$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: zUhnm0gLZK3MSipF90Xv7S1CSff/SR0uaiCOkN+J0Y4= Subject key identifier: 38:4C:02:91:7E:9A:81:C5:90:35:65:FA:08:DB:C6:D6:03:CC:81:08 Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 123B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 1236 Signing time: Sat 18 Oct 2025 17:55:59 +0000 Manifest this update: Sat 18 Oct 2025 17:55:58 +0000 Manifest next update: Sat 25 Oct 2025 17:55:58 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: dfIRPra0m1qWBS1/iNPdU8ln8n8d/bhxTzwTY5jcTmA=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: lPLi48Hcf9N1auMQ0fWenp3rORwIoz4fywb8Qz85E7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4667 (0x123b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Oct 18 17:55:58 2025 GMT Not After : Oct 25 17:55:58 2025 GMT Subject: CN=68f3d4ae-761e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:96:28:94:17:a6:67:2d:5f:b0:8e:dd:9a:a6: a6:39:fb:1a:22:22:04:d2:12:e7:de:4c:60:8b:9e: f4:25:fa:fa:24:4d:fa:60:33:f6:2e:7f:d0:95:9a: df:00:15:4f:aa:ce:e0:f4:78:dc:41:1d:59:a4:66: a4:ea:8f:83:12:a9:1a:24:ef:c9:f3:dc:9c:21:66: e9:31:63:02:9f:67:7c:9b:21:b6:cf:db:98:2a:75: 3f:51:09:a4:c9:30:24:50:6f:6e:fc:1a:91:dd:2b: c1:80:2c:cf:41:49:8f:26:c8:ff:bd:b8:4e:78:1a: 1e:7f:86:86:d7:34:66:e9:a3:a2:74:4c:b1:f8:5f: 34:26:30:f2:52:2e:68:5e:4b:14:18:ca:af:6f:eb: 71:e1:2a:bb:ad:8e:45:ac:4f:df:b8:2f:bf:bf:4c: 38:5e:44:2e:e7:8e:74:32:14:d8:36:5e:14:63:ce: 67:f3:47:66:7e:a2:5f:ab:4b:8d:28:b1:b1:7f:19: 19:26:51:d7:14:79:69:67:5a:02:71:a1:e9:49:e4: ea:d0:f0:14:98:c0:7f:8f:7f:34:00:01:d2:44:34: bf:4a:2f:a9:0d:00:9c:0f:57:be:e3:a7:0a:17:a8: 19:7b:bf:34:f3:e3:a0:b5:6b:60:ee:22:27:fd:f8: 1c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:4C:02:91:7E:9A:81:C5:90:35:65:FA:08:DB:C6:D6:03:CC:81:08 X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:79:7e:d3:d9:cf:ec:6e:80:e8:7b:c5:65:2a:20:4b:b0:42: a4:3c:7e:a0:c2:8f:1c:27:f5:b7:4f:ee:2e:e3:26:1e:e7:1b: 9b:8d:c4:44:88:02:a3:83:08:f6:c0:dc:d1:59:b6:88:ce:62: 99:26:3b:46:59:a1:43:27:54:37:74:77:c2:a3:0e:b1:fd:b8: 7d:27:08:46:55:79:89:d6:f8:45:04:6e:7f:b2:e7:e8:34:02: 36:c8:73:b5:89:8d:18:5a:08:65:8b:71:13:e1:92:cc:13:74: f1:b5:d9:47:2c:19:01:06:ca:8a:ab:5c:03:67:b6:32:85:ad: ff:dd:38:11:3b:2a:97:6e:92:49:91:ef:7a:a8:2b:00:be:2a: 60:d4:8f:85:51:47:25:fc:97:a7:f0:03:23:f2:4b:50:87:71: be:03:0a:b7:48:3d:be:9d:21:ca:4c:02:22:17:ee:d7:93:23: 6d:c9:75:94:2c:5a:ac:08:b5:f7:ca:c1:f8:04:4d:6d:15:b4: 4b:1a:e6:70:9f:83:1d:b2:61:1d:32:7c:fd:db:c8:27:c8:a5: b3:36:3d:e5:b9:fa:bc:e9:d7:8b:d5:eb:29:3f:20:28:ba:f1: 88:11:83:df:82:34:38:42:e5:85:f0:c2:01:08:1f:56:47:2b: 8f:da:19:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUxMDE4MTc1NTU4WhcNMjUxMDI1MTc1NTU4WjAYMRYwFAYD VQQDEw02OGYzZDRhZS03NjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZYolBemZy1fsI7dmqamOfsaIiIE0hLn3kxgi570Jfr6JE36YDP2Ln/QlZrf ABVPqs7g9HjcQR1ZpGak6o+DEqkaJO/J89ycIWbpMWMCn2d8myG2z9uYKnU/UQmk yTAkUG9u/BqR3SvBgCzPQUmPJsj/vbhOeBoef4aG1zRm6aOidEyx+F80JjDyUi5o XksUGMqvb+tx4Sq7rY5FrE/fuC+/v0w4XkQu5450MhTYNl4UY85n80dmfqJfq0uN KLGxfxkZJlHXFHlpZ1oCcaHpSeTq0PAUmMB/j380AAHSRDS/Si+pDQCcD1e+46cK F6gZe7808+OgtWtg7iIn/fgcqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhMApF+ moHFkDVl+gjbxtYDzIEIMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIeX7T2c/sboDoe8VlKiBLsEKkPH6gwo8cJ/W3T+4u4yYe5xubjcRE iAKjgwj2wNzRWbaIzmKZJjtGWaFDJ1Q3dHfCow6x/bh9JwhGVXmJ1vhFBG5/sufo NAI2yHO1iY0YWghli3ET4ZLME3TxtdlHLBkBBsqKq1wDZ7Yyha3/3TgROyqXbpJJ ke96qCsAvipg1I+FUUcl/Jen8AMj8ktQh3G+Awq3SD2+nSHKTAIiF+7XkyNtyXWU LFqsCLX3ysH4BE1tFbRLGuZwn4MdsmEdMnz928gnyKWzNj3lufq86deL1espPyAo uvGIEYPfgjQ4QuWF8MIBCB9WRyuP2hm6 -----END CERTIFICATE-----Generated at Mon Oct 20 14:37:11 2025 by rpki-client