$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: 5S3RjqzLZ60FMJJFHlGuPUl29BwbfVW2TCSIQhG8Vfk= Subject key identifier: 7A:D6:40:C0:B8:0B:FF:34:1B:64:F9:29:FE:81:ED:FE:13:08:F1:EF Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 064C Signing time: Sun 19 Oct 2025 00:17:48 +0000 Manifest this update: Sun 19 Oct 2025 00:17:47 +0000 Manifest next update: Sun 26 Oct 2025 00:17:47 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: JvgJ28mZ+s1nx7QVYC37u5Dj0Lmv3W/FWlodmwOKcNY=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Oct 19 00:17:47 2025 GMT Not After : Oct 26 00:17:47 2025 GMT Subject: CN=68f42e2b-68d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d3:cd:fa:41:f9:16:62:7c:4e:da:9e:b0:77: 67:91:4c:29:b0:27:8a:55:00:24:75:db:4c:0a:46: 22:06:3b:ae:29:35:bf:ce:61:9a:9d:c4:c8:5e:10: 8c:a7:f0:7a:45:cf:ac:78:ec:ba:80:f8:92:64:00: 47:91:2b:0c:ba:30:02:7b:dc:76:71:5d:74:b2:78: 24:e8:50:85:83:20:4e:95:ed:55:84:98:0f:ce:76: 60:3e:c2:63:01:08:23:22:44:ac:36:4a:7c:97:6a: b8:d9:06:db:39:e8:2e:57:c4:53:3b:f5:74:0f:87: fa:8c:e8:3f:d1:dd:11:ef:f8:b5:de:d7:77:ce:c9: 75:d2:89:4e:cb:87:7d:75:3f:b1:cd:ce:df:ff:52: a0:1d:82:bd:5d:93:86:2c:30:d4:75:3a:c2:43:2b: fd:97:5a:9e:13:53:18:e9:e9:43:1a:5b:d3:57:2e: 73:ed:20:e6:f0:c0:fd:f8:3c:fa:ff:9e:57:20:3e: d0:6f:80:ec:2c:0b:d2:0c:02:cd:31:7d:53:db:ca: cb:46:6e:96:53:93:c0:22:8d:df:4e:d2:5f:ca:c9: c3:65:48:02:7d:e6:b4:23:5e:e1:5c:88:67:d9:18: 1f:cb:03:07:1a:f3:f5:42:13:33:3a:63:cc:eb:4c: f2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D6:40:C0:B8:0B:FF:34:1B:64:F9:29:FE:81:ED:FE:13:08:F1:EF X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:50:4d:79:6d:1e:60:6f:13:f3:f5:cd:89:85:85:5d:43:68: 94:d5:f9:dc:b0:86:71:00:ac:bf:b1:93:db:c2:dd:b2:d0:a9: de:3e:0a:47:60:23:0c:bc:14:b5:53:0d:8c:45:01:1b:f0:4d: 22:66:d6:ef:db:76:bd:6d:25:61:77:e5:26:f8:b3:79:2f:f5: 7f:7a:01:59:cd:ad:d5:d1:85:70:5e:df:79:93:14:ba:c9:e3: 75:ae:08:18:cd:ec:67:68:92:4a:3e:a8:44:db:17:31:e0:81: 62:5b:be:86:33:64:12:4c:db:f1:51:38:b6:b0:50:59:82:44: 21:2f:07:67:ac:07:ff:99:e3:15:e8:29:ba:16:83:77:17:8c: b1:fb:3b:60:c5:90:e6:67:36:24:69:c7:4b:fa:55:20:0a:b6: b6:26:d6:fb:72:f9:7b:d4:33:c1:2f:8b:5a:a3:e4:c5:11:e3: ce:b3:cb:86:fc:cf:0b:90:30:ed:14:8a:3d:c9:bf:77:c7:11: 30:d3:ac:75:22:3a:c5:6f:bd:16:77:ea:bc:89:a5:11:20:42: ed:4d:01:9a:bc:82:d1:9e:b4:bb:bb:17:1d:d1:3d:d0:bf:9d: 6f:68:4b:5f:bd:54:5e:f8:14:8a:6e:12:b5:b6:d9:c5:b3:73: 70:ac:33:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUxMDE5MDAxNzQ3WhcNMjUxMDI2MDAxNzQ3WjAYMRYwFAYD VQQDEw02OGY0MmUyYi02OGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4NPN+kH5FmJ8TtqesHdnkUwpsCeKVQAkddtMCkYiBjuuKTW/zmGancTIXhCM p/B6Rc+seOy6gPiSZABHkSsMujACe9x2cV10sngk6FCFgyBOle1VhJgPznZgPsJj AQgjIkSsNkp8l2q42QbbOeguV8RTO/V0D4f6jOg/0d0R7/i13td3zsl10olOy4d9 dT+xzc7f/1KgHYK9XZOGLDDUdTrCQyv9l1qeE1MY6elDGlvTVy5z7SDm8MD9+Dz6 /55XID7Qb4DsLAvSDALNMX1T28rLRm6WU5PAIo3fTtJfysnDZUgCfea0I17hXIhn 2RgfywMHGvP1QhMzOmPM60zyxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrWQMC4 C/80G2T5Kf6B7f4TCPHvMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoUE15bR5gbxPz9c2JhYVdQ2iU1fncsIZxAKy/sZPbwt2y0KnePgpH YCMMvBS1Uw2MRQEb8E0iZtbv23a9bSVhd+Um+LN5L/V/egFZza3V0YVwXt95kxS6 yeN1rggYzexnaJJKPqhE2xcx4IFiW76GM2QSTNvxUTi2sFBZgkQhLwdnrAf/meMV 6Cm6FoN3F4yx+ztgxZDmZzYkacdL+lUgCra2Jtb7cvl71DPBL4tao+TFEePOs8uG /M8LkDDtFIo9yb93xxEw06x1IjrFb70Wd+q8iaURIELtTQGavILRnrS7uxcd0T3Q v51vaEtfvVRe+BSKbhK1ttnFs3NwrDN4 -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:09 2025 by rpki-client