$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: 1RdJxh+WYWfmnNL7ybqqvLWC7VLHjCbFQYkN3Y6ORYg= Subject key identifier: 93:5B:ED:7E:64:0A:45:7D:43:12:3B:E0:F0:16:76:F8:7A:E5:7A:0E Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 0545 Signing time: Sun 19 Oct 2025 01:21:56 +0000 Manifest this update: Sun 19 Oct 2025 01:21:55 +0000 Manifest next update: Sun 26 Oct 2025 01:21:55 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: 66Uyj3tmwKoClSjfn1fIeBPiQJYuLb+5L/lqttUipCU=) 2: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: khj0U83Oh0MV75Awop79+WdRP+WJETqec/zA5LVnzro=) 3: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 2jfJLAfv4sSmTjn+t4R2DbosLO6LZGV4JERzq1/IuT0=) 4: F88F642285E411EEB951413BC4F9AE02.roa (hash: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=) 5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: ZVXIXb68LMeIyoHASYy5oVFyflHWdmoVD7FAYMUQOp4=) 6: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (hash: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg=) 7: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY=) 8: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: H6lUECWs/LnmCnEJB/ye5BlXZoehdKlxdmR5+P/1VOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Oct 19 01:21:55 2025 GMT Not After : Oct 26 01:21:55 2025 GMT Subject: CN=68f43d34-5ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:25:3f:69:ac:bb:98:89:fe:2d:34:83:42: 8b:8b:4d:e1:d6:bd:94:e2:06:7a:72:57:b6:c3:df: c1:30:a8:c0:b6:a6:a9:78:d6:0e:11:ac:68:9e:6a: cf:5c:f0:10:d3:fd:0c:4c:15:30:33:44:f4:df:44: d9:8b:1f:6f:20:2a:24:92:6a:09:68:0e:0f:5c:f0: b4:43:ae:f2:6f:5c:f9:5d:9d:91:98:d8:bc:33:51: 11:7e:22:84:86:23:04:a4:77:b4:89:ee:b4:4d:80: 81:cb:e0:76:9d:5b:e1:a0:6e:74:5a:20:4c:64:c9: 06:3b:ff:e2:ae:f5:fe:0c:f0:66:94:66:de:8b:d1: 3c:8e:f6:dc:7e:93:5e:64:15:68:a3:51:10:63:a1: 8e:74:7f:be:ee:a1:09:c3:56:af:44:51:7a:39:20: 07:96:f7:3d:3c:6e:77:af:c7:39:e9:ae:55:2e:da: bc:ae:02:43:a9:4d:cf:9b:fa:6e:e9:fc:b9:3c:b9: 70:95:65:37:a8:20:b7:f7:92:92:92:8e:84:3b:e3: 22:61:fe:7d:85:26:a7:f0:6d:4f:7b:61:ac:0c:79: 55:1e:dd:d2:50:5d:3a:b7:c9:a3:59:f6:c3:21:5d: 53:e3:5e:ff:64:b6:e7:a4:a2:19:14:52:5e:81:b5: 3e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5B:ED:7E:64:0A:45:7D:43:12:3B:E0:F0:16:76:F8:7A:E5:7A:0E X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:82:d8:f6:6f:f6:ca:fa:7d:4d:89:6a:b8:d1:18:c1:a4:d7: 8a:1c:81:5e:b4:8d:e7:08:8f:d2:4c:80:77:8a:ff:d3:9e:2d: ae:12:85:05:8d:d6:da:9c:bd:c3:21:d9:44:47:e8:13:4a:bf: 6e:8e:9d:1d:10:1e:05:80:3f:76:94:54:e8:c1:07:93:a5:8f: 34:8d:d5:07:9e:cc:63:5a:96:22:76:2e:21:2e:1a:04:39:dd: 9b:64:56:0a:8d:17:39:90:10:40:8f:a4:45:0b:57:b0:23:03: 16:73:54:59:d3:71:19:14:d6:0f:01:c4:52:c5:92:cc:5f:25: 3c:dc:89:56:66:46:d6:1b:5d:fb:c8:04:9d:9c:2b:b2:78:12: 78:34:22:30:e1:b2:ae:e1:73:df:35:ea:69:29:76:8c:fd:3b: d0:70:9a:dc:7a:f7:0b:63:f9:b2:7f:8c:b1:68:94:69:ec:79: 40:0c:8f:fa:27:d0:b6:6d:c8:c3:38:ca:76:c9:d3:68:f9:1b: 39:f7:56:90:77:17:25:a0:b3:c4:8f:2d:c2:7c:d0:7e:63:44: 37:09:79:d3:90:60:ee:75:25:7f:0e:fa:72:07:f3:06:c4:02: 71:00:48:c5:ce:f1:33:bd:70:96:95:91:11:1e:f4:98:fe:e6: 85:22:4c:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjUxMDE5MDEyMTU1WhcNMjUxMDI2MDEyMTU1WjAYMRYwFAYD VQQDEw02OGY0M2QzNC01YmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1D8lP2msu5iJ/i00g0KLi03h1r2U4gZ6cle2w9/BMKjAtqapeNYOEaxonmrP XPAQ0/0MTBUwM0T030TZix9vICokkmoJaA4PXPC0Q67yb1z5XZ2RmNi8M1ERfiKE hiMEpHe0ie60TYCBy+B2nVvhoG50WiBMZMkGO//irvX+DPBmlGbei9E8jvbcfpNe ZBVoo1EQY6GOdH++7qEJw1avRFF6OSAHlvc9PG53r8c56a5VLtq8rgJDqU3Pm/pu 6fy5PLlwlWU3qCC395KSko6EO+MiYf59hSan8G1Pe2GsDHlVHt3SUF06t8mjWfbD IV1T417/ZLbnpKIZFFJegbU+lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNb7X5k CkV9QxI74PAWdvh65XoOMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBagtj2b/bK+n1NiWq40RjBpNeKHIFetI3nCI/STIB3iv/Tni2uEoUF jdbanL3DIdlER+gTSr9ujp0dEB4FgD92lFTowQeTpY80jdUHnsxjWpYidi4hLhoE Od2bZFYKjRc5kBBAj6RFC1ewIwMWc1RZ03EZFNYPAcRSxZLMXyU83IlWZkbWG137 yASdnCuyeBJ4NCIw4bKu4XPfNeppKXaM/TvQcJrcevcLY/myf4yxaJRp7HlADI/6 J9C2bcjDOMp2ydNo+Rs591aQdxcloLPEjy3CfNB+Y0Q3CXnTkGDudSV/DvpyB/MG xAJxAEjFzvEzvXCWlZERHvSY/uaFIkwU -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:57 2025 by rpki-client