$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: JpkVhUzA7aQ41SYivbQzr+Nz6UXwsm2dNfl8yVHvZj0= Subject key identifier: AE:0E:18:F6:6E:56:0D:EE:D7:B3:C2:99:DF:38:4E:14:63:48:98:17 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 029D Signing time: Sun 19 Oct 2025 03:45:58 +0000 Manifest this update: Sun 19 Oct 2025 03:45:57 +0000 Manifest next update: Sun 26 Oct 2025 03:45:57 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: GQzbiOP8WUk+lfW2o3vA/y2ZNb4bWJk4B4A++yudqqg=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: x9csIWd6s8afCMS1YmHZZTrl70IFmSCSA9MRca7TL7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753, serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: Oct 19 03:45:57 2025 GMT Not After : Oct 26 03:45:57 2025 GMT Subject: CN=68f45ef6-33be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ec:0e:ea:89:70:6d:6f:47:b6:82:bd:68:12: ea:5a:13:2f:a0:b3:4c:42:02:05:68:c1:58:e7:29: 65:fa:26:8d:a2:e8:63:48:d2:98:3c:c3:45:25:80: 30:c7:ba:ce:71:c1:56:2d:28:b8:36:b4:bb:61:e1: 25:d1:18:56:eb:71:b6:a2:fa:df:e7:16:1e:43:4d: 0f:48:56:59:b7:cb:5e:a3:bc:46:c9:5f:24:d6:c6: cb:0d:19:10:38:22:e7:e0:6b:be:d2:e2:9e:89:99: e8:e4:23:12:78:0a:b8:d1:be:e6:b0:ff:42:a8:9c: 65:26:63:b8:53:58:44:e8:2b:a9:a8:c2:41:3b:15: 36:bf:97:d7:5d:96:5b:61:d5:99:5a:e8:60:e3:33: c7:11:5d:49:5c:bb:c4:4d:9a:38:70:ca:fa:2a:31: 85:fc:9e:12:f9:44:ad:0b:1f:45:39:68:9a:a2:f6: 96:6f:40:08:21:a9:56:73:8c:bf:64:a2:67:e1:9f: 7c:41:2d:60:78:4f:68:22:54:6f:6b:9e:2e:b9:68: dc:b4:37:62:2b:a6:85:ea:43:92:33:6d:2c:b9:cf: 9a:c0:a3:2b:0e:62:b8:a8:c6:73:a8:e5:0d:ee:6e: 07:de:d6:59:de:2b:8a:e0:2b:6f:39:b9:2b:0f:d3: 5e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:0E:18:F6:6E:56:0D:EE:D7:B3:C2:99:DF:38:4E:14:63:48:98:17 X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6d:96:99:01:ee:17:87:e7:4b:f2:9a:b3:e9:b5:5a:d6:7e: 73:78:de:32:57:ea:cc:41:a1:96:65:d4:33:fb:91:86:c6:9e: 05:66:15:bf:c3:6f:04:30:c1:b1:58:8e:42:c2:a9:df:7c:79: 29:4f:04:c6:94:b8:93:cc:23:79:df:70:38:7b:64:98:62:c3: 98:e9:87:3a:8a:34:a1:ef:1d:1f:69:f1:e4:df:bd:46:54:fb: 39:c7:78:c3:1e:ef:e7:12:bd:1b:d7:7d:7c:cf:c2:af:9c:89: cb:2a:5e:a2:c7:e5:65:7f:ec:4a:c5:30:c9:6e:40:3c:a2:b9: b3:7f:b6:a3:a8:86:a6:22:a5:8a:0e:b7:b5:fc:f8:4d:93:27: 69:bd:ab:16:a4:a6:ca:13:93:7b:73:c9:d7:ca:7e:88:e8:eb: 08:87:39:2c:46:c6:29:8e:be:09:72:43:d0:5c:a8:49:16:30: 21:76:8b:ab:7d:61:d8:34:21:af:5a:f8:1f:72:ea:ce:c7:0d: c6:a1:64:06:7f:82:1c:d6:66:26:79:ec:b1:3e:06:a8:36:96: 33:68:84:38:05:31:25:de:de:00:2b:87:ed:d1:6b:de:23:ac: 38:0a:be:c9:8f:cd:83:31:84:22:ef:6e:c0:90:3f:22:6b:3c: ad:d1:51:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjUxMDE5MDM0NTU3WhcNMjUxMDI2MDM0NTU3WjAYMRYwFAYD VQQDEw02OGY0NWVmNi0zM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOwO6olwbW9HtoK9aBLqWhMvoLNMQgIFaMFY5yll+iaNouhjSNKYPMNFJYAw x7rOccFWLSi4NrS7YeEl0RhW63G2ovrf5xYeQ00PSFZZt8teo7xGyV8k1sbLDRkQ OCLn4Gu+0uKeiZno5CMSeAq40b7msP9CqJxlJmO4U1hE6CupqMJBOxU2v5fXXZZb YdWZWuhg4zPHEV1JXLvETZo4cMr6KjGF/J4S+UStCx9FOWiaovaWb0AIIalWc4y/ ZKJn4Z98QS1geE9oIlRva54uuWjctDdiK6aF6kOSM20suc+awKMrDmK4qMZzqOUN 7m4H3tZZ3iuK4CtvObkrD9Ne8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4OGPZu Vg3u17PCmd84ThRjSJgXMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApbZaZAe4Xh+dL8pqz6bVa1n5zeN4yV+rMQaGWZdQz+5GGxp4FZhW/ w28EMMGxWI5CwqnffHkpTwTGlLiTzCN533A4e2SYYsOY6Yc6ijSh7x0fafHk371G VPs5x3jDHu/nEr0b1318z8KvnInLKl6ix+Vlf+xKxTDJbkA8ormzf7ajqIamIqWK Dre1/PhNkydpvasWpKbKE5N7c8nXyn6I6OsIhzksRsYpjr4JckPQXKhJFjAhdour fWHYNCGvWvgfcurOxw3GoWQGf4Ic1mYmeeyxPgaoNpYzaIQ4BTEl3t4AK4ft0Wve I6w4Cr7Jj82DMYQi727AkD8iazyt0VHp -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:17 2025 by rpki-client