$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: +MOJxYWrAHBTQEd59URkugyG+tnUxpY8gn4Gh8z6OAU= Subject key identifier: 03:92:45:E0:7A:B9:45:10:3A:3F:2B:3A:7E:51:CA:3F:72:49:7E:A5 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 06FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 06F7 Signing time: Sat 18 Oct 2025 23:23:56 +0000 Manifest this update: Sat 18 Oct 2025 23:23:55 +0000 Manifest next update: Sat 25 Oct 2025 23:23:55 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: SlSEkEzKG7WLxfQs+KVSe7L7DdUQswXlbsZhOZv5GI4=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Oct 18 23:23:55 2025 GMT Not After : Oct 25 23:23:55 2025 GMT Subject: CN=68f4218b-2602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:78:9d:f2:92:58:14:3f:26:29:ab:52:93: 07:d9:14:96:4e:44:2b:19:75:b6:6c:bb:78:88:0a: 14:d7:e8:be:f0:aa:d8:c5:dc:ee:fa:f9:8f:07:c6: 00:8e:91:63:ca:1c:bc:7b:96:6b:eb:e3:f2:50:78: b1:c5:65:26:ae:cd:63:25:8b:70:53:a7:1a:81:26: 72:69:d9:24:e1:49:de:e3:ad:8d:7f:a5:3c:f9:6e: f9:a4:99:3a:2d:f9:42:4e:4c:ed:98:e3:14:6c:19: 84:09:29:3c:90:44:25:49:e5:be:5e:c9:d4:9b:a7: f1:28:3f:b8:99:8d:46:cd:6e:6a:f5:41:8d:e6:cd: ca:f4:97:4f:45:46:5e:bd:0a:e0:42:1f:1c:f3:ca: 9a:80:93:43:f6:a8:30:d1:ea:7e:78:75:32:d8:a6: 45:dd:f3:6e:03:52:32:03:b1:46:0c:0a:fb:04:78: 8d:55:8b:e8:7c:d8:54:71:b3:77:67:d2:0f:6a:c5: 47:0a:2d:b0:6e:cf:7a:f3:4b:ef:28:86:5e:d7:29: 27:60:01:c6:b3:a6:c8:c7:41:87:62:53:24:72:95: fb:77:5e:f8:d7:a0:00:0e:b0:49:94:4b:0c:ef:20: ad:78:af:9c:9c:73:e4:80:d5:84:5b:11:d6:a8:2f: c4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:92:45:E0:7A:B9:45:10:3A:3F:2B:3A:7E:51:CA:3F:72:49:7E:A5 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:7f:e1:4e:34:31:be:32:ec:cc:fd:41:4d:d2:70:f7:ea:c1: 7e:99:67:dd:45:72:29:3f:67:5c:1e:cc:21:e6:80:47:86:27: 5c:f7:bb:5d:be:3e:1f:9f:cd:fa:2e:74:d0:5e:a9:d3:6c:7b: 66:15:0e:5e:70:45:40:27:f0:c3:0b:30:df:a5:e7:32:95:10: 1f:4b:d9:8f:e8:ed:e8:b7:db:6d:69:67:56:08:05:7f:3b:d7: 84:94:cb:c5:e2:15:f3:26:97:48:af:98:d7:34:1e:11:45:29: b2:b0:46:49:37:44:9c:79:0d:d4:4d:6a:8e:24:5f:33:f5:29: 09:ff:e3:83:57:17:4b:92:bc:7f:ab:91:68:73:d3:ee:01:76: 0a:99:44:be:2e:d5:2e:1b:e5:52:a4:fe:b4:95:c0:95:60:72: 60:ac:79:55:32:11:32:5f:a6:ab:da:7e:8e:18:48:bf:27:fa: f0:0c:03:12:18:29:a2:bd:df:a6:52:6f:4f:7d:f2:a7:f6:89: 81:a8:30:cb:76:f0:db:4b:35:99:04:25:c4:54:73:96:7b:11: 41:84:8a:62:74:39:90:69:16:3b:80:87:8c:78:dc:18:6e:9b: 23:8e:9f:c5:3f:1b:b2:4f:5e:6f:48:74:63:57:5d:e7:ef:19: 6e:6e:0a:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUxMDE4MjMyMzU1WhcNMjUxMDI1MjMyMzU1WjAYMRYwFAYD VQQDEw02OGY0MjE4Yi0yNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsh4nfKSWBQ/JimrUpMH2RSWTkQrGXW2bLt4iAoU1+i+8KrYxdzu+vmPB8YA jpFjyhy8e5Zr6+PyUHixxWUmrs1jJYtwU6cagSZyadkk4Une462Nf6U8+W75pJk6 LflCTkztmOMUbBmECSk8kEQlSeW+XsnUm6fxKD+4mY1GzW5q9UGN5s3K9JdPRUZe vQrgQh8c88qagJND9qgw0ep+eHUy2KZF3fNuA1IyA7FGDAr7BHiNVYvofNhUcbN3 Z9IPasVHCi2wbs9680vvKIZe1yknYAHGs6bIx0GHYlMkcpX7d17416AADrBJlEsM 7yCteK+cnHPkgNWEWxHWqC/EzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOSReB6 uUUQOj8rOn5Ryj9ySX6lMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgf+FONDG+MuzM/UFN0nD36sF+mWfdRXIpP2dcHswh5oBHhidc97td vj4fn836LnTQXqnTbHtmFQ5ecEVAJ/DDCzDfpecylRAfS9mP6O3ot9ttaWdWCAV/ O9eElMvF4hXzJpdIr5jXNB4RRSmysEZJN0SceQ3UTWqOJF8z9SkJ/+ODVxdLkrx/ q5Foc9PuAXYKmUS+LtUuG+VSpP60lcCVYHJgrHlVMhEyX6ar2n6OGEi/J/rwDAMS GCmivd+mUm9PffKn9omBqDDLdvDbSzWZBCXEVHOWexFBhIpidDmQaRY7gIeMeNwY bpsjjp/FPxuyT15vSHRjV13n7xlubgop -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:32 2025 by rpki-client