$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: RgTuQ32aafaF0T9GvW/9Lxt52U9P8Rf9/2xSb2cHpsc= Subject key identifier: B7:93:4E:C7:D5:B1:AF:14:B2:BC:81:C3:35:4A:2E:3B:81:81:39:EB Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0268 Signing time: Wed 05 Nov 2025 01:48:01 +0000 Manifest this update: Wed 05 Nov 2025 01:48:00 +0000 Manifest next update: Wed 12 Nov 2025 01:48:00 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: QTIujKUuSDeCjl1yXGW72IYLjPpJfPOwHHlxiPQLLeI=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: g8vcclbbREYqZXoYauTIQjOb/RVyOM/9dHk3sz7i1Lc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Nov 5 01:48:00 2025 GMT Not After : Nov 12 01:48:00 2025 GMT Subject: CN=690aacd0-ce96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e6:fb:60:03:37:ae:e1:36:f3:45:94:57:81: bf:30:b2:9d:6b:92:97:62:b0:0b:ad:36:f3:68:47: 82:1d:bf:b4:1d:1d:5f:b4:be:64:29:4e:b7:c3:6a: 4b:13:2b:de:c9:ea:72:01:92:ce:43:42:9a:45:a0: eb:1c:96:08:88:1d:b9:e4:65:f3:5a:1d:6a:30:70: c1:bb:02:8a:5c:2d:9a:30:ac:c0:a3:8c:5a:e2:d1: d2:90:a1:4c:20:a8:2c:90:80:d2:ff:28:7e:46:b8: 28:de:60:be:0e:06:18:65:c2:dd:4e:39:20:d0:ca: 9a:7f:6a:0b:99:0f:4f:27:96:a8:3b:e0:eb:28:97: c3:ed:3d:e0:49:00:a1:f8:03:1d:8e:fb:02:bf:e4: 24:62:f7:e2:3f:f0:7c:68:23:98:4e:a4:6d:e1:81: e9:b1:5e:01:e3:5a:4f:8e:c5:a0:37:f3:f9:5d:1e: 2b:45:da:e8:0a:fc:4a:40:e2:a6:62:07:19:ac:e3: 27:1f:8c:85:77:05:7d:e0:53:36:11:0d:49:ca:58: e0:72:63:c9:4e:56:9e:ae:32:57:26:e7:18:33:11: 39:00:0c:39:1b:74:ad:1e:a5:41:98:59:97:cb:10: 0c:55:a0:ae:14:b6:bb:d9:a1:dd:3e:21:1d:ce:f1: eb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:93:4E:C7:D5:B1:AF:14:B2:BC:81:C3:35:4A:2E:3B:81:81:39:EB X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b5:88:e9:88:bf:2b:79:1a:21:2b:d8:d0:90:cd:f7:77:fb: 76:77:15:20:b7:5d:b8:c4:34:c7:2b:02:ba:d5:a1:43:75:ed: 9e:0f:0b:17:32:26:4a:c8:c8:aa:c2:f3:8d:6d:a0:59:17:33: 2b:45:0d:22:2b:99:63:c0:95:ff:9d:78:33:5d:29:7f:55:3e: 6f:3d:39:f2:f6:03:fb:3f:e5:c8:5d:b2:bb:cd:1f:60:bd:ae: 6b:aa:71:eb:35:3c:80:cf:9a:00:a6:04:db:3d:28:d2:80:8f: ed:ed:61:14:40:27:f8:94:9c:53:d7:ea:19:39:b3:fe:ae:53: c0:69:98:d1:72:8e:12:22:9b:97:fe:88:bc:64:b3:b1:31:49: e2:81:2c:0c:45:84:30:67:6b:e9:c3:a2:b4:99:90:90:b9:96: 02:7c:39:fd:1c:f2:fe:71:af:76:86:47:bf:1f:40:15:37:29: 2c:f2:d2:12:d9:a3:00:9d:50:7e:70:77:94:4c:65:ce:35:06: 62:64:e4:12:d0:46:0a:d2:7f:7d:b4:d4:ff:73:2b:4f:be:dd: b1:96:41:8c:0c:a8:9c:cb:9d:ad:db:39:1b:8f:f1:e0:0a:0b: 15:ae:22:d4:b7:9e:e4:6f:02:b8:f4:e2:49:db:be:ba:fb:f8: ff:cf:20:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUxMTA1MDE0ODAwWhcNMjUxMTEyMDE0ODAwWjAYMRYwFAYD VQQDEw02OTBhYWNkMC1jZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ub7YAM3ruE280WUV4G/MLKda5KXYrALrTbzaEeCHb+0HR1ftL5kKU63w2pL EyveyepyAZLOQ0KaRaDrHJYIiB255GXzWh1qMHDBuwKKXC2aMKzAo4xa4tHSkKFM IKgskIDS/yh+Rrgo3mC+DgYYZcLdTjkg0Mqaf2oLmQ9PJ5aoO+DrKJfD7T3gSQCh +AMdjvsCv+QkYvfiP/B8aCOYTqRt4YHpsV4B41pPjsWgN/P5XR4rRdroCvxKQOKm YgcZrOMnH4yFdwV94FM2EQ1JyljgcmPJTlaerjJXJucYMxE5AAw5G3StHqVBmFmX yxAMVaCuFLa72aHdPiEdzvHr4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeTTsfV sa8UsryBwzVKLjuBgTnrMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3tYjpiL8reRohK9jQkM33d/t2dxUgt124xDTHKwK61aFDde2eDwsX MiZKyMiqwvONbaBZFzMrRQ0iK5ljwJX/nXgzXSl/VT5vPTny9gP7P+XIXbK7zR9g va5rqnHrNTyAz5oApgTbPSjSgI/t7WEUQCf4lJxT1+oZObP+rlPAaZjRco4SIpuX /oi8ZLOxMUnigSwMRYQwZ2vpw6K0mZCQuZYCfDn9HPL+ca92hke/H0AVNyks8tIS 2aMAnVB+cHeUTGXONQZiZOQS0EYK0n99tNT/cytPvt2xlkGMDKicy52t2zkbj/Hg CgsVriLUt57kbwK49OJJ2766+/j/zyCF -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:11 2025 by rpki-client