$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: 1FXGKFxWS8mJcTxK+tCEh6Jx4lbpVdcvkSLtkAAhuHs= Subject key identifier: CC:10:04:49:DA:7D:02:97:DD:47:4B:35:44:B8:41:0E:2A:4A:D1:AB Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0CBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0C9F Signing time: Tue 04 Nov 2025 18:23:15 +0000 Manifest this update: Tue 04 Nov 2025 18:23:15 +0000 Manifest next update: Tue 11 Nov 2025 18:23:15 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: fo/HAALXe63yb+SAaVodSWYTu30PLYSVgeQRjslIfJk=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: dRoQPSF6KT1Zue8dq53bmaroAkFylgM4n0LR39Z/E84=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: 14kB3SfK8FO3TDcXjwd2x1V5vnXFwADnDTKaZlPfI5E=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: /7EkCVyzyWdgaZFFu1ty8sDFh13rW+8i+NvNFe/0Rfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Nov 4 18:23:15 2025 GMT Not After : Nov 11 18:23:15 2025 GMT Subject: CN=690a4493-3407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d9:a9:ee:db:94:ad:89:5e:c7:13:31:38:d0: 09:e8:1f:19:32:d6:2d:59:a2:9c:03:68:0c:98:b2: 00:77:f0:88:1f:7f:ad:50:cd:3a:ef:c3:7b:80:a8: 9b:29:b7:d8:7c:3b:40:c5:18:e6:fc:b2:41:a9:88: 0b:30:ec:70:9e:5c:d0:35:69:d7:ca:c5:40:97:30: d0:6d:94:b5:21:a1:83:cd:ae:65:17:ef:c2:88:18: 86:ab:40:dc:27:a0:30:7e:00:b9:d1:4c:8f:b2:44: e0:2c:88:bd:9b:44:6d:a9:17:65:f0:a7:e1:a0:58: dd:89:1e:30:ef:eb:c3:76:10:f9:44:d1:a7:6a:96: 92:a7:4c:33:fd:22:4e:06:64:de:7e:37:00:e3:1d: 28:d5:44:98:c8:47:34:d4:38:4f:be:a7:23:03:bf: a6:25:a9:ad:04:db:ad:41:b3:18:5c:56:f4:b1:c3: e9:46:9a:7e:c1:7c:e5:b1:18:da:5e:17:69:35:5b: ec:f0:79:38:fd:e7:cf:ce:e9:f7:7e:91:db:16:77: 1c:8b:8f:7e:d8:d4:7a:a3:dd:86:91:fc:74:e8:ed: 12:54:b6:13:b5:f3:6b:a9:90:9b:db:b6:7e:7b:52: c5:c5:d4:4f:5f:0a:5f:b6:2c:fd:48:a0:34:ff:85: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:10:04:49:DA:7D:02:97:DD:47:4B:35:44:B8:41:0E:2A:4A:D1:AB X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ea:a8:c4:29:00:97:6e:27:50:29:0c:70:67:d5:c6:4f:88: 85:2b:8a:3a:8a:cf:bd:0c:d3:2a:93:5d:21:f2:5e:84:7c:09: d5:fc:38:00:a2:23:9e:3f:72:27:01:d2:c6:cc:31:a7:ec:f3: 2a:82:9e:77:16:f6:51:c9:7f:da:ce:e9:7c:1c:64:1d:ca:3d: 41:0f:9a:6e:91:93:3c:38:00:cc:87:b7:9e:c0:b8:84:e1:20: af:cb:7b:02:8c:2b:fb:7f:83:b2:d2:79:cf:7d:41:87:c0:b1: 0a:81:ad:03:fa:ce:99:2a:dc:a8:c2:e4:15:2d:c8:1a:51:c0: 7b:07:7f:95:f3:7a:06:76:03:75:c6:c0:62:7b:1f:d0:16:41: 54:91:11:72:ca:b6:9b:bd:ef:c2:5f:ba:c4:1b:3e:ef:05:58: ae:ba:c7:19:1a:d0:7f:a9:f5:51:75:e8:8d:d1:3e:23:da:74: 41:4b:70:4f:95:1b:d8:51:14:3b:8b:97:d0:d1:ae:78:4f:53: 30:1e:a8:87:bb:a6:64:a6:b6:52:4d:2d:7e:93:ff:ef:2c:7d: e0:89:e2:93:1c:94:5d:0b:44:1d:31:f8:88:85:69:69:7d:da: ef:0e:1b:40:e9:2b:e8:7e:03:57:91:70:ad:f1:43:81:1d:ce: 86:3c:5d:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjUxMTA0MTgyMzE1WhcNMjUxMTExMTgyMzE1WjAYMRYwFAYD VQQDEw02OTBhNDQ5My0zNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tmp7tuUrYlexxMxONAJ6B8ZMtYtWaKcA2gMmLIAd/CIH3+tUM0678N7gKib KbfYfDtAxRjm/LJBqYgLMOxwnlzQNWnXysVAlzDQbZS1IaGDza5lF+/CiBiGq0Dc J6AwfgC50UyPskTgLIi9m0RtqRdl8KfhoFjdiR4w7+vDdhD5RNGnapaSp0wz/SJO BmTefjcA4x0o1USYyEc01DhPvqcjA7+mJamtBNutQbMYXFb0scPpRpp+wXzlsRja XhdpNVvs8Hk4/efPzun3fpHbFncci49+2NR6o92Gkfx06O0SVLYTtfNrqZCb27Z+ e1LFxdRPXwpftiz9SKA0/4WJWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwQBEna fQKX3UdLNUS4QQ4qStGrMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb6qjEKQCXbidQKQxwZ9XGT4iFK4o6is+9DNMqk10h8l6EfAnV/DgA oiOeP3InAdLGzDGn7PMqgp53FvZRyX/azul8HGQdyj1BD5pukZM8OADMh7eewLiE 4SCvy3sCjCv7f4Oy0nnPfUGHwLEKga0D+s6ZKtyowuQVLcgaUcB7B3+V83oGdgN1 xsBiex/QFkFUkRFyyrabve/CX7rEGz7vBViuuscZGtB/qfVRdeiN0T4j2nRBS3BP lRvYURQ7i5fQ0a54T1MwHqiHu6ZkprZSTS1+k//vLH3gieKTHJRdC0QdMfiIhWlp fdrvDhtA6SvofgNXkXCt8UOBHc6GPF3n -----END CERTIFICATE-----Generated at Wed Nov 5 11:59:24 2025 by rpki-client