$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: MnZHuoWwHjTr/UdnDeA//USEpUKfrKb152z/pQVDoxQ= Subject key identifier: 22:61:7E:71:88:B9:BF:F1:10:F8:6B:BB:F1:62:16:6C:57:35:3A:8B Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05C5 Signing time: Sun 19 Oct 2025 00:46:33 +0000 Manifest this update: Sun 19 Oct 2025 00:46:32 +0000 Manifest next update: Sun 26 Oct 2025 00:46:32 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: S0Ne+SMi5gCR63U5U6p7pi8s4HWcK9uLZ+x1t2+cbyE=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Oct 19 00:46:32 2025 GMT Not After : Oct 26 00:46:32 2025 GMT Subject: CN=68f434e9-fa51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c6:d7:dc:ef:1b:93:4c:b5:e4:38:73:0a:bb: fb:2d:07:cb:53:64:49:e5:45:9c:1f:7b:ee:75:09: 54:b7:4a:d5:c5:8e:43:d5:a6:28:32:3b:8a:d2:5c: fa:e2:a7:24:3e:0a:50:76:17:a0:c7:c6:49:15:37: c6:bc:24:dc:b5:05:23:71:07:bb:96:10:05:74:14: e9:fe:03:42:e3:63:05:3f:81:bc:db:f1:8b:79:55: 63:41:10:b6:b5:95:3e:1e:99:bf:4d:ae:39:88:ec: 62:e8:8d:e9:b5:aa:ce:f4:48:a8:1b:23:a4:da:10: 58:32:50:9e:85:c7:9b:79:1b:58:53:07:a3:3f:70: 97:39:86:0c:7b:48:a5:4b:bb:df:bd:58:c4:8a:af: bd:28:22:51:a4:d9:66:e4:62:fa:ab:37:3a:65:e3: b4:b3:99:0b:fb:18:6a:fe:1a:02:d6:9f:3a:61:c8: 6d:5e:5b:4b:5e:5f:92:78:c9:d8:4d:71:d6:41:9c: c4:d2:fc:40:64:f9:64:8a:77:9c:c0:dc:54:05:33: 66:a9:c7:fb:bc:c3:26:f1:7c:1d:b6:40:88:3e:15: 48:a5:e3:f7:87:ef:61:3c:55:0e:58:a9:1e:ff:78: dc:aa:1e:f0:19:5c:78:25:70:7a:65:cd:1a:4b:bb: 3a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:61:7E:71:88:B9:BF:F1:10:F8:6B:BB:F1:62:16:6C:57:35:3A:8B X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:d3:3c:41:07:b8:58:23:95:8e:12:22:24:8b:56:37:5d:97: 97:26:94:1b:c1:d0:4d:de:98:88:54:d9:10:81:fb:e8:06:1e: 07:8c:02:ea:3b:ec:51:fd:27:dc:70:c9:95:9f:7a:e5:96:f9: 0a:33:60:e2:73:72:c0:15:8b:ff:31:c1:67:c8:7b:82:e7:68: 77:ee:db:80:f4:ca:ae:49:45:37:ca:9d:76:4e:e4:49:c5:c7: da:cb:3d:8c:83:17:43:71:46:bb:a8:16:92:c1:c2:dd:fc:95: 4f:90:0a:d8:ce:9b:26:dd:11:4c:6a:b0:6e:41:3f:bf:b6:16: c1:72:d2:38:83:9c:63:26:af:14:f7:f8:11:3a:bd:e3:1e:11: 4c:53:72:0f:4e:ca:e4:87:13:8f:fc:3f:4d:65:4d:ce:39:4e: ca:58:c2:9b:b3:4c:7b:13:70:29:e2:f7:01:cd:29:ae:29:2b: a2:6e:54:3c:b7:bd:71:7c:49:4a:aa:1c:4a:e6:10:33:d8:b7: 69:45:39:c3:87:53:16:49:89:b2:d7:39:51:80:e9:19:97:9d: eb:a4:6c:1e:5a:41:13:ca:7a:2f:ae:4f:5f:33:42:ee:4e:c5: b6:9a:2c:a6:b7:7c:15:79:87:36:1e:7e:3e:dd:a5:cb:23:49: d4:35:62:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMDE5MDA0NjMyWhcNMjUxMDI2MDA0NjMyWjAYMRYwFAYD VQQDEw02OGY0MzRlOS1mYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38bX3O8bk0y15DhzCrv7LQfLU2RJ5UWcH3vudQlUt0rVxY5D1aYoMjuK0lz6 4qckPgpQdhegx8ZJFTfGvCTctQUjcQe7lhAFdBTp/gNC42MFP4G82/GLeVVjQRC2 tZU+Hpm/Ta45iOxi6I3ptarO9EioGyOk2hBYMlCehcebeRtYUwejP3CXOYYMe0il S7vfvVjEiq+9KCJRpNlm5GL6qzc6ZeO0s5kL+xhq/hoC1p86YchtXltLXl+SeMnY TXHWQZzE0vxAZPlkinecwNxUBTNmqcf7vMMm8XwdtkCIPhVIpeP3h+9hPFUOWKke /3jcqh7wGVx4JXB6Zc0aS7s6oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJhfnGI ub/xEPhru/FiFmxXNTqLMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE0zxBB7hYI5WOEiIki1Y3XZeXJpQbwdBN3piIVNkQgfvoBh4HjALq O+xR/SfccMmVn3rllvkKM2Dic3LAFYv/McFnyHuC52h37tuA9MquSUU3yp12TuRJ xcfayz2MgxdDcUa7qBaSwcLd/JVPkArYzpsm3RFMarBuQT+/thbBctI4g5xjJq8U 9/gROr3jHhFMU3IPTsrkhxOP/D9NZU3OOU7KWMKbs0x7E3Ap4vcBzSmuKSuiblQ8 t71xfElKqhxK5hAz2LdpRTnDh1MWSYmy1zlRgOkZl53rpGweWkETynovrk9fM0Lu TsW2miymt3wVeYc2Hn4+3aXLI0nUNWIv -----END CERTIFICATE-----Generated at Mon Oct 20 03:53:49 2025 by rpki-client