$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: yCAGq5c1YzRh+nIblg5OHGjoFEpbPszsu9gRyaZXRPY= Subject key identifier: 98:91:6F:D5:51:1C:6C:D9:93:99:77:AD:B9:13:4B:A8:D0:9A:29:8E Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: 59 Signing time: Sun 19 Oct 2025 10:35:58 +0000 Manifest this update: Sun 19 Oct 2025 10:35:56 +0000 Manifest next update: Sun 26 Oct 2025 10:35:56 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: c/skih4X7XDQ4MafnJDvMEQQuJKXADdACEakRP58CkQ=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: boAAaQY0nzMtC8MdALGWU7uiMFPgsCoPJLOiVmNOgmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Oct 19 10:35:56 2025 GMT Not After : Oct 26 10:35:56 2025 GMT Subject: CN=68f4bf0d-2635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:d1:96:c8:78:5f:8d:75:05:f5:7b:f8:71: bf:2c:44:71:4f:4f:fb:64:a1:c1:2c:90:79:0d:59: 80:73:49:48:6f:d9:6a:76:ab:10:c2:87:bc:3e:1a: 45:12:ca:5b:2f:06:54:e6:c4:c6:a4:b2:d6:62:ee: 53:af:84:13:f7:f7:23:52:49:3f:e3:75:d1:d5:43: 11:ac:be:80:7a:b3:f3:bb:a4:fa:f6:9f:cb:5c:8d: 81:36:c7:95:78:d3:97:75:8e:00:3a:b6:94:a7:0e: 3a:3a:7d:b4:6c:ad:a8:ba:65:fe:2e:e1:7a:07:92: 82:43:78:08:3e:91:c3:0a:e1:19:34:71:9d:5e:5d: fa:01:cd:54:a4:e3:eb:62:ea:da:dd:d7:a0:e9:78: 5e:32:4e:bd:24:a4:2c:a7:a6:2d:25:52:d8:92:fd: 19:20:1e:23:fe:89:0f:b5:3d:71:8a:20:cb:2e:0a: d8:90:8e:d7:12:63:13:de:8a:4d:02:5c:e4:bf:b4: 67:4d:46:24:43:4d:bb:55:51:fc:89:5f:61:55:1e: d2:3a:1f:4d:44:bf:bb:06:d8:c2:51:6a:b1:f8:4c: 57:71:6b:95:3b:0b:a6:bb:22:83:5d:8f:91:d0:a4: f3:74:fc:d6:e0:58:37:cc:9f:df:ad:52:e6:c1:45: d2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:91:6F:D5:51:1C:6C:D9:93:99:77:AD:B9:13:4B:A8:D0:9A:29:8E X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ef:41:c8:ab:19:c6:96:7d:87:ef:c6:f3:4d:06:f8:1f:26: d5:a4:a9:0b:82:69:3b:39:7e:63:ed:75:6c:01:2f:1a:9f:e3: 12:ff:53:0d:e4:71:7c:8e:03:d9:18:48:fa:58:03:15:d0:52: fe:c5:77:a7:8c:3e:13:ab:2f:19:38:0f:ba:1f:69:f4:f7:0e: 54:a6:fe:8a:83:77:32:bc:c4:9d:bd:de:45:5d:04:96:cd:f8: 3f:d9:96:11:26:a5:ce:c5:26:46:2d:af:c9:fc:2b:53:6d:9d: af:f7:5e:46:69:5c:6b:f7:b1:03:1a:11:aa:fc:fd:aa:d4:85: e6:97:83:1b:e7:20:a0:8f:8f:85:29:54:9a:b7:91:21:4c:8b: 81:94:c6:66:d6:59:7d:67:48:8f:a4:3e:4f:36:b9:87:05:70: 3c:77:e0:05:52:e1:d5:c8:57:62:43:fc:64:10:bb:f0:5d:96: 87:b9:4b:6b:0d:ab:6b:3f:39:75:36:ed:bb:c8:6f:57:67:88: 47:26:a6:db:5c:bf:a6:2d:92:ba:b8:b8:be:8f:16:78:b3:76: c8:4f:d5:f2:8d:ee:7c:ad:2e:33:2d:a9:ab:f4:0f:ba:ac:ab: 2e:ce:98:68:04:b8:29:63:18:ce:84:b0:6a:3f:97:5f:e4:fc: e7:c5:22:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkZEOTExMC8GA1UEBRMoOTcyQjkwRDlDNTE5MjI1NkFEOTY0NzVCMzkyQkFCMUE3 QTc5Q0MyRDAeFw0yNTEwMTkxMDM1NTZaFw0yNTEwMjYxMDM1NTZaMBgxFjAUBgNV BAMTDTY4ZjRiZjBkLTI2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX69GWyHhfjXUF9Xv4cb8sRHFPT/tkocEskHkNWYBzSUhv2Wp2qxDCh7w+GkUS ylsvBlTmxMakstZi7lOvhBP39yNSST/jddHVQxGsvoB6s/O7pPr2n8tcjYE2x5V4 05d1jgA6tpSnDjo6fbRsrai6Zf4u4XoHkoJDeAg+kcMK4Rk0cZ1eXfoBzVSk4+ti 6trd16DpeF4yTr0kpCynpi0lUtiS/RkgHiP+iQ+1PXGKIMsuCtiQjtcSYxPeik0C XOS/tGdNRiRDTbtVUfyJX2FVHtI6H01Ev7sG2MJRarH4TFdxa5U7C6a7IoNdj5HQ pPN0/NbgWDfMn9+tUubBRdLNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmJFv1VEc bNmTmXetuRNLqNCaKY4wHwYDVR0jBBgwFoAUlyuQ2cUZIlatlkdbOSurGnp5zC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRkQ5LzdGOUE3MDM0MkJC NTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHl1UTJjVVpJbGF0bGtkYk9TdXJHbnA1ekMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy RkQ5LzdGOUE3MDM0MkJCNTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxh dGxrZGJPU3VyR25wNXpDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI3vQcirGcaWfYfvxvNNBvgfJtWkqQuCaTs5fmPtdWwBLxqf4xL/Uw3k cXyOA9kYSPpYAxXQUv7Fd6eMPhOrLxk4D7ofafT3DlSm/oqDdzK8xJ293kVdBJbN +D/ZlhEmpc7FJkYtr8n8K1Ntna/3XkZpXGv3sQMaEar8/arUheaXgxvnIKCPj4Up VJq3kSFMi4GUxmbWWX1nSI+kPk82uYcFcDx34AVS4dXIV2JD/GQQu/Bdloe5S2sN q2s/OXU27bvIb1dniEcmpttcv6Ytkrq4uL6PFnizdshP1fKN7nytLjMtqav0D7qs qy7OmGgEuCljGM6EsGo/l1/k/OfFIhU= -----END CERTIFICATE-----Generated at Tue Oct 21 06:27:06 2025 by rpki-client