$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft File: lY1wluouaxa8JKHQRXGdLsUUSX4.mft (raw, json) Hash identifier: 97Xm4Z501rtcMjbs5BZW6hVXKxGnPvU+hTxPja3iqZI= Subject key identifier: EB:B1:B6:29:D0:45:BE:71:4B:F0:57:68:BB:D4:18:2B:0C:45:D1:7A Authority key identifier: 95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E Certificate issuer: /CN=A91E28D8/serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft Manifest number: 029E Signing time: Sun 19 Oct 2025 03:45:34 +0000 Manifest this update: Sun 19 Oct 2025 03:45:34 +0000 Manifest next update: Sun 26 Oct 2025 03:45:34 +0000 Files and hashes: 1: lY1wluouaxa8JKHQRXGdLsUUSX4.crl (hash: k2VIg3FAE57i9KkMunED+g3isiWSWqkh049Hh+SABp4=) 2: 01109D481B9011EDBC68484CC4F9AE02.roa (hash: SSzVNdfhJc5xjlACETmueaivBNOUX59PK+NBqYEOe30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28D8, serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Validity Not Before: Oct 19 03:45:34 2025 GMT Not After : Oct 26 03:45:34 2025 GMT Subject: CN=68f45ede-583c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:3d:bf:3e:06:26:40:3d:d3:f1:8d:66:68: b7:69:57:5d:fc:ca:21:f3:8d:ac:b2:44:b5:bf:d4: be:83:a7:99:66:d1:48:0f:55:c2:a4:a6:90:2c:d9: f2:8c:9a:0f:2e:7c:fa:46:d6:aa:61:8b:67:c5:e0: 8a:d4:dd:62:d2:84:5d:71:d6:3b:c7:88:9e:db:3b: a8:06:01:12:50:50:73:c6:01:3c:d9:76:60:98:9f: 4b:9c:14:4a:8a:c7:c4:02:ea:63:9e:28:05:18:3f: 7c:70:74:e4:7d:c1:70:1e:02:26:ad:cc:4c:59:8c: 71:97:09:db:c0:d4:72:c9:97:84:c0:7f:04:3d:21: 94:69:37:ba:69:18:9d:3a:b1:3d:c7:d7:69:7c:30: 1f:a2:f6:b0:79:65:01:7a:06:9d:41:f1:7a:de:06: c8:ac:5c:ca:24:d7:4d:db:16:c7:e4:ff:07:a9:37: 12:d2:e4:60:5e:45:1a:9f:35:d1:ed:2c:88:f0:88: 1b:0d:03:97:c8:15:ba:47:ae:9b:81:8c:32:19:a0: c2:f1:3c:20:44:df:07:d9:92:ed:98:4e:16:02:87: ff:cd:50:5c:f2:c5:66:92:d5:a7:c9:23:6e:3b:bf: e5:04:63:e0:66:87:d3:76:75:2d:87:01:fd:67:4d: 26:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B1:B6:29:D0:45:BE:71:4B:F0:57:68:BB:D4:18:2B:0C:45:D1:7A X509v3 Authority Key Identifier: keyid:95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:1d:e9:44:c9:28:71:65:1b:3b:4b:4b:23:bc:9b:c1:3c:21: dc:45:54:07:e4:dd:47:0f:96:06:7d:ca:f5:6a:1f:88:56:24: 88:8d:1c:c3:fa:d5:4c:bc:ea:b7:4b:42:7a:15:3a:99:b0:76: 65:f6:cd:3e:c3:cd:88:4c:91:18:9f:62:77:11:48:c1:bf:91: 57:ee:b8:c6:05:d7:20:66:e7:a1:f3:ad:cb:9d:dd:9a:05:b7: 6d:cf:c5:34:7b:06:4f:2b:cb:4d:1c:bd:74:3a:eb:8d:cc:02: 54:5c:39:31:9f:15:12:8f:bb:11:35:4f:6a:4c:5c:54:1f:36: 56:ab:cc:66:d3:d7:77:cb:cf:7f:42:5a:eb:d7:36:86:78:cb: 82:4d:ba:2b:85:c6:97:77:b1:b3:fa:49:fb:f2:8c:8c:37:30: 2e:af:8f:40:6c:7e:76:b9:bb:45:22:d9:e8:ee:79:66:fa:ea: ef:54:f5:04:8c:49:f7:80:49:03:fc:08:9b:81:0a:00:a1:ed: e4:70:37:55:6f:2f:79:c3:8f:41:15:f0:7c:35:a3:1d:c4:f5: 3e:a7:59:28:9b:f5:81:5a:a3:69:5e:1d:58:36:d2:ec:2f:2d: af:43:36:39:36:09:15:89:5a:20:2b:e0:67:f1:e7:aa:9f:e4: 4c:49:50:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RDgxMTAvBgNVBAUTKDk1OEQ3MDk2RUEyRTZCMTZCQzI0QTFEMDQ1NzE5RDJF QzUxNDQ5N0UwHhcNMjUxMDE5MDM0NTM0WhcNMjUxMDI2MDM0NTM0WjAYMRYwFAYD VQQDEw02OGY0NWVkZS01ODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqM9vz4GJkA90/GNZmi3aVdd/Moh842sskS1v9S+g6eZZtFID1XCpKaQLNny jJoPLnz6RtaqYYtnxeCK1N1i0oRdcdY7x4ie2zuoBgESUFBzxgE82XZgmJ9LnBRK isfEAupjnigFGD98cHTkfcFwHgImrcxMWYxxlwnbwNRyyZeEwH8EPSGUaTe6aRid OrE9x9dpfDAfovaweWUBegadQfF63gbIrFzKJNdN2xbH5P8HqTcS0uRgXkUanzXR 7SyI8IgbDQOXyBW6R66bgYwyGaDC8TwgRN8H2ZLtmE4WAof/zVBc8sVmktWnySNu O7/lBGPgZofTdnUthwH9Z00myQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuxtinQ Rb5xS/BXaLvUGCsMRdF6MB8GA1UdIwQYMBaAFJWNcJbqLmsWvCSh0EVxnS7FFEl+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhEOC82QjI0QkNDMjFB QkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4YThKS0hRUlhHZExzVVVT WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZMXdsdW91YXhhOEpLSFFSWEdkTHNVVVNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhEOC82QjI0QkNDMjFBQkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4 YThKS0hRUlhHZExzVVVTWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2HelEyShxZRs7S0sjvJvBPCHcRVQH5N1HD5YGfcr1ah+IViSIjRzD +tVMvOq3S0J6FTqZsHZl9s0+w82ITJEYn2J3EUjBv5FX7rjGBdcgZueh863Lnd2a Bbdtz8U0ewZPK8tNHL10OuuNzAJUXDkxnxUSj7sRNU9qTFxUHzZWq8xm09d3y89/ Qlrr1zaGeMuCTborhcaXd7Gz+kn78oyMNzAur49AbH52ubtFItno7nlm+urvVPUE jEn3gEkD/AibgQoAoe3kcDdVby95w49BFfB8NaMdxPU+p1kom/WBWqNpXh1YNtLs Ly2vQzY5NgkViVogK+Bn8eeqn+RMSVBx -----END CERTIFICATE-----Generated at Mon Oct 20 21:34:53 2025 by rpki-client