$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: JZ/A9KAy5+8SAYi+s3miGhk3y/w9p0LVnK3QTmghvvs= Subject key identifier: 37:0E:62:7E:C2:DB:03:A4:48:CE:F5:AA:A1:E9:89:FC:B5:32:8A:11 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E7D Signing time: Sat 18 Oct 2025 18:21:26 +0000 Manifest this update: Sat 18 Oct 2025 18:21:26 +0000 Manifest next update: Sat 25 Oct 2025 18:21:26 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: ypJr1cp1GO7+M9ptGJYbzG/OhmzdBi1prbN7rDyQYqE=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3718 (0xe86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Oct 18 18:21:26 2025 GMT Not After : Oct 25 18:21:26 2025 GMT Subject: CN=68f3daa6-989e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cb:1a:e0:ed:ce:a8:7f:3e:f7:d4:a5:8e:9f: d0:22:ab:13:96:54:f8:45:29:3a:66:78:30:fc:c0: 40:72:08:20:71:d8:a4:48:49:d3:3f:cd:da:74:f4: d2:87:5f:77:47:ff:8c:80:3e:1a:d9:77:4d:3d:47: 9c:c5:d5:49:1c:49:9d:80:d7:d6:e2:9c:a1:84:40: 8f:91:51:ad:e1:8e:a0:1e:3a:6b:37:80:55:90:bd: 92:e4:a7:79:16:ec:0b:59:a6:2b:91:16:0b:36:94: a6:30:cc:73:62:3c:08:e4:5d:3b:94:2b:d4:0a:b8: 7b:33:e4:d8:94:f5:dc:f1:86:ac:8c:62:db:bc:a4: 56:1d:69:0d:db:f5:51:b0:d9:ef:ed:75:52:de:18: 84:4d:eb:52:96:46:1c:10:c6:0e:63:a0:6e:6c:c8: 72:2c:8c:e7:5e:e5:27:5f:cc:71:cd:32:0c:0c:78: fe:17:dc:5f:c0:04:0f:0b:3d:49:8a:29:96:38:be: f1:7b:21:f2:64:47:91:1c:a3:59:52:51:a6:2d:6b: 88:c0:e9:e9:a3:1f:e8:99:a9:68:f2:1c:75:24:7d: b1:e9:c7:31:9a:15:0c:57:aa:94:a9:4e:b6:80:6e: 9d:04:11:3d:32:0f:9d:ad:d3:70:1f:67:da:f2:10: 19:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0E:62:7E:C2:DB:03:A4:48:CE:F5:AA:A1:E9:89:FC:B5:32:8A:11 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:f5:20:89:3e:55:09:ef:28:90:6e:55:ff:b8:98:bf:4b:15: 2f:44:d5:f3:1a:76:4e:4e:bd:52:41:b4:25:2a:7b:ca:e4:54: b8:b2:2a:2b:eb:e2:f9:31:5e:0f:5c:4f:38:3f:aa:ce:f9:fb: a8:26:99:e0:dd:1d:82:95:ed:ea:40:58:d6:45:ed:ea:00:fb: f2:b7:09:d4:31:43:00:20:1e:8a:8a:c8:fe:21:f5:19:de:73: 04:b5:95:80:53:59:d3:76:ff:23:b0:f9:09:58:17:bf:43:ff: 83:e1:a3:ac:9c:3e:fe:7d:75:3e:89:1b:21:84:ba:d7:47:db: 84:57:61:a0:07:91:13:e2:10:c4:4e:3e:c5:3f:01:26:6d:18: 8e:fa:56:16:f6:01:72:5a:1b:70:81:45:03:de:3c:d2:e7:de: af:8e:27:18:a1:d5:23:c3:84:4b:28:41:70:61:cf:f4:2d:7b: f8:97:c8:cd:c9:10:ab:3c:a6:b0:2a:d1:8d:44:df:7d:29:d1: c9:6b:e8:71:61:e3:a0:df:77:3f:f2:36:c5:08:4e:24:39:72: cb:03:42:6f:ce:cd:25:7e:64:d3:e9:0e:8b:3a:0c:b3:3b:4f: eb:f0:4e:bc:60:3d:b7:4f:ea:da:9c:f0:87:5c:67:0e:5c:43: 50:3d:5a:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUxMDE4MTgyMTI2WhcNMjUxMDI1MTgyMTI2WjAYMRYwFAYD VQQDEw02OGYzZGFhNi05ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvssa4O3OqH8+99Sljp/QIqsTllT4RSk6Zngw/MBAcgggcdikSEnTP83adPTS h193R/+MgD4a2XdNPUecxdVJHEmdgNfW4pyhhECPkVGt4Y6gHjprN4BVkL2S5Kd5 FuwLWaYrkRYLNpSmMMxzYjwI5F07lCvUCrh7M+TYlPXc8YasjGLbvKRWHWkN2/VR sNnv7XVS3hiETetSlkYcEMYOY6BubMhyLIznXuUnX8xxzTIMDHj+F9xfwAQPCz1J iimWOL7xeyHyZEeRHKNZUlGmLWuIwOnpox/omalo8hx1JH2x6ccxmhUMV6qUqU62 gG6dBBE9Mg+drdNwH2fa8hAZNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcOYn7C 2wOkSM71qqHpify1MooRMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm9SCJPlUJ7yiQblX/uJi/SxUvRNXzGnZOTr1SQbQlKnvK5FS4sior 6+L5MV4PXE84P6rO+fuoJpng3R2Cle3qQFjWRe3qAPvytwnUMUMAIB6Kisj+IfUZ 3nMEtZWAU1nTdv8jsPkJWBe/Q/+D4aOsnD7+fXU+iRshhLrXR9uEV2GgB5ET4hDE Tj7FPwEmbRiO+lYW9gFyWhtwgUUD3jzS596vjicYodUjw4RLKEFwYc/0LXv4l8jN yRCrPKawKtGNRN99KdHJa+hxYeOg33c/8jbFCE4kOXLLA0Jvzs0lfmTT6Q6LOgyz O0/r8E68YD23T+ranPCHXGcOXENQPVoR -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:27 2025 by rpki-client