$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: Sk0aM455pwtMBDnH1BhzsrKS9c/9QhVuhtnOp9o0mNM= Subject key identifier: B8:94:B3:68:D6:58:F2:DA:57:77:C5:9D:E3:F9:CF:02:56:81:54:39 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: C7 Signing time: Sun 19 Oct 2025 08:54:28 +0000 Manifest this update: Sun 19 Oct 2025 08:54:27 +0000 Manifest next update: Sun 26 Oct 2025 08:54:27 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: XPgpE78iFYyH5yDANcJcqBZ1huOu8WQzhtfuk1mEnIM=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: ItObitSQLkGH+talVc8PNR7Z2o8Aby5tjfREkgGvzVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Oct 19 08:54:27 2025 GMT Not After : Oct 26 08:54:27 2025 GMT Subject: CN=68f4a744-7548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:9a:dd:8d:2b:52:71:4c:55:02:9a:51:19: 8d:b9:3e:9b:b2:44:f0:f5:ed:44:cf:f4:49:ef:63: 64:13:fd:38:00:11:93:7e:fc:75:3c:5e:84:90:b5: c6:2c:98:71:f3:d0:4e:a9:8b:84:c7:0b:a2:0c:96: e1:24:85:76:ed:06:47:7f:c2:68:51:be:d4:be:c6: 46:7c:ab:3e:a0:d2:30:b3:48:d2:a9:d6:4c:ec:2e: 35:00:47:42:a8:f3:95:10:7a:ff:4c:be:1c:af:b6: 26:0e:c2:23:08:e5:d4:92:a0:9e:f5:b3:91:bd:6a: 95:e5:c5:d8:91:9d:b8:32:c6:db:4e:8f:29:dd:27: 79:03:27:a6:95:be:6e:dd:c0:88:36:80:91:4a:fe: bb:50:ec:fb:74:ab:1e:d3:42:50:00:08:88:e2:34: b9:c8:39:ba:5e:47:50:b2:00:9e:62:58:ac:f5:d3: 6c:6e:8b:3a:52:6d:45:ce:0b:d0:3e:77:fe:cf:d3: 39:3c:f9:51:ea:0d:eb:43:2c:1d:5e:62:a4:c0:b9: cc:03:8d:b9:c5:b6:60:ea:e9:da:57:0d:44:ef:35: e2:e1:8a:52:6b:11:bd:77:39:4e:cf:6d:51:9f:e3: d8:1c:f2:6d:62:be:0b:48:42:b0:bf:25:f1:8f:fa: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:94:B3:68:D6:58:F2:DA:57:77:C5:9D:E3:F9:CF:02:56:81:54:39 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b3:03:d2:a9:73:f7:89:4d:53:c1:54:b9:ef:a4:b4:52:7e: ec:a7:72:68:0c:f9:53:49:55:0d:9e:31:92:93:a5:b4:77:44: ad:fe:ea:b8:db:4a:3c:b9:91:2d:ee:e8:6f:f7:2d:30:7f:a7: 60:af:46:40:3e:eb:77:83:86:96:3d:8f:7d:93:c5:2a:6c:05: ba:64:38:c0:95:c4:d5:9a:1b:85:c4:fe:a2:e1:77:51:b9:f3: 41:5b:42:80:7b:5a:9a:b9:c4:26:2a:ae:23:d3:ce:43:c3:31: 13:ec:9c:71:b5:11:d5:06:21:81:5a:62:c8:bd:b5:96:28:e5: 64:0d:9c:fd:c2:7d:ac:31:10:94:cb:77:eb:ab:36:5e:0a:5d: 7b:98:0c:a0:2f:21:f1:a3:58:02:02:e6:61:72:3c:f7:b5:42: a1:cb:9e:70:8b:f6:4e:7e:46:e8:b8:c2:c7:29:a4:19:cd:63: f8:6d:37:24:54:59:9f:1d:82:78:8b:68:2d:17:7c:0d:6a:f0: 21:4b:6b:ce:f7:af:20:4a:21:6a:b0:54:0c:38:8e:d7:c5:61: 71:d6:95:d3:30:b8:28:2a:b3:0a:e1:52:c0:42:36:e4:9f:c3: 6f:c0:be:d7:12:39:53:08:19:f3:f5:0d:a8:82:be:ec:1c:7e: 56:b9:f8:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUxMDE5MDg1NDI3WhcNMjUxMDI2MDg1NDI3WjAYMRYwFAYD VQQDEw02OGY0YTc0NC03NTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweOa3Y0rUnFMVQKaURmNuT6bskTw9e1Ez/RJ72NkE/04ABGTfvx1PF6EkLXG LJhx89BOqYuExwuiDJbhJIV27QZHf8JoUb7UvsZGfKs+oNIws0jSqdZM7C41AEdC qPOVEHr/TL4cr7YmDsIjCOXUkqCe9bORvWqV5cXYkZ24MsbbTo8p3Sd5Ayemlb5u 3cCINoCRSv67UOz7dKse00JQAAiI4jS5yDm6XkdQsgCeYlis9dNsbos6Um1FzgvQ Pnf+z9M5PPlR6g3rQywdXmKkwLnMA425xbZg6unaVw1E7zXi4YpSaxG9dzlOz21R n+PYHPJtYr4LSEKwvyXxj/oaIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiUs2jW WPLaV3fFneP5zwJWgVQ5MB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABswPSqXP3iU1TwVS576S0Un7sp3JoDPlTSVUNnjGSk6W0d0St/uq4 20o8uZEt7uhv9y0wf6dgr0ZAPut3g4aWPY99k8UqbAW6ZDjAlcTVmhuFxP6i4XdR ufNBW0KAe1qaucQmKq4j085DwzET7JxxtRHVBiGBWmLIvbWWKOVkDZz9wn2sMRCU y3frqzZeCl17mAygLyHxo1gCAuZhcjz3tUKhy55wi/ZOfkbouMLHKaQZzWP4bTck VFmfHYJ4i2gtF3wNavAhS2vO968gSiFqsFQMOI7XxWFx1pXTMLgoKrMK4VLAQjbk n8NvwL7XEjlTCBnz9Q2ogr7sHH5Wufjd -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:48 2025 by rpki-client