10:41:68:68:9C:FF:8C:03:8D:46:51:E0:2C:EE:78:80:D7:F8:18 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0C96 Signing time: Sat 18 Oct 2025 19:02:32 +0000 Manifest this update: Sat 18 Oct 2025 19:02:31 +0000 Manifest next update: Sat 25 Oct 2025 19:02:31 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: 5HjQqCHJ9UIV8hlSIY6NeGolWeuC+d/lbAM3FZWK7C0=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: dRoQPSF6KT1Zue8dq53bmaroAkFylgM4n0LR39Z/E84=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: 14kB3SfK8FO3TDcXjwd2x1V5vnXFwADnDTKaZlPfI5E=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: /7EkCVyzyWdgaZFFu1ty8sDFh13rW+8i+NvNFe/0Rfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Oct 18 19:02:31 2025 GMT Not After : Oct 25 19:02:31 2025 GMT Subject: CN=68f3e447-ede5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:fa:83:b2:a4:89:b0:5f:d5:bd:c8:a5:19:59: d2:d5:67:82:b3:d3:90:a9:3f:1b:9f:01:15:0c:85: c1:c4:23:35:6e:0e:c0:32:71:20:8f:8d:3c:e6:e8: 74:36:4d:da:33:70:87:76:9a:35:3b:1a:e5:e9:8e: 0e:97:39:89:31:b1:1d:71:fa:d1:96:49:1b:c0:f1: 5f:45:6e:8d:c4:03:41:de:05:c8:84:89:5e:39:ec: f1:61:69:0e:4e:8b:74:23:86:80:84:88:42:48:11: 11:d1:87:e9:1e:5d:64:fd:42:d9:e8:1c:ed:40:85: 91:79:f3:f3:a2:d0:4b:a0:ce:11:cd:d2:3d:d9:cc: 8d:a3:33:73:7d:37:7d:59:70:66:b8:09:c1:b7:f7: c7:a4:30:8f:b6:63:68:22:0c:59:72:04:f8:41:b9: e8:f5:e2:b3:c0:3c:05:1d:2d:52:12:84:03:20:43: 2e:5b:46:19:9e:8b:8d:53:07:ac:ab:93:f4:54:ba: 43:3f:4e:be:c4:2b:a2:36:8d:d1:26:75:f0:21:13: d2:24:23:e8:a4:9d:db:12:48:05:c7:5d:5b:a3:3b: d7:ee:21:98:5f:c0:14:86:fe:f2:af:67:2f:5e:79: 24:19:77:5a:0e:ee:49:c4:95:b6:b9:f1:1e:14:10: dd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:10:41:68:68:9C:FF:8C:03:8D:46:51:E0:2C:EE:78:80:D7:F8:18 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:82:1f:ba:7b:8e:90:93:14:8c:f5:38:d3:91:bf:93:fd:10: 6f:70:65:b8:38:c9:49:7b:65:dd:c7:3d:47:87:e2:04:65:3f: 4c:26:4c:7b:93:99:df:ed:3d:a0:f1:15:16:f3:4d:60:89:a7: ee:75:fe:cd:0d:6c:50:37:2b:27:e0:da:59:77:01:e1:ce:0d: be:29:7c:6c:d4:38:60:c0:0e:81:e3:5c:84:3d:64:de:61:8c: 9a:98:d5:93:2a:a9:b3:2b:d7:f3:71:97:38:e2:d7:be:07:9b: 03:c8:97:41:04:4e:27:53:61:bb:7a:db:43:36:8d:fe:1c:65: 9f:3c:26:f9:d3:eb:d6:0b:78:d3:8c:15:df:55:8e:a5:a9:fe: 0e:43:bc:87:67:fa:63:c2:d4:29:0d:2a:cc:7e:4d:b1:03:65: 02:ff:aa:12:93:12:4d:4d:8b:e6:aa:b4:37:91:62:20:f0:fb: 06:76:21:eb:bb:ab:08:4c:aa:74:b8:03:7d:64:10:53:90:cb: 44:e6:e0:38:36:f9:ef:ab:96:b5:35:50:f8:f9:db:a5:6b:29: 05:9d:5f:f0:88:d5:9c:79:f6:70:dc:7d:c8:4a:86:f5:68:53: df:dd:3a:b3:0a:9e:86:87:54:35:a6:78:03:c8:c5:eb:e6:3c: e4:d4:db:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjUxMDE4MTkwMjMxWhcNMjUxMDI1MTkwMjMxWjAYMRYwFAYD VQQDEw02OGYzZTQ0Ny1lZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/qDsqSJsF/VvcilGVnS1WeCs9OQqT8bnwEVDIXBxCM1bg7AMnEgj4085uh0 Nk3aM3CHdpo1Oxrl6Y4OlzmJMbEdcfrRlkkbwPFfRW6NxANB3gXIhIleOezxYWkO Tot0I4aAhIhCSBER0YfpHl1k/ULZ6BztQIWRefPzotBLoM4RzdI92cyNozNzfTd9 WXBmuAnBt/fHpDCPtmNoIgxZcgT4Qbno9eKzwDwFHS1SEoQDIEMuW0YZnouNUwes q5P0VLpDP06+xCuiNo3RJnXwIRPSJCPopJ3bEkgFx11bozvX7iGYX8AUhv7yr2cv XnkkGXdaDu5JxJW2ufEeFBDd+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAQQWho nP+MA41GUeAs7niA1/gYMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXgh+6e46QkxSM9TjTkb+T/RBvcGW4OMlJe2Xdxz1Hh+IEZT9MJkx7 k5nf7T2g8RUW801giafudf7NDWxQNysn4NpZdwHhzg2+KXxs1DhgwA6B41yEPWTe YYyamNWTKqmzK9fzcZc44te+B5sDyJdBBE4nU2G7ettDNo3+HGWfPCb50+vWC3jT jBXfVY6lqf4OQ7yHZ/pjwtQpDSrMfk2xA2UC/6oSkxJNTYvmqrQ3kWIg8PsGdiHr u6sITKp0uAN9ZBBTkMtE5uA4Nvnvq5a1NVD4+dulaykFnV/wiNWcefZw3H3ISob1 aFPf3TqzCp6Gh1Q1pngDyMXr5jzk1Nsw -----END CERTIFICATE-----Generated at Mon Oct 20 00:12:03 2025 by rpki-client