$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: kCwxaaojuL8fYqkg2fr+5Bk2q/OwQSVY1lmsZtp7o6Y= Subject key identifier: 8D:A1:57:07:77:3D:9E:B0:51:CF:A6:EC:39:0B:2E:02:AF:58:4E:33 Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 56 Signing time: Mon 03 Nov 2025 07:12:15 +0000 Manifest this update: Mon 03 Nov 2025 07:12:15 +0000 Manifest next update: Mon 10 Nov 2025 07:12:15 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: CYpss4ubZoOOWqNRaOu1gtBq2xZtOR/azjeBbnV06NU=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: BjUqiPeyqOJL7zi1VC/yuEDToWrbr9Hg82ANTKNIKSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Nov 3 07:12:15 2025 GMT Not After : Nov 10 07:12:15 2025 GMT Subject: CN=690855cf-6aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:41:48:69:93:36:c9:89:29:66:9e:aa:37:90: 7f:da:19:86:62:9a:f3:6e:c1:4b:e0:cc:cb:b3:48: 72:ec:b9:1e:4b:48:03:62:86:6b:ef:89:ba:6c:35: 0c:82:11:0a:74:82:bf:22:3d:cf:51:4a:45:37:f1: 6c:b2:74:17:3c:7e:25:97:5b:3f:c9:76:5d:74:36: 95:cc:1a:df:c2:12:61:51:1b:97:e6:14:3b:1d:cf: f5:56:df:f2:5b:52:1b:ef:f3:ec:58:3e:8c:89:c8: 5d:40:80:1e:9b:25:a5:dc:c2:67:13:a9:75:c4:c0: a0:1b:30:53:9e:57:71:0c:0e:cd:3f:d5:c0:5a:95: 09:21:a3:e9:aa:8c:4a:06:22:4e:0c:6d:b5:fb:b9: 7a:a3:04:82:c7:03:e3:c6:c7:92:35:e0:fb:c4:96: ba:ca:29:50:ac:1e:63:04:d2:71:71:83:dd:d3:81: 62:4e:91:3a:02:35:fd:08:ad:44:d2:4f:b3:af:d7: c5:4d:8a:f1:05:5f:67:17:5e:fe:58:04:fa:55:16: 4d:86:6f:8c:bf:06:88:d0:67:ab:0c:25:6f:e2:a1: e9:1d:e6:7d:9d:94:5a:78:88:86:cd:ba:b6:40:d7: 09:07:b8:0d:a1:4c:a0:32:b4:4b:7f:0e:b9:4f:c1: b6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A1:57:07:77:3D:9E:B0:51:CF:A6:EC:39:0B:2E:02:AF:58:4E:33 X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d9:5b:b4:2b:7f:3c:92:9c:a5:5a:3f:9c:bb:22:01:7b:65: 65:6b:57:75:ce:38:d7:9c:be:3c:bd:e4:8f:f2:ab:d5:dc:91: 23:5a:b5:70:42:ae:fa:49:c5:7f:19:fb:23:5b:d6:e4:5d:97: 72:3a:25:e4:d0:44:0d:5d:26:ef:2d:d1:99:99:ef:9e:03:6f: 1f:e2:41:95:b3:f7:b9:90:a7:02:f9:f2:44:aa:fb:e4:64:ff: 41:54:09:8b:f3:c8:5c:66:fd:c3:2e:e6:9a:ce:c1:8f:04:0b: 22:f6:42:ae:7e:23:70:77:29:f8:6a:9f:c5:69:69:ae:f5:69: 07:24:35:f3:26:74:48:1d:e3:bb:51:e0:4b:17:f2:83:8f:3c: 27:45:3d:c0:9a:ca:56:49:76:75:95:26:56:4e:0f:63:88:af: 56:36:d1:6d:14:4d:36:14:5d:a3:00:2b:8f:05:c6:86:9c:d3: 08:10:ef:b1:ad:e5:0d:83:d8:6f:94:61:14:57:0d:84:a4:42: 42:24:9b:0d:cb:38:07:18:ae:07:51:84:d4:0f:9d:22:1f:8c: 29:d7:a1:03:b5:1d:bf:d8:d7:1c:4f:b0:85:43:84:62:9c:79: 6c:5a:1b:49:56:b1:80:81:18:9f:10:60:31:14:6a:c0:76:44: 61:be:14:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RDcxRDExMC8GA1UEBRMoOTUyQTREQzdDNEQ2MTA5NTk4QkVFRTVBQzBBMjA2RDI3 Qjg1QzU2QTAeFw0yNTExMDMwNzEyMTVaFw0yNTExMTAwNzEyMTVaMBgxFjAUBgNV BAMTDTY5MDg1NWNmLTZhYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtQUhpkzbJiSlmnqo3kH/aGYZimvNuwUvgzMuzSHLsuR5LSANihmvvibpsNQyC EQp0gr8iPc9RSkU38WyydBc8fiWXWz/Jdl10NpXMGt/CEmFRG5fmFDsdz/VW3/Jb Uhvv8+xYPoyJyF1AgB6bJaXcwmcTqXXEwKAbMFOeV3EMDs0/1cBalQkho+mqjEoG Ik4MbbX7uXqjBILHA+PGx5I14PvElrrKKVCsHmME0nFxg93TgWJOkToCNf0IrUTS T7Ov18VNivEFX2cXXv5YBPpVFk2Gb4y/BojQZ6sMJW/ioekd5n2dlFp4iIbNurZA 1wkHuA2hTKAytEt/DrlPwbZlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjaFXB3c9 nrBRz6bsOQsuAq9YTjMwHwYDVR0jBBgwFoAUlSpNx8TWEJWYvu5awKIG0nuFxWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJENzFELzFFMEY5OTJFMzZD RTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbFNwTng4VFdFSldZdnU1YXdLSUcwbnVGeFdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE NzFELzFFMEY5OTJFMzZDRTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpX WXZ1NWF3S0lHMG51RnhXby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLZW7QrfzySnKVaP5y7IgF7ZWVrV3XOONecvjy95I/yq9XckSNatXBC rvpJxX8Z+yNb1uRdl3I6JeTQRA1dJu8t0ZmZ754Dbx/iQZWz97mQpwL58kSq++Rk /0FUCYvzyFxm/cMu5prOwY8ECyL2Qq5+I3B3Kfhqn8Vpaa71aQckNfMmdEgd47tR 4EsX8oOPPCdFPcCaylZJdnWVJlZOD2OIr1Y20W0UTTYUXaMAK48Fxoac0wgQ77Gt 5Q2D2G+UYRRXDYSkQkIkmw3LOAcYrgdRhNQPnSIfjCnXoQO1Hb/Y1xxPsIVDhGKc eWxaG0lWsYCBGJ8QYDEUasB2RGG+FNg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:11 2025 by rpki-client