$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: 0EdnBmd6t4CdLK5FF74TbisV2GSLqF6wZCffoJmloDw= Subject key identifier: 13:7B:91:C7:A0:17:BD:A1:14:34:9F:4A:15:F5:76:7A:C5:41:B6:32 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0B7A Signing time: Tue 04 Nov 2025 19:09:15 +0000 Manifest this update: Tue 04 Nov 2025 19:09:15 +0000 Manifest next update: Tue 11 Nov 2025 19:09:15 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: n1wzFVlSizEe2sEWwE5+HqWWJJLgMib/tOIOjNIhkfE=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: U5r4SWMbZzX6cEmOkEoVm3P+a9O6vlGibQIW9uT8u/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340, serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: Nov 4 19:09:15 2025 GMT Not After : Nov 11 19:09:15 2025 GMT Subject: CN=690a4f5b-1d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b9:5c:5e:d5:0a:d3:14:f5:43:e3:bd:25:3f: 57:7d:31:e8:f1:01:eb:98:16:ea:1a:c0:08:19:ef: d5:f1:fc:a2:bc:da:7b:f7:42:06:6e:92:1d:0d:68: 83:67:c8:bc:c2:65:a6:88:bc:15:48:a8:99:0a:4e: 0c:ce:17:fb:1a:25:2b:85:25:2d:10:b5:52:eb:77: 7a:6c:e6:4d:9a:dd:e9:4a:80:5f:8b:2d:d7:27:67: c9:99:a7:4d:11:c1:94:44:27:41:2e:5b:cf:e0:ce: 55:be:32:59:1d:b1:18:61:a5:15:b3:b4:6c:ff:51: 38:4a:85:5b:e6:9e:59:19:92:74:45:67:c6:3b:bd: 6e:a3:80:01:1f:5b:7f:96:af:9b:b8:29:b9:8c:ab: a6:05:1d:be:30:ff:e2:0b:a9:e7:b7:e3:df:84:1c: a5:e4:69:f2:34:59:1a:52:92:bd:2e:d1:60:2a:17: 17:d0:5f:a8:44:63:20:13:f0:b6:b5:18:53:ea:10: dc:e3:22:ca:e7:cc:d8:e8:19:a4:09:5e:49:5b:91: 17:25:81:56:a4:b4:8c:70:ea:6a:50:23:49:07:09: d7:9e:ab:7f:a3:54:7a:13:24:82:26:f5:6c:be:d5: 9c:3d:f6:2d:1f:5c:68:a1:e2:71:59:a5:15:15:3e: b1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7B:91:C7:A0:17:BD:A1:14:34:9F:4A:15:F5:76:7A:C5:41:B6:32 X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:22:6c:72:cc:7f:af:ca:5e:be:3e:1b:26:be:8e:31:fe:16: 35:0b:48:c3:ea:11:47:8e:e7:0f:1a:7b:2e:68:35:cc:b0:87: 48:35:2a:c9:cc:e6:db:8c:7e:d2:87:a8:c6:33:60:00:66:38: bf:22:f8:53:02:9e:e1:96:e1:75:99:9a:d5:21:15:1e:2a:fc: ae:9e:69:be:1c:17:58:88:e0:96:97:dc:bc:85:49:f0:71:e8: 07:9c:0b:d8:01:d2:f7:be:54:ad:b0:13:34:c9:4b:f6:99:92: 10:3f:d0:b5:a6:da:a6:69:45:19:a7:0c:52:b7:60:f3:d6:ec: b7:89:3c:68:89:a6:35:b6:e1:c6:d3:60:2b:4e:c7:bf:38:ec: 82:08:3f:e7:38:b2:84:f0:06:03:f7:fe:ab:7b:b4:ae:0f:bb: fe:78:7c:6e:e6:da:7a:f2:8c:12:cd:0f:f6:40:11:31:4c:e2: 57:6f:05:b4:e3:91:89:d6:af:87:74:2b:4b:4d:7a:e8:46:38: bb:0e:46:96:0c:6e:1e:4a:a0:ce:5d:fc:40:1b:29:1c:c8:5e: be:da:c0:26:13:bd:d9:e6:24:5e:c5:f8:1e:f4:d2:b1:a6:9f: 8c:49:62:d3:ac:a5:32:7a:1c:72:5a:66:ae:5b:cf:b0:62:b1: 77:d0:36:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjUxMTA0MTkwOTE1WhcNMjUxMTExMTkwOTE1WjAYMRYwFAYD VQQDEw02OTBhNGY1Yi0xZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LlcXtUK0xT1Q+O9JT9XfTHo8QHrmBbqGsAIGe/V8fyivNp790IGbpIdDWiD Z8i8wmWmiLwVSKiZCk4Mzhf7GiUrhSUtELVS63d6bOZNmt3pSoBfiy3XJ2fJmadN EcGURCdBLlvP4M5VvjJZHbEYYaUVs7Rs/1E4SoVb5p5ZGZJ0RWfGO71uo4ABH1t/ lq+buCm5jKumBR2+MP/iC6nnt+PfhByl5GnyNFkaUpK9LtFgKhcX0F+oRGMgE/C2 tRhT6hDc4yLK58zY6BmkCV5JW5EXJYFWpLSMcOpqUCNJBwnXnqt/o1R6EySCJvVs vtWcPfYtH1xooeJxWaUVFT6xNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN7kceg F72hFDSfShX1dnrFQbYyMB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdImxyzH+vyl6+Phsmvo4x/hY1C0jD6hFHjucPGnsuaDXMsIdINSrJ zObbjH7Sh6jGM2AAZji/IvhTAp7hluF1mZrVIRUeKvyunmm+HBdYiOCWl9y8hUnw cegHnAvYAdL3vlStsBM0yUv2mZIQP9C1ptqmaUUZpwxSt2Dz1uy3iTxoiaY1tuHG 02ArTse/OOyCCD/nOLKE8AYD9/6re7SuD7v+eHxu5tp68owSzQ/2QBExTOJXbwW0 45GJ1q+HdCtLTXroRji7DkaWDG4eSqDOXfxAGykcyF6+2sAmE73Z5iRexfge9NKx pp+MSWLTrKUyehxyWmauW8+wYrF30DYJ -----END CERTIFICATE-----Generated at Wed Nov 5 20:52:26 2025 by rpki-client