$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: NagAzVgenfYRcjbnmrln3iYCbED79DJoF/8joduQzjc= Subject key identifier: 48:BA:A6:95:1A:01:E1:5C:FE:64:68:3C:D4:80:E4:9B:16:D7:BE:6F Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 062C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0626 Signing time: Sun 19 Oct 2025 00:20:44 +0000 Manifest this update: Sun 19 Oct 2025 00:20:43 +0000 Manifest next update: Sun 26 Oct 2025 00:20:43 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: KByYb/cHyiBoP0BiEw7RUAeGiho5ifwh2b+uvi5WsXE=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Oct 19 00:20:43 2025 GMT Not After : Oct 26 00:20:43 2025 GMT Subject: CN=68f42edb-550a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a0:2e:dc:d6:ac:61:4e:04:eb:cd:a7:51:23: 56:ea:f9:d1:94:ac:9d:15:d0:26:4d:2e:6e:39:d7: ee:a4:62:00:4b:11:10:cf:ca:fe:df:23:e1:88:a8: d9:3a:dc:7e:ac:86:aa:53:91:7e:83:e5:e7:e0:0f: 48:7e:75:39:a7:2f:3e:e0:26:6b:6a:21:c0:f0:ee: e7:eb:19:d5:58:a6:70:3d:66:8a:6f:8c:84:f5:8b: 20:16:6b:65:28:f7:eb:d3:fa:19:5b:b7:89:5d:d2: 2d:6c:ea:93:d4:8e:d8:57:7f:94:db:81:31:87:e2: eb:52:49:4e:fb:4d:b1:6d:7e:06:7f:bd:b9:85:6a: d9:c3:12:70:3e:fc:fa:f4:96:f4:43:13:30:43:f0: 6e:64:d7:51:b5:34:ee:49:19:32:34:e5:7c:dc:b2: 0e:0c:8c:ce:2f:d9:d1:e3:9e:17:df:3b:1c:b0:fb: ec:cd:60:79:44:aa:19:40:9f:b7:76:6e:7d:b4:f6: c4:43:9f:3d:21:7a:8d:c1:a8:35:71:ba:36:ce:b5: 28:7a:b9:0e:a6:ef:8a:a1:c5:13:02:04:94:be:66: 9a:60:a9:0f:c1:f1:47:5d:2f:a6:f0:fc:2a:d5:42: 6c:0c:c2:59:f6:da:d0:fd:17:89:b9:fc:e4:0c:ac: d3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BA:A6:95:1A:01:E1:5C:FE:64:68:3C:D4:80:E4:9B:16:D7:BE:6F X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:37:8d:d4:fa:db:8f:c3:e1:86:41:1d:c0:6b:43:b8:18:08: 4f:c1:35:37:9c:3b:ad:ab:e9:49:49:04:e8:da:9c:9c:98:90: 35:31:67:70:f5:07:51:51:fa:41:dc:cc:49:ce:79:1c:0f:26: d9:61:fb:26:7e:c6:29:87:d3:df:81:f0:8b:bd:da:5d:73:3c: fd:c5:19:c8:81:ab:47:5b:25:42:62:bc:a6:46:fb:3e:e8:5f: f0:45:97:d8:ce:d8:6d:ca:21:ad:cf:3f:f1:fa:a7:36:b0:91: f8:fa:6d:2a:04:d0:0e:b8:71:67:96:ab:36:f1:8a:5f:1d:64: 06:cd:f0:a4:8d:39:a7:2a:52:ea:84:0d:d4:30:b1:ee:65:5d: d9:ec:e8:89:fa:8e:23:0b:b6:c3:a8:d3:18:ff:7d:e6:a1:56: f4:90:bb:50:50:7c:f4:30:3f:5f:10:58:6d:78:4f:e3:01:ed: 4b:bc:47:09:2c:68:31:a1:25:37:de:92:35:6e:0d:3d:57:92: 55:68:a4:83:b3:36:d8:9a:42:c3:45:24:67:8c:49:a3:d4:24: 17:9a:a3:fe:93:28:44:08:71:90:0a:37:3b:ca:ea:02:c1:46: be:95:95:9c:ae:58:3e:c4:8e:bd:31:12:27:dd:71:57:4e:ca: 36:10:3f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUxMDE5MDAyMDQzWhcNMjUxMDI2MDAyMDQzWjAYMRYwFAYD VQQDEw02OGY0MmVkYi01NTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaAu3NasYU4E682nUSNW6vnRlKydFdAmTS5uOdfupGIASxEQz8r+3yPhiKjZ Otx+rIaqU5F+g+Xn4A9IfnU5py8+4CZraiHA8O7n6xnVWKZwPWaKb4yE9YsgFmtl KPfr0/oZW7eJXdItbOqT1I7YV3+U24Exh+LrUklO+02xbX4Gf725hWrZwxJwPvz6 9Jb0QxMwQ/BuZNdRtTTuSRkyNOV83LIODIzOL9nR454X3zscsPvszWB5RKoZQJ+3 dm59tPbEQ589IXqNwag1cbo2zrUoerkOpu+KocUTAgSUvmaaYKkPwfFHXS+m8Pwq 1UJsDMJZ9trQ/ReJufzkDKzT9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEi6ppUa AeFc/mRoPNSA5JsW175vMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAN43U+tuPw+GGQR3Aa0O4GAhPwTU3nDutq+lJSQTo2pycmJA1MWdw 9QdRUfpB3MxJznkcDybZYfsmfsYph9PfgfCLvdpdczz9xRnIgatHWyVCYrymRvs+ 6F/wRZfYzthtyiGtzz/x+qc2sJH4+m0qBNAOuHFnlqs28YpfHWQGzfCkjTmnKlLq hA3UMLHuZV3Z7OiJ+o4jC7bDqNMY/33moVb0kLtQUHz0MD9fEFhteE/jAe1LvEcJ LGgxoSU33pI1bg09V5JVaKSDszbYmkLDRSRnjEmj1CQXmqP+kyhECHGQCjc7yuoC wUa+lZWcrlg+xI69MRIn3XFXTso2ED9y -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:44 2025 by rpki-client