$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: ivsk94Pkqxd+wf3bRFJexviXQdXv14dApt9YIGye6KA= Subject key identifier: A5:69:EB:3A:71:1B:9E:CF:46:4C:CB:B5:C6:B3:70:D8:70:A0:8A:CF Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 34F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 34E3 Signing time: Sat 18 Oct 2025 15:07:12 +0000 Manifest this update: Sat 18 Oct 2025 15:07:12 +0000 Manifest next update: Sat 25 Oct 2025 15:07:12 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: pn42coPKFs4sxmzi5hwwtvqakk0ixBorddRGvbAIiCM=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A=) 3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Oct 18 15:07:12 2025 GMT Not After : Oct 25 15:07:12 2025 GMT Subject: CN=68f3ad20-2d1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:89:28:5d:78:2c:e8:09:b2:cd:f9:a2:46:cf: 36:83:ea:9c:f0:8b:85:8a:e4:ce:19:13:41:b3:b8: d1:53:83:3a:0c:32:f2:ca:18:04:05:16:6b:1b:ab: fc:09:8e:5f:99:66:af:62:df:a5:76:5d:ae:a2:1a: a2:2b:9e:29:1a:ea:23:c0:84:38:cf:f0:17:46:bd: 5a:ca:0f:52:bf:1e:a0:90:39:5c:95:76:cf:87:ac: 4c:3d:13:f2:e4:6b:bb:80:a7:27:b3:cd:27:0c:ec: 83:f4:b7:19:c8:93:5a:e5:c2:cc:de:fd:e5:61:58: b4:e9:38:df:a4:f0:8d:e5:be:d1:c9:a8:a6:a8:e3: 92:18:c5:1e:46:42:7e:e9:9a:2a:3f:83:92:ff:3c: c3:7d:a7:7e:01:0d:03:65:a4:63:44:2f:37:7d:d3: ce:d8:e2:22:97:75:27:f8:d5:fa:bc:a5:21:78:bc: 9d:52:0c:c9:a1:09:a5:39:81:c5:af:c1:c3:cf:9c: 7e:77:11:9d:34:3e:fd:9f:f5:2c:c1:da:39:c2:a8: a1:70:85:b5:4a:3f:6f:c0:9a:bf:82:68:a4:45:1b: d2:74:40:32:8d:34:5a:0c:8b:78:dc:45:3d:fa:4e: 50:1a:87:ba:6f:72:b5:83:1f:51:b4:e6:46:a3:b7: be:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:69:EB:3A:71:1B:9E:CF:46:4C:CB:B5:C6:B3:70:D8:70:A0:8A:CF X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:dd:b2:54:c1:01:b0:27:9e:4c:97:9b:b0:20:9c:05:88:fe: a8:e4:c5:38:f9:20:6a:24:62:9a:e6:9e:bf:8f:9a:fc:47:24: 67:da:55:cd:49:5c:1c:2a:6b:c3:bb:4d:ee:a6:9b:08:2e:e8: cb:0c:34:19:29:39:fc:37:73:62:ef:55:a1:3a:78:08:5e:8c: 08:84:8a:63:e5:8d:c3:c0:f8:ca:e6:b4:3f:35:7a:5e:b8:96: 62:41:15:d4:c1:7e:93:98:be:ee:bb:78:91:e3:ae:36:7a:53: 5e:a4:87:59:7c:42:ad:57:12:10:dc:a0:05:a8:46:fa:27:d5: df:96:80:4a:a5:62:52:81:87:c9:b7:b4:1b:21:1f:c2:a6:13: f6:36:cf:f1:45:af:63:94:20:98:01:72:99:61:56:83:27:75: 4c:9f:bf:f7:53:e6:c0:2b:f1:00:2a:6b:14:01:94:fc:25:a6: 75:41:80:fe:c1:d2:25:4b:1c:ef:75:f2:58:04:37:2e:eb:47: c6:ad:70:51:8a:9a:c7:51:2e:e9:39:a7:85:63:38:b1:ca:f1: f9:82:92:80:da:cc:af:bb:97:3b:76:46:2e:db:10:ba:72:de: 0a:2f:f9:6c:7a:00:d3:76:e8:58:69:69:35:64:9e:3a:68:59: 3a:90:37:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUxMDE4MTUwNzEyWhcNMjUxMDI1MTUwNzEyWjAYMRYwFAYD VQQDEw02OGYzYWQyMC0yZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94koXXgs6AmyzfmiRs82g+qc8IuFiuTOGRNBs7jRU4M6DDLyyhgEBRZrG6v8 CY5fmWavYt+ldl2uohqiK54pGuojwIQ4z/AXRr1ayg9Svx6gkDlclXbPh6xMPRPy 5Gu7gKcns80nDOyD9LcZyJNa5cLM3v3lYVi06TjfpPCN5b7RyaimqOOSGMUeRkJ+ 6ZoqP4OS/zzDfad+AQ0DZaRjRC83fdPO2OIil3Un+NX6vKUheLydUgzJoQmlOYHF r8HDz5x+dxGdND79n/Uswdo5wqihcIW1Sj9vwJq/gmikRRvSdEAyjTRaDIt43EU9 +k5QGoe6b3K1gx9RtOZGo7e+5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVp6zpx G57PRkzLtcazcNhwoIrPMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV3bJUwQGwJ55Ml5uwIJwFiP6o5MU4+SBqJGKa5p6/j5r8RyRn2lXN SVwcKmvDu03uppsILujLDDQZKTn8N3Ni71WhOngIXowIhIpj5Y3DwPjK5rQ/NXpe uJZiQRXUwX6TmL7uu3iR4642elNepIdZfEKtVxIQ3KAFqEb6J9XfloBKpWJSgYfJ t7QbIR/CphP2Ns/xRa9jlCCYAXKZYVaDJ3VMn7/3U+bAK/EAKmsUAZT8JaZ1QYD+ wdIlSxzvdfJYBDcu60fGrXBRiprHUS7pOaeFYzixyvH5gpKA2syvu5c7dkYu2xC6 ct4KL/lsegDTduhYaWk1ZJ46aFk6kDd7 -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:36 2025 by rpki-client