$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: 4ke8rymIvCQgB/gsPHT29ytz+zIPPCxgHhvMbhrDeWY= Subject key identifier: 0D:69:2F:92:75:ED:71:9B:A9:5E:B4:75:C9:9F:A0:24:1F:69:6C:40 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: 87 Signing time: Sun 19 Oct 2025 09:52:45 +0000 Manifest this update: Sun 19 Oct 2025 09:52:44 +0000 Manifest next update: Sun 26 Oct 2025 09:52:44 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: a2sm1wP4U3NGl5Ff/tcnXn1rKoQK8mSOu+Wk0NH8Fy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Oct 19 09:52:44 2025 GMT Not After : Oct 26 09:52:44 2025 GMT Subject: CN=68f4b4ed-7387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ad:ae:48:d7:25:8e:40:f0:23:64:d1:82:23: 90:bd:52:be:4d:5a:26:a3:98:76:30:5f:be:2a:58: af:3b:79:72:1f:63:41:54:fe:f1:ea:33:c7:4f:6f: 76:3a:f7:45:a4:31:bb:df:2b:15:de:56:86:96:63: f1:e5:6a:78:e5:bb:83:f3:da:08:e5:a4:a4:ad:f5: 1f:74:01:a6:52:23:63:62:01:17:86:fb:7f:96:99: b8:b3:ef:1b:bc:95:71:5d:8f:df:1a:85:2f:c1:c3: 3e:8c:f6:36:68:3c:3a:16:cd:08:17:3e:99:19:b2: b7:e4:d0:67:95:34:c7:50:5f:7d:a5:14:ed:ec:e6: 50:08:5d:04:10:b6:7b:34:01:03:f3:54:65:3b:00: 0e:f1:8c:66:72:1f:33:a3:a4:4e:fa:91:54:72:01: 17:71:26:f5:1f:0a:b4:58:c4:39:7c:83:4e:d6:e4: 84:19:a4:b2:5f:0c:8f:7b:72:74:3d:d1:33:ab:b8: c2:39:0c:58:d5:bc:41:aa:04:ac:e5:f4:bc:51:90: 1d:9c:e0:ec:a3:3d:e5:33:b9:51:e9:a0:c4:4c:61: 51:17:25:4a:9b:98:90:1b:25:bf:86:e5:f0:b2:79: 09:35:bb:16:8b:ae:25:55:c9:b2:33:be:d5:e8:da: a4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:69:2F:92:75:ED:71:9B:A9:5E:B4:75:C9:9F:A0:24:1F:69:6C:40 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9a:22:1f:ce:c5:4b:cc:88:b0:a2:0a:1e:51:5c:ee:74:ca: 3e:6b:ac:f5:48:43:a8:4d:d0:f1:b9:13:86:d5:57:c4:19:1e: db:06:f5:0b:f4:1f:eb:3c:c0:c7:88:b3:3d:fb:91:13:4b:de: df:64:66:a1:6a:24:45:ef:db:dc:bc:8f:c1:a1:12:3f:0c:69: 13:9e:23:f5:34:1c:b4:54:b8:65:67:fe:e5:0f:83:05:82:7e: 06:fc:ed:b2:01:39:12:ad:25:de:89:05:a8:93:97:39:54:da: d2:d8:67:52:a5:60:18:7e:91:c8:31:28:54:07:fe:ae:29:b7: a5:93:02:98:b7:d4:22:4a:a1:5d:f3:21:e4:e7:31:22:3c:3d: 45:37:4c:c5:03:29:87:08:be:df:74:96:11:d1:95:1b:e3:b3: b4:69:7b:44:ac:0a:e2:dd:9c:e3:43:d4:fd:69:28:d7:91:e4: a1:7d:aa:a0:43:38:cd:7f:2e:8e:72:79:83:30:3a:4f:0f:d8: 76:15:bc:f4:c2:b9:4f:b2:c3:d3:47:14:76:60:b9:ac:58:24: cd:c7:4b:cb:c1:00:69:11:4b:58:7a:43:1a:1f:7a:46:17:17: 3c:22:ab:2f:39:95:b5:b7:b1:2b:1e:9e:15:e2:91:ce:d8:2d: 5f:60:0a:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjUxMDE5MDk1MjQ0WhcNMjUxMDI2MDk1MjQ0WjAYMRYwFAYD VQQDEw02OGY0YjRlZC03Mzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqq2uSNcljkDwI2TRgiOQvVK+TVomo5h2MF++KlivO3lyH2NBVP7x6jPHT292 OvdFpDG73ysV3laGlmPx5Wp45buD89oI5aSkrfUfdAGmUiNjYgEXhvt/lpm4s+8b vJVxXY/fGoUvwcM+jPY2aDw6Fs0IFz6ZGbK35NBnlTTHUF99pRTt7OZQCF0EELZ7 NAED81RlOwAO8Yxmch8zo6RO+pFUcgEXcSb1Hwq0WMQ5fINO1uSEGaSyXwyPe3J0 PdEzq7jCOQxY1bxBqgSs5fS8UZAdnODsoz3lM7lR6aDETGFRFyVKm5iQGyW/huXw snkJNbsWi64lVcmyM77V6NqkyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1pL5J1 7XGbqV60dcmfoCQfaWxAMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAImiIfzsVLzIiwogoeUVzudMo+a6z1SEOoTdDxuROG1VfEGR7bBvUL 9B/rPMDHiLM9+5ETS97fZGahaiRF79vcvI/BoRI/DGkTniP1NBy0VLhlZ/7lD4MF gn4G/O2yATkSrSXeiQWok5c5VNrS2GdSpWAYfpHIMShUB/6uKbelkwKYt9QiSqFd 8yHk5zEiPD1FN0zFAymHCL7fdJYR0ZUb47O0aXtErAri3ZzjQ9T9aSjXkeShfaqg QzjNfy6OcnmDMDpPD9h2Fbz0wrlPssPTRxR2YLmsWCTNx0vLwQBpEUtYekMaH3pG Fxc8IqsvOZW1t7ErHp4V4pHO2C1fYAor -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:22 2025 by rpki-client