$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft File: lQJWKPFDQQRhRqwgujJGFEYanMM.mft (raw, json) Hash identifier: ev5zCWdJEqrCdXC2udjcAjcQ7gtaiA2p8qspPgs/xs4= Subject key identifier: 49:F8:F3:7F:9D:CD:B1:D5:BD:3B:7C:28:FB:62:47:1A:7C:4F:EB:91 Authority key identifier: 95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 Certificate issuer: /CN=A91E5A9F/serialNumber=95025628F14341046146AC20BA324614461A9CC3 Certificate serial: 06DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft Manifest number: 1218 Signing time: Mon 20 Oct 2025 17:32:49 +0000 Manifest this update: Mon 20 Oct 2025 17:32:49 +0000 Manifest next update: Mon 27 Oct 2025 17:32:49 +0000 Files and hashes: 1: lQJWKPFDQQRhRqwgujJGFEYanMM.crl (hash: WPhwJ+71v34ZDcSdkr00tEu4pzfe+ETvcyyikOPGAWA=) 2: 9CA45412A6AB11F0AA6B453DC4F9AE02.roa (hash: I6yaNkZqYAt8Jpa9Std2h3sbw7vhedMgDPqUNgmop20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A9F, serialNumber=95025628F14341046146AC20BA324614461A9CC3 Validity Not Before: Oct 20 17:32:49 2025 GMT Not After : Oct 27 17:32:49 2025 GMT Subject: CN=68f67241-0d75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e9:06:5b:af:11:da:18:08:59:fd:18:79:d3: 2a:c4:e9:a1:3b:c0:10:c2:8c:1f:61:76:f2:db:97: 4e:cd:8d:16:25:d4:33:08:50:ee:6c:f2:76:56:5f: 3c:59:a8:59:0e:b9:8a:c2:7a:a8:b9:f7:36:21:27: ae:52:2a:62:38:9f:8e:d6:a1:c1:43:77:16:7e:3e: 2b:5f:90:e0:ec:7e:bf:94:49:2f:06:8c:dc:9a:a2: 5c:ce:f9:b1:67:7f:55:4d:73:bd:95:14:d8:ec:77: 95:ef:08:fe:05:b6:c6:e5:5a:bf:78:65:3f:61:0e: 23:ff:6b:ae:c0:c5:ce:a9:77:f2:29:fc:0e:6c:9d: e5:aa:f9:c0:c9:59:8d:a4:42:67:e8:73:12:7e:a8: 7c:48:14:55:61:fc:e5:23:1d:6b:90:be:27:4b:76: 80:b3:04:20:4d:ae:0e:d2:73:2b:8d:78:5d:1f:46: c8:7d:bd:2c:19:8c:f1:45:00:33:55:68:48:bd:fa: 96:a1:e2:43:68:7e:40:52:50:cc:9e:a7:7f:92:e7: ef:08:d9:08:13:b9:1a:04:d8:83:bc:63:ef:03:c1: 87:34:65:12:95:3f:f0:52:2c:ef:91:85:46:26:11: 7a:ae:12:c5:26:ec:2b:54:cf:c2:37:20:a9:a3:fd: 1c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F8:F3:7F:9D:CD:B1:D5:BD:3B:7C:28:FB:62:47:1A:7C:4F:EB:91 X509v3 Authority Key Identifier: keyid:95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:2a:92:68:54:2e:eb:d1:cc:d6:49:58:73:fd:50:ee:56:d8: ac:2c:bb:00:38:f9:a0:af:c0:05:df:13:67:ee:22:72:8b:75: d3:41:3f:8a:fd:0b:fa:ba:dc:51:67:43:29:1f:2f:77:12:88: 5c:a3:5b:5b:2f:c7:75:66:b1:f6:ca:ce:28:e5:71:69:9a:21: 5d:49:22:df:f3:ac:38:13:d4:55:f6:91:48:02:98:0b:97:2a: c2:31:ec:84:95:a3:49:3f:46:83:49:dc:f8:a8:3b:c3:9a:aa: 4a:79:e1:67:9f:81:0f:be:72:e7:70:1c:6e:37:23:c5:29:2f: f3:81:0d:ff:fa:29:f5:31:87:96:8d:9c:e7:83:f5:53:4b:4f: d7:f4:28:16:14:a7:b1:93:e1:dc:e2:1f:53:6c:d3:98:fc:ed: 6f:44:41:32:6f:d9:ce:f8:52:58:ef:08:2d:91:60:d0:59:c8: 02:39:db:96:77:c9:5e:dc:68:a4:3a:e9:b2:c9:81:5d:9e:fe: f1:57:b1:83:4f:49:0b:69:3e:52:d6:bc:2f:fc:88:ca:88:c3: 58:4f:1f:c2:5a:3e:9d:6e:fb:46:e3:2b:ff:92:13:eb:52:01: 90:02:78:d5:85:e2:22:d8:8a:3b:d8:5b:8c:54:d7:d7:48:74: 79:8c:91:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBOUYxMTAvBgNVBAUTKDk1MDI1NjI4RjE0MzQxMDQ2MTQ2QUMyMEJBMzI0NjE0 NDYxQTlDQzMwHhcNMjUxMDIwMTczMjQ5WhcNMjUxMDI3MTczMjQ5WjAYMRYwFAYD VQQDEw02OGY2NzI0MS0wZDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOkGW68R2hgIWf0YedMqxOmhO8AQwowfYXby25dOzY0WJdQzCFDubPJ2Vl88 WahZDrmKwnqoufc2ISeuUipiOJ+O1qHBQ3cWfj4rX5Dg7H6/lEkvBozcmqJczvmx Z39VTXO9lRTY7HeV7wj+BbbG5Vq/eGU/YQ4j/2uuwMXOqXfyKfwObJ3lqvnAyVmN pEJn6HMSfqh8SBRVYfzlIx1rkL4nS3aAswQgTa4O0nMrjXhdH0bIfb0sGYzxRQAz VWhIvfqWoeJDaH5AUlDMnqd/kufvCNkIE7kaBNiDvGPvA8GHNGUSlT/wUizvkYVG JhF6rhLFJuwrVM/CNyCpo/0cNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEn483+d zbHVvTt8KPtiRxp8T+uRMB8GA1UdIwQYMBaAFJUCVijxQ0EEYUasILoyRhRGGpzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUE5Ri82NzM2RjMzNEUz M0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFRUmhScXdndWpKR0ZFWWFu TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRSldLUEZEUVFSaFJxd2d1akpHRkVZYW5NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUE5Ri82NzM2RjMzNEUzM0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFR UmhScXdndWpKR0ZFWWFuTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGKpJoVC7r0czWSVhz/VDuVtisLLsAOPmgr8AF3xNn7iJyi3XTQT+K /Qv6utxRZ0MpHy93Eohco1tbL8d1ZrH2ys4o5XFpmiFdSSLf86w4E9RV9pFIApgL lyrCMeyElaNJP0aDSdz4qDvDmqpKeeFnn4EPvnLncBxuNyPFKS/zgQ3/+in1MYeW jZzng/VTS0/X9CgWFKexk+Hc4h9TbNOY/O1vREEyb9nO+FJY7wgtkWDQWcgCOduW d8le3GikOumyyYFdnv7xV7GDT0kLaT5S1rwv/IjKiMNYTx/CWj6dbvtG4yv/khPr UgGQAnjVheIi2Io72FuMVNfXSHR5jJFN -----END CERTIFICATE-----Generated at Mon Oct 20 22:47:38 2025 by rpki-client