$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft File: -luvRrfLLI40Y4OqgMs5ayuBxkw.mft (raw, json) Hash identifier: fBMOLrB9U0yVPx2r/ImfGMWlu94sVkTGn1N+w+2CI6w= Subject key identifier: 1E:62:5E:1F:87:A4:20:6D:86:7F:3E:26:62:65:77:F1:00:0B:DF:E7 Authority key identifier: FA:5B:AF:46:B7:CB:2C:8E:34:63:83:AA:80:CB:39:6B:2B:81:C6:4C Certificate issuer: /CN=A91A29D7/serialNumber=FA5BAF46B7CB2C8E346383AA80CB396B2B81C64C Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft Manifest number: 02 Signing time: Mon 20 Oct 2025 05:20:15 +0000 Manifest this update: Mon 20 Oct 2025 05:20:14 +0000 Manifest next update: Mon 27 Oct 2025 05:20:14 +0000 Files and hashes: 1: -luvRrfLLI40Y4OqgMs5ayuBxkw.crl (hash: TDmgwNqnIa6FaUQH5fXIEN5Yu3bvv5fGhRChwNhXFLY=) 2: 72D41724AD7411F088D5C855C4F9AE02.roa (hash: Vl1VQKAynu971TVI0soxLdBKcaj1rhvA/gqy8oNUKiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.crl rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 05:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29D7, serialNumber=FA5BAF46B7CB2C8E346383AA80CB396B2B81C64C Validity Not Before: Oct 20 05:20:14 2025 GMT Not After : Oct 27 05:20:14 2025 GMT Subject: CN=68f5c68e-5793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:24:f5:21:18:68:ce:6f:52:c7:d0:d9:2a: 62:b8:f6:f2:75:61:e0:a0:48:03:91:22:1d:fc:65: 94:f5:23:cb:6a:46:ab:36:84:ac:fa:bd:de:de:16: 04:c8:76:0f:1c:9d:b7:a4:ea:c6:d6:88:04:bd:6c: 01:23:16:d7:4e:33:1d:b3:85:eb:f1:e2:14:f6:3c: 3f:5c:96:ca:e9:bd:1a:dc:28:79:30:27:6c:3d:25: d2:7c:85:98:08:fd:97:ce:a8:45:d1:20:15:76:43: 04:db:fc:90:bb:b0:e2:50:98:b6:cb:c6:fb:78:01: 70:39:01:5f:6d:58:18:63:0f:e7:ce:82:ba:a4:23: 65:7d:b8:3a:20:b3:92:20:2f:b7:1e:d6:10:86:fa: 4d:de:bb:a6:51:ef:9f:22:06:0a:d1:ab:b0:5d:d7: 97:b1:da:2c:39:e9:69:0c:44:1d:f2:7f:3d:8f:c1: 5c:9d:41:da:a5:9b:ca:ea:8b:d6:f7:41:c2:28:03: f0:e7:b1:50:bc:77:b9:c1:b8:df:f0:09:c2:92:c7: 8f:ca:6d:88:38:ef:26:c8:9e:a8:d6:53:74:1d:15: 97:15:dc:6c:38:7e:29:cf:44:2e:34:cc:ea:8b:8e: d9:97:a6:db:97:59:b9:99:75:1b:5b:8e:fa:3b:9f: 85:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:62:5E:1F:87:A4:20:6D:86:7F:3E:26:62:65:77:F1:00:0B:DF:E7 X509v3 Authority Key Identifier: keyid:FA:5B:AF:46:B7:CB:2C:8E:34:63:83:AA:80:CB:39:6B:2B:81:C6:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d9:99:b4:fa:7e:3e:55:d2:33:98:20:20:37:89:15:93:db: 13:9a:73:70:ff:09:8b:39:49:cb:22:28:e5:fd:7f:a7:37:33: 00:62:3d:31:7a:a9:05:11:f9:44:37:c7:51:2e:a6:5a:40:7e: 38:dc:b9:3a:29:95:dd:29:24:b9:b5:ba:83:92:10:c8:40:9a: d3:f9:96:b0:6a:b4:12:4a:bb:ec:65:7e:17:99:94:7e:d3:cf: 59:d4:84:01:73:92:f0:61:4e:9e:36:39:01:2d:8b:3d:24:5b: c0:26:d9:f1:9d:f3:e1:07:40:06:0d:8c:fe:f2:52:29:3b:1f: b8:82:02:c8:7d:e1:ee:3f:2b:46:b1:9a:f4:04:eb:b0:06:19: 7e:51:2f:b0:5f:1b:f5:fc:df:34:e6:4e:dd:96:9c:d6:54:2e: ff:6e:40:dd:20:93:25:c4:a0:2d:e9:aa:77:7b:fa:3a:fa:7c: e7:cf:c7:54:8e:65:04:03:28:bb:f7:03:9b:48:81:55:b6:9b: ba:0b:b3:8d:b7:9c:9f:b0:de:17:09:1b:85:44:6b:f3:84:3c: c5:02:f8:02:cf:05:35:d4:ed:19:fe:b1:ba:d0:15:3f:fe:3f: 97:87:f2:93:01:22:10:f5:69:da:db:68:52:e7:99:77:50:a0: b6:36:7f:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjlENzExMC8GA1UEBRMoRkE1QkFGNDZCN0NCMkM4RTM0NjM4M0FBODBDQjM5NkIy QjgxQzY0QzAeFw0yNTEwMjAwNTIwMTRaFw0yNTEwMjcwNTIwMTRaMBgxFjAUBgNV BAMTDTY4ZjVjNjhlLTU3OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6cCT1IRhozm9Sx9DZKmK49vJ1YeCgSAORIh38ZZT1I8tqRqs2hKz6vd7eFgTI dg8cnbek6sbWiAS9bAEjFtdOMx2zhevx4hT2PD9clsrpvRrcKHkwJ2w9JdJ8hZgI /ZfOqEXRIBV2QwTb/JC7sOJQmLbLxvt4AXA5AV9tWBhjD+fOgrqkI2V9uDogs5Ig L7ce1hCG+k3eu6ZR758iBgrRq7Bd15ex2iw56WkMRB3yfz2PwVydQdqlm8rqi9b3 QcIoA/DnsVC8d7nBuN/wCcKSx4/KbYg47ybInqjWU3QdFZcV3Gw4finPRC40zOqL jtmXptuXWbmZdRtbjvo7n4UpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHmJeH4ek IG2Gfz4mYmV38QAL3+cwHwYDVR0jBBgwFoAU+luvRrfLLI40Y4OqgMs5ayuBxkww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyOUQ3L0YyM0M0REYyQUQ3 MzExRjBBRjY1MDI1NEM0RjlBRTAyLy1sdXZScmZMTEk0MFk0T3FnTXM1YXl1Qnhr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLWx1dlJyZkxMSTQwWTRPcWdNczVheXVCeGt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy OUQ3L0YyM0M0REYyQUQ3MzExRjBBRjY1MDI1NEM0RjlBRTAyLy1sdXZScmZMTEk0 MFk0T3FnTXM1YXl1Qnhrdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAPZmbT6fj5V0jOYICA3iRWT2xOac3D/CYs5ScsiKOX9f6c3MwBiPTF6 qQUR+UQ3x1EuplpAfjjcuTopld0pJLm1uoOSEMhAmtP5lrBqtBJKu+xlfheZlH7T z1nUhAFzkvBhTp42OQEtiz0kW8Am2fGd8+EHQAYNjP7yUik7H7iCAsh94e4/K0ax mvQE67AGGX5RL7BfG/X83zTmTt2WnNZULv9uQN0gkyXEoC3pqnd7+jr6fOfPx1SO ZQQDKLv3A5tIgVW2m7oLs423nJ+w3hcJG4VEa/OEPMUC+ALPBTXU7Rn+sbrQFT/+ P5eH8pMBIhD1adrbaFLnmXdQoLY2f8E= -----END CERTIFICATE-----Generated at Mon Oct 20 17:59:36 2025 by rpki-client