$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: /wukkcOOrwqDMrFNzH2C4IZVg2Vk58dGPnHsK/x+VzY= Subject key identifier: 25:EA:38:AC:B8:D5:55:D3:A1:75:3C:1F:41:8F:1F:F2:81:72:E1:92 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 01CA Signing time: Sun 19 Oct 2025 05:21:55 +0000 Manifest this update: Sun 19 Oct 2025 05:21:55 +0000 Manifest next update: Sun 26 Oct 2025 05:21:55 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: LUyBYBaYA1awHJNymikIwl0tOIzDx6jf45lBjYUZ8VI=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: nQOUg9YX4u69ZrVdmC/H632YznQdnlGcTOZN3JI/5dE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Oct 19 05:21:55 2025 GMT Not After : Oct 26 05:21:55 2025 GMT Subject: CN=68f47573-4346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:70:71:16:e1:4f:f4:59:78:16:01:38:c2: 3a:b0:5e:33:97:5c:d9:8e:09:4d:ea:f1:e3:58:c2: 2e:30:ba:b8:ea:23:a2:5f:b5:41:f6:25:7c:08:30: 15:67:a6:a3:01:3f:87:bf:5c:52:6e:c4:83:53:10: 17:d0:83:47:a7:fd:03:d7:17:9b:0f:bb:64:b9:66: 6c:4c:48:85:b9:99:db:ee:a8:4f:1d:41:24:50:d9: 22:df:37:0b:8a:c6:56:83:9a:01:27:d6:88:3f:27: ca:29:1a:2f:c9:c2:f6:25:dc:fa:75:47:c0:b8:23: b0:da:0b:b9:b9:f3:d2:39:a7:2e:da:bb:c2:a2:36: e5:19:ea:49:f9:ef:41:be:7a:01:44:db:df:e6:89: 3f:ee:60:c4:9d:f2:b8:b7:69:27:e9:c0:19:e2:7a: e8:6a:73:64:50:76:59:d9:78:4f:65:f3:67:0d:3b: ad:0e:2d:98:a8:14:d4:1e:16:4a:dc:03:4f:91:42: 9b:7a:e0:85:27:9a:d2:b1:2d:4e:ca:45:60:52:d2: 3e:50:8c:70:b1:a4:2e:74:93:44:c8:af:77:d9:42: 85:94:0a:b6:7a:9b:c1:d6:86:1c:af:b9:ba:6f:4c: 7e:8d:b6:53:41:b1:bb:94:3e:7c:28:e3:cf:67:23: 06:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EA:38:AC:B8:D5:55:D3:A1:75:3C:1F:41:8F:1F:F2:81:72:E1:92 X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:17:b1:04:ce:99:4d:da:0a:35:f8:ee:7e:ab:2f:9d:85:c1: 78:67:71:95:3e:89:96:4d:d9:8f:56:63:73:0b:8c:a2:a2:19: d1:0e:f8:c2:be:70:53:e6:76:bc:0e:4f:e9:1e:c7:ef:b9:b2: b7:73:3e:f6:93:d7:c1:d6:b7:6c:c5:68:0d:39:c5:18:54:3a: 81:e4:49:a3:88:cf:ed:54:80:07:58:f1:9f:a8:e5:5e:8d:19: a3:b8:30:59:3b:76:bb:cd:7c:d1:65:ea:1b:f1:a8:b5:f4:81: 12:ae:4b:c5:f2:4e:80:ae:50:1f:13:e1:da:b6:02:70:5e:80: f8:7b:e1:5b:ca:99:7a:2b:1f:c2:ab:2b:2d:26:f0:16:2f:cb: 37:dc:04:90:7b:b6:d6:43:9d:da:bb:d3:f5:3b:8d:4b:68:a9: 49:8d:b7:db:7f:df:81:2f:a2:ea:19:c4:f9:c7:a1:32:ab:93: b0:bc:91:40:6f:0f:46:da:f9:00:74:fd:a9:43:e7:ec:f7:5e: 01:2e:95:da:8a:3c:77:15:7b:d0:eb:f6:18:a1:47:d6:8c:82: 8c:78:ad:46:dc:e1:44:f2:9f:40:5c:df:fe:ea:1a:0c:a8:51: 92:12:8f:05:e4:51:8e:52:3d:8f:28:7a:53:2b:5d:44:01:bb: 98:82:26:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjUxMDE5MDUyMTU1WhcNMjUxMDI2MDUyMTU1WjAYMRYwFAYD VQQDEw02OGY0NzU3My00MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUVwcRbhT/RZeBYBOMI6sF4zl1zZjglN6vHjWMIuMLq46iOiX7VB9iV8CDAV Z6ajAT+Hv1xSbsSDUxAX0INHp/0D1xebD7tkuWZsTEiFuZnb7qhPHUEkUNki3zcL isZWg5oBJ9aIPyfKKRovycL2Jdz6dUfAuCOw2gu5ufPSOacu2rvCojblGepJ+e9B vnoBRNvf5ok/7mDEnfK4t2kn6cAZ4nroanNkUHZZ2XhPZfNnDTutDi2YqBTUHhZK 3ANPkUKbeuCFJ5rSsS1OykVgUtI+UIxwsaQudJNEyK932UKFlAq2epvB1oYcr7m6 b0x+jbZTQbG7lD58KOPPZyMGSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXqOKy4 1VXToXU8H0GPH/KBcuGSMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbF7EEzplN2go1+O5+qy+dhcF4Z3GVPomWTdmPVmNzC4yiohnRDvjC vnBT5na8Dk/pHsfvubK3cz72k9fB1rdsxWgNOcUYVDqB5EmjiM/tVIAHWPGfqOVe jRmjuDBZO3a7zXzRZeob8ai19IESrkvF8k6ArlAfE+HatgJwXoD4e+Fbypl6Kx/C qystJvAWL8s33ASQe7bWQ53au9P1O41LaKlJjbfbf9+BL6LqGcT5x6Eyq5OwvJFA bw9G2vkAdP2pQ+fs914BLpXaijx3FXvQ6/YYoUfWjIKMeK1G3OFE8p9AXN/+6hoM qFGSEo8F5FGOUj2PKHpTK11EAbuYgiYg -----END CERTIFICATE-----Generated at Mon Oct 20 19:45:54 2025 by rpki-client