$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: n3KZZB1GqhYA0k8IGXYantLOxHlX4QyLofwN4rxUHIU= Subject key identifier: CC:AF:4D:E6:F6:5C:69:DE:FE:D9:05:6A:5D:57:B0:53:2A:AD:D5:98 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02ED Signing time: Sun 19 Oct 2025 03:22:33 +0000 Manifest this update: Sun 19 Oct 2025 03:22:32 +0000 Manifest next update: Sun 26 Oct 2025 03:22:32 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: 1KRWZOBLQBMjpdrqkQDkXzY986qAk2FrDhlFeN3Kh20=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Oct 19 03:22:32 2025 GMT Not After : Oct 26 03:22:32 2025 GMT Subject: CN=68f45979-d888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bf:78:ce:d2:a3:cd:02:48:da:4a:18:df:cd: 94:3e:44:c6:5f:20:4c:eb:73:c7:e2:81:49:c1:3a: 7e:a7:91:ab:11:7e:7c:9e:a2:59:49:f6:9e:ab:e8: f7:59:df:7c:2f:37:4c:7a:6a:b3:45:f0:20:37:ef: 3a:dc:87:47:66:c6:e4:a8:50:39:9d:b0:df:29:58: c4:05:39:03:f4:fd:65:a1:a9:b7:e8:9e:0c:e8:70: ea:ad:fd:ed:2c:cd:7e:83:9c:cb:f6:e0:ed:46:30: c7:23:e4:77:71:f3:c2:35:b9:0e:d3:a3:19:47:9b: 43:ee:a6:23:7f:51:32:09:3b:f8:15:1e:81:1d:ea: e5:80:d9:99:9f:65:82:f1:04:d3:00:e8:73:c1:8a: 72:59:c5:ad:e3:72:2d:c5:54:97:f5:43:a6:d5:88: 10:5d:07:b1:9d:ec:7b:86:70:08:65:31:f1:2e:02: 89:39:26:d3:d5:fe:94:bf:79:25:72:ae:29:5f:55: 04:37:eb:8b:90:46:7c:98:c5:79:87:30:7b:78:38: 7d:fa:c4:0c:89:49:41:3b:96:e4:42:ff:5d:2d:52: 2a:cd:4a:88:43:89:d8:1e:d4:a1:56:3f:37:aa:95: 1c:d1:ff:d7:d2:f1:92:90:ce:b7:53:8e:45:a1:8d: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AF:4D:E6:F6:5C:69:DE:FE:D9:05:6A:5D:57:B0:53:2A:AD:D5:98 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2a:07:05:f2:fe:8a:26:e8:97:7a:d8:4b:6d:f5:e7:74:a3: 60:70:69:58:03:93:a0:02:24:e4:47:e1:e5:fe:c4:53:0e:90: 3c:8a:8f:e2:c9:51:ee:eb:64:b3:78:ed:ec:42:04:80:c3:96: a0:50:db:8d:f0:cf:80:d7:a0:ec:53:a7:3a:35:00:0c:14:34: 28:d3:33:ae:75:a5:b5:e2:1f:32:9d:49:ff:59:c9:0e:5c:57: c5:95:6e:6e:91:95:0d:ef:f5:c0:f9:31:af:38:20:d6:21:cf: e5:40:41:22:50:89:9a:69:c8:eb:be:8a:92:67:46:0a:59:26: fb:c2:bc:3a:8e:57:66:77:db:af:6d:1b:d2:8e:5c:5e:aa:2a: e1:9c:ed:e2:b4:47:4d:9d:21:e6:5d:be:bd:33:30:97:fe:74: b9:aa:96:66:f2:2c:07:e8:5b:6b:17:78:03:9f:c7:60:e7:54: 1c:74:bc:31:47:b6:07:a3:ac:86:e3:42:8c:12:25:69:1e:c9: bc:8d:87:f5:10:d2:75:81:9d:e8:22:d2:64:c9:fe:57:e5:a7: 04:5f:fe:af:bf:ec:5e:56:32:98:ee:1c:4e:b8:69:dd:d9:60: 05:6b:9e:b3:dc:57:24:b2:08:40:b4:a8:0e:a0:1d:aa:56:1f: 2c:25:3e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUxMDE5MDMyMjMyWhcNMjUxMDI2MDMyMjMyWjAYMRYwFAYD VQQDEw02OGY0NTk3OS1kODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw794ztKjzQJI2koY382UPkTGXyBM63PH4oFJwTp+p5GrEX58nqJZSfaeq+j3 Wd98LzdMemqzRfAgN+863IdHZsbkqFA5nbDfKVjEBTkD9P1loam36J4M6HDqrf3t LM1+g5zL9uDtRjDHI+R3cfPCNbkO06MZR5tD7qYjf1EyCTv4FR6BHerlgNmZn2WC 8QTTAOhzwYpyWcWt43ItxVSX9UOm1YgQXQexnex7hnAIZTHxLgKJOSbT1f6Uv3kl cq4pX1UEN+uLkEZ8mMV5hzB7eDh9+sQMiUlBO5bkQv9dLVIqzUqIQ4nYHtShVj83 qpUc0f/X0vGSkM63U45FoY2GTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyvTeb2 XGne/tkFal1XsFMqrdWYMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtKgcF8v6KJuiXethLbfXndKNgcGlYA5OgAiTkR+Hl/sRTDpA8io/i yVHu62SzeO3sQgSAw5agUNuN8M+A16DsU6c6NQAMFDQo0zOudaW14h8ynUn/WckO XFfFlW5ukZUN7/XA+TGvOCDWIc/lQEEiUImaacjrvoqSZ0YKWSb7wrw6jldmd9uv bRvSjlxeqirhnO3itEdNnSHmXb69MzCX/nS5qpZm8iwH6FtrF3gDn8dg51QcdLwx R7YHo6yG40KMEiVpHsm8jYf1ENJ1gZ3oItJkyf5X5acEX/6vv+xeVjKY7hxOuGnd 2WAFa56z3FcksghAtKgOoB2qVh8sJT5d -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:15 2025 by rpki-client