$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: 4+KtK31dIPwMg4evwgyq6Y4dRoo6KiFOfMNdjxShXrw= Subject key identifier: 5C:87:1B:73:4F:34:FB:9A:30:92:80:CE:2D:FA:E5:2E:E7:50:6F:33 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34D9 Signing time: Sat 18 Oct 2025 14:40:31 +0000 Manifest this update: Sat 18 Oct 2025 14:40:30 +0000 Manifest next update: Sat 25 Oct 2025 14:40:30 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: f9H9jSunA1/nTzMIstAfmBxfo/YfcPCciPR9YsK4NE4=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13534 (0x34de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Oct 18 14:40:30 2025 GMT Not After : Oct 25 14:40:30 2025 GMT Subject: CN=68f3a6de-ab6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:7e:74:f8:b8:bb:18:7f:93:6d:18:6d:d6: 82:d0:d6:c6:2b:52:c6:bd:92:e4:81:3c:ec:f7:32: 47:b3:ed:1a:a1:c4:35:e4:b0:8b:f9:cd:23:1f:2f: 3e:f5:18:d1:8d:b5:f5:aa:7d:02:d4:df:23:d7:03: 2a:e1:15:94:05:4c:8a:e3:62:a9:d7:f9:80:d1:9f: af:05:cc:e2:ac:94:ab:4b:3d:55:e9:5d:32:f8:cb: 12:c3:82:b2:26:bd:e3:a2:82:58:4a:fc:7c:29:78: 81:55:02:a2:33:c4:be:e2:5b:bc:1c:13:c6:31:9d: 6b:30:c8:74:fa:ed:cb:7f:a4:54:70:4f:d4:2b:75: 93:6d:81:1d:97:64:c2:2b:95:e2:d3:05:d2:1e:fa: 19:3d:01:96:27:ba:c8:98:73:18:43:ef:cc:62:a6: a0:05:ef:7f:22:de:8e:29:ad:04:aa:4b:67:e3:7d: 0a:dd:f2:df:6d:c2:80:fc:74:9a:1b:88:2e:9a:53: 37:14:40:d6:7a:f3:a6:fe:26:a1:4c:10:31:24:b6: ec:12:93:7a:43:1a:99:c9:af:7c:65:3e:54:98:ff: e4:5e:09:5c:cd:1f:cc:99:2c:e2:7f:ad:cc:42:af: 05:5c:c9:a0:00:7f:1f:19:23:05:46:77:b4:f5:3b: 96:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:87:1B:73:4F:34:FB:9A:30:92:80:CE:2D:FA:E5:2E:E7:50:6F:33 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:db:75:8b:31:d3:17:d9:ae:ab:d5:0c:a7:f7:cc:ff:46:5e: 83:99:ad:36:40:a9:ba:60:bd:a7:b4:0f:01:2e:35:f2:22:d4: 5b:c4:ca:d4:4c:f3:73:e3:36:37:3b:a1:c8:7e:9a:1e:fe:c8: 35:f8:2f:c9:9e:e0:7c:93:0c:56:c6:63:31:0f:81:ca:c0:5e: c7:b9:2e:34:40:06:56:56:1b:0d:ec:26:f8:9d:19:06:d7:37: 77:2c:cf:47:e5:43:9e:19:a2:b9:75:ff:9f:15:56:9e:38:e7: bd:8d:9a:18:41:48:8c:a9:d2:87:ec:cf:95:91:d4:25:3d:14: 74:9b:23:fa:a0:56:e0:8c:41:70:bc:7a:4a:f8:a4:5d:c2:28: 7b:c1:9f:ca:d1:9e:85:d1:b5:77:15:89:42:66:a5:bb:99:68: 0f:a1:b7:0d:c3:e8:6c:2d:01:3e:8d:37:20:89:1a:3c:35:79: aa:b1:bc:d3:a8:ff:94:eb:5e:10:22:32:07:7c:2c:d9:83:f7: 93:fb:37:cd:d3:0c:7d:7b:96:2e:b5:8f:93:cb:d4:4c:9a:90: e2:8f:60:d1:e9:b5:5a:a6:e9:4a:ab:78:4e:7c:a7:e1:c0:40: 14:f0:62:42:0e:c6:e7:0b:95:dd:f9:68:b9:b5:68:f7:94:1d: cc:cc:6b:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMDE4MTQ0MDMwWhcNMjUxMDI1MTQ0MDMwWjAYMRYwFAYD VQQDEw02OGYzYTZkZS1hYjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZF+dPi4uxh/k20YbdaC0NbGK1LGvZLkgTzs9zJHs+0aocQ15LCL+c0jHy8+ 9RjRjbX1qn0C1N8j1wMq4RWUBUyK42Kp1/mA0Z+vBczirJSrSz1V6V0y+MsSw4Ky Jr3jooJYSvx8KXiBVQKiM8S+4lu8HBPGMZ1rMMh0+u3Lf6RUcE/UK3WTbYEdl2TC K5Xi0wXSHvoZPQGWJ7rImHMYQ+/MYqagBe9/It6OKa0Eqktn430K3fLfbcKA/HSa G4gumlM3FEDWevOm/iahTBAxJLbsEpN6QxqZya98ZT5UmP/kXglczR/MmSzif63M Qq8FXMmgAH8fGSMFRne09TuWfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyHG3NP NPuaMJKAzi365S7nUG8zMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi23WLMdMX2a6r1Qyn98z/Rl6Dma02QKm6YL2ntA8BLjXyItRbxMrU TPNz4zY3O6HIfpoe/sg1+C/JnuB8kwxWxmMxD4HKwF7HuS40QAZWVhsN7Cb4nRkG 1zd3LM9H5UOeGaK5df+fFVaeOOe9jZoYQUiMqdKH7M+VkdQlPRR0myP6oFbgjEFw vHpK+KRdwih7wZ/K0Z6F0bV3FYlCZqW7mWgPobcNw+hsLQE+jTcgiRo8NXmqsbzT qP+U614QIjIHfCzZg/eT+zfN0wx9e5YutY+Ty9RMmpDij2DR6bVapulKq3hOfKfh wEAU8GJCDsbnC5Xd+Wi5tWj3lB3MzGug -----END CERTIFICATE-----Generated at Mon Oct 20 14:45:27 2025 by rpki-client