$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: DycYCMW5yBPyeAdmZglMd7jI+6ZVOpjeUVHmbHDAwYM= Subject key identifier: 1C:FB:DC:7A:7D:D8:55:8C:9F:4A:8A:0A:26:3D:32:B6:AF:4E:12:B3 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 058B Signing time: Sun 19 Oct 2025 00:59:53 +0000 Manifest this update: Sun 19 Oct 2025 00:59:53 +0000 Manifest next update: Sun 26 Oct 2025 00:59:53 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: fC010hFXHbsRNKT3R3p4DTu1kuQRIqTyaxrNs1TEnxU=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: KRiDfnMy2+pwD3zrIBOiDvY7T9O/jHD6MSYbIKfk0AY=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: cMsOBL01lB8MhNIvPe7EZWZhW2/NqYoBIP9IcsqTKSI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: ToNYuKjsmNUrDjM3EopYow2kRZNQw6nwL7h9Ilwq2wI=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: 9Xivq6s93mksbhu2p/H/z3gtS9/XmhNf3IMjTVy5pWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Oct 19 00:59:53 2025 GMT Not After : Oct 26 00:59:53 2025 GMT Subject: CN=68f43809-5bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:3e:d0:9f:b4:d4:bb:1b:00:da:75:ba:47: 8a:a7:c4:06:31:39:98:af:79:ef:27:8f:42:39:91: fd:8e:6e:23:b2:02:f4:f4:be:44:db:0c:46:53:db: c7:6b:d4:97:44:48:93:d4:8b:9a:54:16:c4:d2:e7: 6a:6f:52:8c:c5:67:d3:c0:95:82:bb:fc:04:c8:a4: 06:7a:fb:dc:27:05:6d:61:a6:1d:4a:0e:6a:0e:7e: 5e:df:c4:91:08:95:4d:82:3d:18:68:23:73:c2:5a: 29:93:bb:9a:69:c8:8c:3b:5b:e6:81:87:ae:84:82: 9e:a9:10:23:89:c9:30:ae:d3:57:02:04:ea:98:32: 40:63:2a:d5:1a:d4:b7:c9:31:96:21:c4:76:4d:9b: 6e:8e:f9:fe:d2:7e:1d:47:9d:d7:24:09:5c:47:13: 81:6f:b4:cb:18:42:0d:eb:76:73:e8:35:bf:b6:d8: 78:2a:ba:00:be:c6:c0:5f:01:ab:c4:52:09:b4:d0: fc:23:94:cd:90:a7:70:7b:42:53:ba:dd:73:ee:df: 27:3f:04:b2:f2:e6:3a:43:91:4b:7b:55:ba:1e:30: b7:7a:32:b5:5d:f5:0b:76:f6:c5:df:99:3e:48:c9: dc:50:64:69:33:08:ea:b3:4b:e3:69:68:5d:a7:05: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FB:DC:7A:7D:D8:55:8C:9F:4A:8A:0A:26:3D:32:B6:AF:4E:12:B3 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:97:d1:88:32:80:b3:bb:c7:e0:f4:77:44:fb:79:e5:85:da: 25:49:2a:0e:1a:30:36:fd:a9:52:b6:8d:7b:0b:8f:b0:98:4a: 8a:a1:bf:67:1f:0e:16:ee:55:f8:3d:81:a1:c2:37:af:1f:e2: 9e:cd:54:4c:26:7d:fa:a1:fc:b3:dc:40:ab:cf:9d:85:8e:61: f9:25:0f:29:82:11:37:43:43:af:1c:1e:b9:0e:f3:30:9c:76: 10:95:97:11:84:2c:bd:06:ac:a7:45:59:d1:5a:af:5b:17:b8: 62:74:46:fb:b8:24:d5:ef:ba:c7:89:fe:e3:ec:af:4f:92:c1: 7e:66:ac:7a:ed:98:01:02:b3:b2:95:5c:cd:db:52:b0:92:7e: 96:23:2d:3c:19:99:46:94:46:14:b9:b0:c0:3f:cd:61:12:e5: 71:59:eb:c4:fa:3f:39:d6:98:2d:07:65:ed:01:a8:22:bd:4e: f7:d3:64:9f:1c:d4:41:17:37:d0:09:19:64:0f:ff:46:85:41: 6e:e3:9f:e9:b3:46:52:b7:46:32:a5:5b:b0:cd:89:ff:cc:35: 40:ac:45:30:f5:e1:a2:6b:c2:21:74:06:86:5b:a5:c5:a1:52: 0a:60:c4:4b:08:5b:30:39:c7:3c:80:9a:94:6e:a4:18:8c:48: 7d:9d:71:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUxMDE5MDA1OTUzWhcNMjUxMDI2MDA1OTUzWjAYMRYwFAYD VQQDEw02OGY0MzgwOS01YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfc+0J+01LsbANp1ukeKp8QGMTmYr3nvJ49COZH9jm4jsgL09L5E2wxGU9vH a9SXREiT1IuaVBbE0udqb1KMxWfTwJWCu/wEyKQGevvcJwVtYaYdSg5qDn5e38SR CJVNgj0YaCNzwlopk7uaaciMO1vmgYeuhIKeqRAjickwrtNXAgTqmDJAYyrVGtS3 yTGWIcR2TZtujvn+0n4dR53XJAlcRxOBb7TLGEIN63Zz6DW/tth4KroAvsbAXwGr xFIJtND8I5TNkKdwe0JTut1z7t8nPwSy8uY6Q5FLe1W6HjC3ejK1XfULdvbF35k+ SMncUGRpMwjqs0vjaWhdpwWr7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBz73Hp9 2FWMn0qKCiY9MravThKzMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAl9GIMoCzu8fg9HdE+3nlhdolSSoOGjA2/alSto17C4+wmEqKob9n Hw4W7lX4PYGhwjevH+KezVRMJn36ofyz3ECrz52FjmH5JQ8pghE3Q0OvHB65DvMw nHYQlZcRhCy9BqynRVnRWq9bF7hidEb7uCTV77rHif7j7K9PksF+Zqx67ZgBArOy lVzN21Kwkn6WIy08GZlGlEYUubDAP81hEuVxWevE+j851pgtB2XtAagivU7302Sf HNRBFzfQCRlkD/9GhUFu45/ps0ZSt0YypVuwzYn/zDVArEUw9eGia8IhdAaGW6XF oVIKYMRLCFswOcc8gJqUbqQYjEh9nXHE -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:05 2025 by rpki-client