$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: fXiEeRuG2TqXytAh5wDqGldi3Dkpgi7I2IgRbVJnWxw= Subject key identifier: EE:A3:43:6C:1C:A0:D9:97:BC:DE:F7:05:18:7C:13:BE:EA:7B:05:19 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0420 Signing time: Sun 19 Oct 2025 02:18:13 +0000 Manifest this update: Sun 19 Oct 2025 02:18:13 +0000 Manifest next update: Sun 26 Oct 2025 02:18:13 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: fFIXzZFt64otUnXII1v3ulm+LQ7WSQPU1Vi/NOBhYC4=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Oct 19 02:18:13 2025 GMT Not After : Oct 26 02:18:13 2025 GMT Subject: CN=68f44a65-e78b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:39:64:c2:d0:83:6d:37:13:03:6b:f9:ef:55: 70:7e:31:33:3a:10:ac:59:01:2d:ed:66:b4:89:c8: 7b:aa:67:f0:71:2b:97:2f:c1:0c:67:ae:84:d4:2a: 1d:59:b2:17:26:24:80:ce:52:ad:a7:ec:26:da:7f: 0a:18:97:2c:c1:2f:b0:4d:07:ad:4c:f5:8c:c0:47: b7:e4:d7:9d:84:c7:bc:bc:1c:9e:93:ed:0e:7f:d4: 3c:4b:21:cd:7d:84:30:b0:6e:44:72:07:a0:ed:52: a3:33:23:df:12:15:f5:1a:9e:e0:4c:3d:12:89:9b: 92:e3:cd:01:b6:15:dd:29:31:97:75:a8:65:c3:9c: 2b:20:6c:45:57:58:87:63:b8:9a:d5:63:8f:35:04: e3:55:c1:06:4c:44:84:7d:c4:63:d9:d5:1f:e3:d2: 4d:c9:56:2a:a3:7f:9e:27:ee:b7:f6:03:d0:81:b2: 32:9f:e2:14:e1:9a:ef:60:c9:4d:6d:85:46:78:ba: 01:15:96:17:9d:50:6b:bc:90:4d:62:f8:16:3d:8c: 32:8e:5d:0c:14:cb:a0:22:b1:a5:6b:0f:92:f1:61: 91:f2:db:c5:3b:c6:66:55:0e:b9:52:da:91:e1:7d: 2d:ec:bd:ff:eb:d0:17:ee:65:41:e1:8d:05:58:2f: 60:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A3:43:6C:1C:A0:D9:97:BC:DE:F7:05:18:7C:13:BE:EA:7B:05:19 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:52:a9:82:49:e6:6e:44:d9:11:fb:52:e6:94:5c:cf:75:3f: 20:a4:95:71:2b:13:d6:a9:d0:40:c6:47:01:d7:e2:22:a3:82: 5d:38:6f:32:c4:0a:47:7e:5c:d4:84:43:6f:d2:39:85:69:54: f9:32:da:e7:b8:4b:a5:0e:67:18:8e:c5:f1:3a:22:37:bf:12: 69:e3:dd:be:2c:5b:e2:b6:38:5f:df:a5:47:74:64:e0:e6:a8: 84:db:c9:38:5d:4f:96:00:69:de:4a:db:2d:aa:48:cd:d9:a1: 0a:77:6d:01:0e:9b:df:bd:ef:39:96:ce:78:df:59:a5:64:c6: ad:6f:39:a6:b9:10:12:fc:3f:fb:6d:24:0b:12:b1:6e:bb:58: 4b:86:aa:4f:be:69:e4:4d:90:1a:73:a3:6e:57:a6:9c:be:d9: 06:92:a4:58:00:84:d2:28:60:6b:be:49:a9:4d:9c:54:f2:95: 6d:66:05:d2:bd:4a:60:29:5c:1d:bb:9b:9e:f4:b1:aa:20:60: d4:38:b1:b2:07:42:4c:cd:74:19:ef:5b:57:fa:ae:c3:ac:6a: bd:54:d9:07:07:88:ef:91:50:be:05:21:36:9f:dd:24:46:9c: 4e:16:89:89:9e:18:97:e8:03:d8:76:fb:58:30:94:f5:1e:48: 2c:a9:1e:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUxMDE5MDIxODEzWhcNMjUxMDI2MDIxODEzWjAYMRYwFAYD VQQDEw02OGY0NGE2NS1lNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TlkwtCDbTcTA2v571VwfjEzOhCsWQEt7Wa0ich7qmfwcSuXL8EMZ66E1Cod WbIXJiSAzlKtp+wm2n8KGJcswS+wTQetTPWMwEe35NedhMe8vByek+0Of9Q8SyHN fYQwsG5Ecgeg7VKjMyPfEhX1Gp7gTD0SiZuS480BthXdKTGXdahlw5wrIGxFV1iH Y7ia1WOPNQTjVcEGTESEfcRj2dUf49JNyVYqo3+eJ+639gPQgbIyn+IU4ZrvYMlN bYVGeLoBFZYXnVBrvJBNYvgWPYwyjl0MFMugIrGlaw+S8WGR8tvFO8ZmVQ65UtqR 4X0t7L3/69AX7mVB4Y0FWC9goQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6jQ2wc oNmXvN73BRh8E77qewUZMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeUqmCSeZuRNkR+1LmlFzPdT8gpJVxKxPWqdBAxkcB1+Iio4JdOG8y xApHflzUhENv0jmFaVT5MtrnuEulDmcYjsXxOiI3vxJp492+LFvitjhf36VHdGTg 5qiE28k4XU+WAGneStstqkjN2aEKd20BDpvfve85ls5431mlZMatbzmmuRAS/D/7 bSQLErFuu1hLhqpPvmnkTZAac6NuV6acvtkGkqRYAITSKGBrvkmpTZxU8pVtZgXS vUpgKVwdu5ue9LGqIGDUOLGyB0JMzXQZ71tX+q7DrGq9VNkHB4jvkVC+BSE2n90k RpxOFomJnhiX6APYdvtYMJT1HkgsqR5y -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:26 2025 by rpki-client