$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: HV7HkoTvtWdV8dBG2FXHqCJZkUTNYzRdJ1fIB2V5xu8= Subject key identifier: 38:EF:B7:88:0F:8C:3A:63:41:2A:5B:C3:6D:08:59:D7:A6:44:A9:C7 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 08CB Signing time: Mon 20 Oct 2025 02:30:42 +0000 Manifest this update: Mon 20 Oct 2025 02:30:42 +0000 Manifest next update: Mon 27 Oct 2025 02:30:42 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: 1n7QOZ0Q+MB6c2sGRWzFRunDPbUBgyVc3ZxqUhe8rv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 02:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Oct 20 02:30:42 2025 GMT Not After : Oct 27 02:30:42 2025 GMT Subject: CN=68f59ed2-f7e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:35:32:14:41:fe:18:a4:01:c6:c7:d2:1f:b5: b0:1d:60:67:7e:70:fd:6d:38:82:64:d2:68:30:fd: 7a:d2:b2:fd:2e:3b:ef:b3:d4:8c:40:42:e9:47:22: 84:2d:3d:40:ae:a5:05:75:91:bb:d6:24:d4:07:6f: f5:fd:ea:0d:db:c4:1c:5a:f1:51:f5:d7:da:c5:78: 5a:02:fb:74:92:30:b2:fc:8d:7b:6b:96:d0:87:7d: 9c:17:c1:77:67:f4:fc:d8:a9:2f:0b:3c:a3:78:be: 0b:68:6a:f6:4a:aa:54:ff:16:61:51:a0:15:13:8c: 04:ec:df:c2:d4:4d:23:7b:0a:38:16:14:47:8d:48: 89:11:01:eb:2e:69:46:52:a8:a6:c3:58:88:cc:53: a3:ad:d1:d5:5b:09:1d:33:28:b5:91:07:29:b8:48: 24:90:92:bb:f7:d8:1f:6e:f5:9c:91:68:07:b4:6c: 5c:46:4e:a9:5f:96:2c:43:93:75:ef:12:ca:39:ae: c0:29:07:d2:96:ff:36:36:56:79:09:ae:0c:37:5f: 8e:ff:36:e3:13:ab:7d:27:f1:d8:35:7f:aa:f1:94: 73:81:f3:90:9e:a5:05:b8:77:1a:88:2e:ef:ca:f2: 2d:7b:43:8b:46:50:5d:50:63:f8:3a:f2:72:98:d4: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EF:B7:88:0F:8C:3A:63:41:2A:5B:C3:6D:08:59:D7:A6:44:A9:C7 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:70:f2:02:0f:18:41:e7:70:ab:51:35:b5:70:f4:2a:1b:fb: a5:cb:ce:30:33:1b:54:e5:14:20:fd:ed:e3:ee:db:5b:e3:41: fe:2d:13:fe:c4:6b:1a:16:1b:55:42:8e:2f:21:4f:e6:a3:2a: 61:8d:9c:27:ff:2a:41:35:12:a4:28:f0:13:44:89:db:6c:8d: e5:95:9a:4d:6d:cb:4c:d5:a4:0c:ca:e6:bf:b4:94:20:69:d4: b3:15:13:24:13:27:5c:09:5b:92:5e:58:db:2c:27:9e:77:35: 47:d2:c4:83:73:5c:cf:8c:3d:0f:2e:b1:7a:25:99:c4:ac:d5: 9b:50:d0:5e:80:cc:cf:c8:d0:a1:0f:26:d5:79:f9:f0:68:53: ae:cb:aa:d3:73:13:ce:0f:df:c6:b7:03:7d:76:6e:5c:17:4c: 83:4e:24:43:7e:06:fd:6e:da:c7:3a:2f:02:f5:b6:49:cf:aa: 4e:ff:04:5a:49:62:d5:33:75:01:d9:16:f7:4f:5f:4d:71:1a: e6:ff:69:34:ff:54:61:98:51:7c:7c:b2:5c:ec:14:52:71:b2: 3c:45:4b:a0:51:a4:95:2e:79:62:9c:8c:32:a4:82:cd:f2:4d: f6:81:a5:15:71:8a:19:d4:30:65:23:8b:87:99:32:45:a4:7c: 7a:5a:3e:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUxMDIwMDIzMDQyWhcNMjUxMDI3MDIzMDQyWjAYMRYwFAYD VQQDEw02OGY1OWVkMi1mN2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zUyFEH+GKQBxsfSH7WwHWBnfnD9bTiCZNJoMP160rL9Ljvvs9SMQELpRyKE LT1ArqUFdZG71iTUB2/1/eoN28QcWvFR9dfaxXhaAvt0kjCy/I17a5bQh32cF8F3 Z/T82KkvCzyjeL4LaGr2SqpU/xZhUaAVE4wE7N/C1E0jewo4FhRHjUiJEQHrLmlG Uqimw1iIzFOjrdHVWwkdMyi1kQcpuEgkkJK799gfbvWckWgHtGxcRk6pX5YsQ5N1 7xLKOa7AKQfSlv82NlZ5Ca4MN1+O/zbjE6t9J/HYNX+q8ZRzgfOQnqUFuHcaiC7v yvIte0OLRlBdUGP4OvJymNTsjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjvt4gP jDpjQSpbw20IWdemRKnHMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9cPICDxhB53CrUTW1cPQqG/uly84wMxtU5RQg/e3j7ttb40H+LRP+ xGsaFhtVQo4vIU/moyphjZwn/ypBNRKkKPATRInbbI3llZpNbctM1aQMyua/tJQg adSzFRMkEydcCVuSXljbLCeedzVH0sSDc1zPjD0PLrF6JZnErNWbUNBegMzPyNCh DybVefnwaFOuy6rTcxPOD9/GtwN9dm5cF0yDTiRDfgb9btrHOi8C9bZJz6pO/wRa SWLVM3UB2Rb3T19NcRrm/2k0/1RhmFF8fLJc7BRScbI8RUugUaSVLnlinIwypILN 8k32gaUVcYoZ1DBlI4uHmTJFpHx6Wj74 -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:59 2025 by rpki-client