$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: kB3kCdsrv7CmvRdPEyAM0bH2ob9JAGztp9lqENZE74g= Subject key identifier: 83:93:04:A7:05:7D:7A:C2:AD:BA:17:CD:14:0E:79:00:8E:F4:F3:B1 Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 047F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 045E Signing time: Sun 19 Oct 2025 02:06:55 +0000 Manifest this update: Sun 19 Oct 2025 02:06:54 +0000 Manifest next update: Sun 26 Oct 2025 02:06:54 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: vZLB1W+GQPbMhOloIB0ZQjxeJXHeD+V6y9YyMLE+3Mc=) 2: A8827568116911EEBB241C32C4F9AE02.roa (hash: ePscgiftvgu3AgZJRcwiRUYhc5l5akEknNm+3bxCM0A=) 3: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 4: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 5: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: aj4Q4SeRE+NI4REEKNFbR+3ayDuDtlipzDAl7u7My1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Oct 19 02:06:54 2025 GMT Not After : Oct 26 02:06:54 2025 GMT Subject: CN=68f447be-5cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:6a:63:ba:cc:46:ff:37:69:8d:56:b3:0f: 37:2c:96:97:16:31:2e:f5:5c:a2:78:a4:e2:53:3d: 17:1e:58:91:07:55:0d:a8:25:ba:1c:e0:c4:63:ea: 9e:15:51:a7:de:d9:11:75:7a:4c:0e:93:a5:b4:e9: e5:39:49:05:1e:8a:0d:60:11:58:c9:78:12:10:40: 48:73:87:f0:a9:18:af:a8:a8:3f:48:55:2e:5e:fa: c5:5c:08:01:82:30:78:45:7d:0b:ba:e6:2d:cb:63: 94:d2:b3:57:12:1d:d1:72:a5:16:89:8f:55:95:31: 0a:ca:bf:16:62:f7:c4:cd:d8:9b:6d:d9:c4:46:7d: f8:70:43:09:b5:13:2d:19:61:2c:f2:33:85:33:9e: 11:16:11:af:d4:39:0b:0c:99:b3:6d:61:54:db:f8: a9:05:0b:43:e9:5c:a8:12:60:b4:03:16:8f:f8:a0: c6:e7:40:be:40:d0:51:49:af:f7:4b:81:fd:ae:9f: a7:39:5a:eb:5b:84:b5:f7:b7:48:e0:3b:70:df:52: b8:35:48:de:75:d9:0b:3a:ec:95:b9:f8:cf:2b:d9: cc:61:79:91:81:f8:5c:eb:71:34:68:88:58:c6:94: 93:51:83:7f:08:0a:d2:b3:af:7f:c7:49:37:80:f9: 12:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:93:04:A7:05:7D:7A:C2:AD:BA:17:CD:14:0E:79:00:8E:F4:F3:B1 X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:e6:af:a0:45:9f:9e:56:c6:b3:f7:f4:f8:ae:92:3e:0e:25: 6a:34:7d:45:14:48:ca:e1:90:bf:d6:a3:d3:9d:32:3d:c8:57: 10:1d:42:00:dc:b5:65:2d:19:ce:f4:2d:d4:d3:78:f2:f5:e3: 59:61:ae:83:20:02:bd:36:08:79:83:b0:dc:f7:b5:b0:a2:00: 19:b0:dc:0a:85:fc:0d:c0:41:5b:8d:e7:85:71:8e:13:6f:57: 2a:38:23:59:a7:16:bc:84:1e:70:34:99:72:58:b1:bf:ab:5f: c6:a2:43:1b:1e:d4:5e:e3:fd:31:c2:26:a8:b9:03:dd:7a:b3: 48:1e:73:a5:34:1d:fd:d1:fc:8c:67:f1:35:8c:08:57:d0:0e: ef:2a:a1:c6:40:3a:78:aa:d5:89:9b:b6:13:f0:c8:2a:41:45: 37:53:09:7b:31:7a:ad:43:0a:e0:34:d3:86:db:91:0e:d0:bf: 98:6f:bc:3d:db:53:b9:89:e9:9d:75:a7:7c:7f:c8:7a:e8:d9: db:97:5d:6e:fc:e4:33:f3:47:d3:11:75:fb:51:a6:f1:75:3e: 08:52:be:29:85:f9:6b:ca:7e:7e:f0:36:29:49:de:49:1b:c2: f2:e8:a0:7f:b0:dc:b0:cb:68:a1:50:36:06:2d:3e:2d:7f:93: 39:b9:bd:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUxMDE5MDIwNjU0WhcNMjUxMDI2MDIwNjU0WjAYMRYwFAYD VQQDEw02OGY0NDdiZS01Y2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt5qY7rMRv83aY1Wsw83LJaXFjEu9VyieKTiUz0XHliRB1UNqCW6HODEY+qe FVGn3tkRdXpMDpOltOnlOUkFHooNYBFYyXgSEEBIc4fwqRivqKg/SFUuXvrFXAgB gjB4RX0LuuYty2OU0rNXEh3RcqUWiY9VlTEKyr8WYvfEzdibbdnERn34cEMJtRMt GWEs8jOFM54RFhGv1DkLDJmzbWFU2/ipBQtD6VyoEmC0AxaP+KDG50C+QNBRSa/3 S4H9rp+nOVrrW4S197dI4Dtw31K4NUjeddkLOuyVufjPK9nMYXmRgfhc63E0aIhY xpSTUYN/CArSs69/x0k3gPkSpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOTBKcF fXrCrboXzRQOeQCO9POxMB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ5q+gRZ+eVsaz9/T4rpI+DiVqNH1FFEjK4ZC/1qPTnTI9yFcQHUIA 3LVlLRnO9C3U03jy9eNZYa6DIAK9Ngh5g7Dc97WwogAZsNwKhfwNwEFbjeeFcY4T b1cqOCNZpxa8hB5wNJlyWLG/q1/GokMbHtRe4/0xwiaouQPderNIHnOlNB390fyM Z/E1jAhX0A7vKqHGQDp4qtWJm7YT8MgqQUU3Uwl7MXqtQwrgNNOG25EO0L+Yb7w9 21O5iemddad8f8h66Nnbl11u/OQz80fTEXX7UabxdT4IUr4phflryn5+8DYpSd5J G8Ly6KB/sNywy2ihUDYGLT4tf5M5ub0O -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:08 2025 by rpki-client