$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: TKOtA+R0l3mUEMqxBdq3+DMoNma4rrDQcWGCuzXWBG4= Subject key identifier: 58:13:01:4E:E2:8C:8D:C7:C2:8F:91:38:29:D0:90:0B:0C:82:25:C9 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 11E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 11D4 Signing time: Tue 04 Nov 2025 17:16:53 +0000 Manifest this update: Tue 04 Nov 2025 17:16:52 +0000 Manifest next update: Tue 11 Nov 2025 17:16:52 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: TiUobolrxRbrqcovO8XXJK1E7XvYWTMGk4PobKAhl84=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4577 (0x11e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Nov 4 17:16:52 2025 GMT Not After : Nov 11 17:16:52 2025 GMT Subject: CN=690a3504-bc25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8f:05:48:5d:54:68:94:a6:3e:d3:2f:a8:10: 85:f2:c5:47:18:5e:b2:3f:65:64:b3:aa:eb:58:ca: bb:10:74:3e:4e:ff:89:4e:df:96:8c:3e:7b:1c:ad: 4e:c1:c5:28:af:fb:4f:72:ff:0b:ae:db:07:f0:62: c5:f5:a4:4d:3d:54:80:22:b0:69:86:3e:4a:e1:b9: 8b:69:94:f9:09:e4:4d:e3:d7:20:b5:80:5c:47:91: da:3a:96:0e:f8:cd:05:dc:cb:a4:c4:e0:55:79:85: 04:13:a4:be:f4:6e:75:cd:65:39:d5:1c:2a:1e:8a: d7:d5:71:fb:2a:38:9c:0c:95:1f:a3:96:57:67:02: 59:d5:0f:8c:9f:44:7a:eb:48:34:f6:80:95:63:6e: 1d:12:ff:75:29:cf:3b:fe:22:f1:69:0c:7b:91:8a: c9:eb:cc:98:c2:82:df:44:8e:d3:ff:23:ed:53:a4: 5b:1f:f7:07:da:1e:52:fe:df:fe:f7:0a:57:ba:e4: f9:c7:30:b6:31:3c:ed:94:87:7b:87:4c:23:0f:66: ea:79:4e:59:b9:e2:1f:e3:02:d5:77:7e:df:18:c9: 77:4e:b2:87:8f:00:53:66:cd:a0:a7:f8:d3:9e:93: eb:d8:2a:d7:76:9b:97:64:c5:59:41:7d:a7:87:0f: bc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:13:01:4E:E2:8C:8D:C7:C2:8F:91:38:29:D0:90:0B:0C:82:25:C9 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:46:51:50:e2:68:1a:fb:09:a7:81:56:96:8b:cc:07:b2:b4: be:aa:86:48:4f:a5:61:26:c7:b7:5c:eb:93:d7:ec:8c:c0:b3: 8a:0d:40:7d:21:37:9e:60:59:e0:ad:a2:cb:4c:21:3e:be:1a: 8a:e5:48:05:db:b6:e5:e7:8f:cc:1c:17:20:8a:15:a5:5f:e8: 9d:61:f7:c3:21:df:37:f6:93:02:e3:82:bf:8c:44:0f:6f:0b: 3d:9f:7c:c2:ee:17:5c:32:4d:2e:c3:85:65:b0:24:b7:7a:f8: 0e:bc:23:8c:1c:e5:4c:5a:9d:1a:05:e5:44:fd:a0:c8:33:fa: ce:0c:5a:df:a1:fd:ac:e5:1b:a8:65:c8:5f:2a:45:b1:fb:b3: e4:a6:4a:09:1e:05:68:7a:d1:99:d6:82:25:0b:c5:b4:e3:7d: b6:ad:d0:bb:fc:49:52:00:36:61:d2:a2:a8:19:d8:d3:e8:b0: fb:89:d2:eb:9b:eb:2e:a1:f7:b1:7f:38:25:b1:d8:99:61:c2: c6:3e:6a:e3:f7:56:e1:8d:f1:7d:15:d8:78:aa:04:d1:93:93: ba:13:e6:03:75:10:fc:77:6c:83:38:8e:49:d2:7f:b3:6a:ce: e0:af:9d:a3:59:af:6b:d6:e0:76:52:43:5a:bd:6a:73:6b:71: 6e:56:52:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUxMTA0MTcxNjUyWhcNMjUxMTExMTcxNjUyWjAYMRYwFAYD VQQDEw02OTBhMzUwNC1iYzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo8FSF1UaJSmPtMvqBCF8sVHGF6yP2Vks6rrWMq7EHQ+Tv+JTt+WjD57HK1O wcUor/tPcv8LrtsH8GLF9aRNPVSAIrBphj5K4bmLaZT5CeRN49cgtYBcR5HaOpYO +M0F3MukxOBVeYUEE6S+9G51zWU51RwqHorX1XH7KjicDJUfo5ZXZwJZ1Q+Mn0R6 60g09oCVY24dEv91Kc87/iLxaQx7kYrJ68yYwoLfRI7T/yPtU6RbH/cH2h5S/t/+ 9wpXuuT5xzC2MTztlId7h0wjD2bqeU5ZueIf4wLVd37fGMl3TrKHjwBTZs2gp/jT npPr2CrXdpuXZMVZQX2nhw+89QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgTAU7i jI3Hwo+ROCnQkAsMgiXJMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1RlFQ4mga+wmngVaWi8wHsrS+qoZIT6VhJse3XOuT1+yMwLOKDUB9 ITeeYFngraLLTCE+vhqK5UgF27bl54/MHBcgihWlX+idYffDId839pMC44K/jEQP bws9n3zC7hdcMk0uw4VlsCS3evgOvCOMHOVMWp0aBeVE/aDIM/rODFrfof2s5Ruo ZchfKkWx+7PkpkoJHgVoetGZ1oIlC8W04322rdC7/ElSADZh0qKoGdjT6LD7idLr m+suofexfzglsdiZYcLGPmrj91bhjfF9Fdh4qgTRk5O6E+YDdRD8d2yDOI5J0n+z as7gr52jWa9r1uB2UkNavWpza3FuVlJC -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:55 2025 by rpki-client