$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: if9t5R9EHAlL42r3oy8xXeDnY3vxE5Wy+DOtbvr0dvs= Subject key identifier: 54:BC:5E:32:0B:71:9F:98:39:38:79:13:FC:51:0F:37:15:9D:74:18 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 115F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1155 Signing time: Sat 18 Oct 2025 17:46:53 +0000 Manifest this update: Sat 18 Oct 2025 17:46:52 +0000 Manifest next update: Sat 25 Oct 2025 17:46:52 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: GhEEBCfUiVoCP9dewBNCu1am1bCM+WhgOzio2J0iOGs=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4447 (0x115f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Oct 18 17:46:52 2025 GMT Not After : Oct 25 17:46:52 2025 GMT Subject: CN=68f3d28d-b063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:86:aa:47:cd:56:95:69:3d:0d:fb:57:c1:14: 03:aa:2c:53:eb:9a:d6:86:65:be:1c:30:c5:c2:bc: 25:b6:df:09:08:2a:0c:a7:24:cb:0d:10:ee:63:71: 80:b5:03:15:ec:5e:36:34:a3:bc:0e:fd:9c:d7:18: 07:f6:cb:3c:cf:97:ad:cf:23:27:73:7e:66:7a:f5: 8b:dd:b6:c8:f3:51:fd:2c:25:b1:e3:85:f5:70:61: bc:c5:29:17:33:9f:6b:2f:b6:6a:fc:36:c5:07:ff: 80:f4:48:3c:b7:05:29:cc:cd:97:69:a2:43:ef:be: 61:cf:be:07:91:0c:9e:21:72:fd:cf:50:09:d6:19: 46:68:60:6c:05:09:b5:95:47:d4:32:cb:79:5a:d2: 21:b7:b4:5b:af:7b:05:58:fd:bc:21:44:dd:8c:53: 48:e8:66:62:cd:5c:31:2a:8b:4d:b8:88:16:6a:a1: 37:90:a6:11:26:c3:e7:36:d6:4a:79:1e:04:e9:be: 0c:bc:79:a3:6c:02:2d:55:78:5f:94:de:43:af:b2: ac:6d:42:20:d1:20:55:c7:6c:94:3e:0d:17:4e:52: e9:3c:8b:e8:6c:6b:7d:80:31:9b:77:0d:dd:9b:14: 18:ca:ec:52:bb:be:1e:3d:af:ab:29:59:7e:08:34: ae:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BC:5E:32:0B:71:9F:98:39:38:79:13:FC:51:0F:37:15:9D:74:18 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:15:2a:cb:a2:64:12:f5:81:79:a1:47:fc:c2:d2:4a:c7:f5: bc:b3:ab:4a:00:59:23:1c:41:db:58:b9:04:aa:48:9a:5f:3e: ab:37:eb:e3:25:aa:95:d4:23:8d:dd:7c:4b:c2:92:0e:90:fc: 60:69:0f:0b:01:ae:74:46:a1:03:0d:1a:47:6a:66:c1:8d:d8: 6a:77:0b:25:cc:87:e9:29:a2:d9:2b:b8:3c:8b:d5:fb:72:75: c6:88:c4:aa:45:de:e2:4d:e1:39:e8:95:49:20:79:c2:fc:4d: cf:56:c7:e3:cb:67:9f:03:0d:e4:f4:27:cb:61:3c:ed:6c:c6: a9:df:ea:c5:cd:c6:0e:08:2c:61:2e:56:05:ab:22:e9:e7:38: 5b:90:45:2e:67:a2:dd:cf:72:0c:e3:23:45:32:86:de:f3:be: ce:dc:6d:b2:c4:08:6f:f2:c8:ff:a4:0c:1e:f7:bf:85:e9:f3: 0a:90:1b:2d:c8:a7:cc:e4:3a:8d:5d:c0:e5:92:cc:b7:78:c8: b4:d5:b3:3f:4e:ba:13:d4:32:76:1a:f9:91:31:25:21:92:a4: 65:d6:ae:fa:6d:12:71:95:0e:b6:82:75:33:46:3e:da:63:30: 98:82:fc:4a:ec:89:0c:ea:9b:fd:d3:a8:3f:46:88:37:a3:a7: a1:91:18:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUxMDE4MTc0NjUyWhcNMjUxMDI1MTc0NjUyWjAYMRYwFAYD VQQDEw02OGYzZDI4ZC1iMDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYaqR81WlWk9DftXwRQDqixT65rWhmW+HDDFwrwltt8JCCoMpyTLDRDuY3GA tQMV7F42NKO8Dv2c1xgH9ss8z5etzyMnc35mevWL3bbI81H9LCWx44X1cGG8xSkX M59rL7Zq/DbFB/+A9Eg8twUpzM2XaaJD775hz74HkQyeIXL9z1AJ1hlGaGBsBQm1 lUfUMst5WtIht7Rbr3sFWP28IUTdjFNI6GZizVwxKotNuIgWaqE3kKYRJsPnNtZK eR4E6b4MvHmjbAItVXhflN5Dr7KsbUIg0SBVx2yUPg0XTlLpPIvobGt9gDGbdw3d mxQYyuxSu74ePa+rKVl+CDSuxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFS8XjIL cZ+YOTh5E/xRDzcVnXQYMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6FSrLomQS9YF5oUf8wtJKx/W8s6tKAFkjHEHbWLkEqkiaXz6rN+vj JaqV1CON3XxLwpIOkPxgaQ8LAa50RqEDDRpHambBjdhqdwslzIfpKaLZK7g8i9X7 cnXGiMSqRd7iTeE56JVJIHnC/E3PVsfjy2efAw3k9CfLYTztbMap3+rFzcYOCCxh LlYFqyLp5zhbkEUuZ6Ldz3IM4yNFMobe877O3G2yxAhv8sj/pAwe97+F6fMKkBst yKfM5DqNXcDlksy3eMi01bM/TroT1DJ2GvmRMSUhkqRl1q76bRJxlQ62gnUzRj7a YzCYgvxK7IkM6pv906g/Rog3o6ehkRjx -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:45 2025 by rpki-client