$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: 9dETot69pUEicVaVUK6KwWANEp/aQbwQx7x4iHHtsYk= Subject key identifier: 06:8A:77:E5:20:30:07:BA:34:A0:E1:B9:77:F2:44:07:42:03:98:46 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: B4 Signing time: Mon 03 Nov 2025 06:06:47 +0000 Manifest this update: Mon 03 Nov 2025 06:06:46 +0000 Manifest next update: Mon 10 Nov 2025 06:06:46 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: PCJyfCuNTJOpW+wg9YKB3koBGupo8XnI7zo3N6z9108=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Nov 3 06:06:46 2025 GMT Not After : Nov 10 06:06:46 2025 GMT Subject: CN=69084676-abdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0c:0a:c4:8c:bf:d2:3a:3e:c0:61:1b:4a:05: 0e:91:5e:bb:e5:8a:2d:ad:33:4f:a5:a2:e9:ad:1b: 76:44:e0:d2:08:cf:c6:b9:ac:bd:93:e7:54:84:91: f5:a1:7e:9e:b2:d3:77:36:73:da:38:7c:80:c2:da: 24:8f:f1:a6:6e:7b:ad:e8:01:00:16:89:50:66:ca: 5a:6b:53:ca:37:bc:df:7f:4d:60:82:39:cf:a4:f9: bb:db:ac:6b:2c:fa:18:66:86:7c:e6:79:d7:58:1a: ec:4b:b0:d6:1d:4f:8a:52:6e:fc:60:60:1d:ba:3c: 9d:44:f8:5a:d7:fa:ff:7e:f9:e9:90:6c:6a:4a:05: a0:4e:23:e7:f2:5d:45:71:95:ff:84:de:9a:e6:0c: 34:56:ef:52:4c:2f:c3:01:bd:6c:3a:f3:3f:f2:11: 94:09:a0:22:c2:b3:06:81:70:ba:71:6a:0e:d2:9d: e2:8e:01:b7:9f:a5:b1:66:73:6a:14:6c:ab:62:d0: 1e:8f:49:c5:a5:ae:fe:bb:25:0e:8b:d5:e7:23:7c: 11:67:02:a9:48:b1:b9:88:a7:d5:d0:1f:a4:15:79: a4:5b:ba:6c:64:05:b5:a6:04:88:a1:f4:66:ec:e6: 01:1b:48:83:b3:6a:d1:24:fd:4e:21:dd:ac:57:a0: ed:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8A:77:E5:20:30:07:BA:34:A0:E1:B9:77:F2:44:07:42:03:98:46 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:86:66:8b:74:19:66:e0:bf:1f:1d:a4:6d:77:91:8b:47:59: ee:86:3f:96:df:f0:5b:bc:3e:ca:5c:bb:96:37:21:27:77:a4: c7:a5:0c:84:99:b7:ca:9f:43:22:81:81:4e:1e:5a:37:9e:87: 68:6d:fd:16:99:96:68:da:03:06:24:74:24:78:05:a6:1e:1f: aa:70:37:19:94:dd:dd:94:46:57:2f:f7:3b:b4:0f:2f:d7:f4: c4:18:a8:0e:76:99:90:9f:a6:aa:6c:80:c7:68:51:8b:9c:d0: 94:26:01:3e:19:f1:77:a6:cc:b4:38:11:b6:dd:41:7b:6b:56: 93:97:db:75:cc:c6:98:76:9e:ff:5f:a7:b9:e7:5b:74:17:dc: 43:91:83:37:6d:7e:04:6c:0f:f0:97:79:82:69:2c:14:77:f8: 11:ca:1c:e5:ce:b0:d0:50:a2:8c:1f:27:e6:4a:c3:fe:b1:7c: 7d:f3:21:67:01:2d:1f:a0:6b:10:90:d8:72:3a:0d:8a:03:e2: 8a:9a:c7:b2:a9:1a:21:73:d2:11:a5:11:18:c5:a2:23:b8:3f: 36:d4:c8:ce:ea:1f:e9:88:7c:92:9a:ee:fd:ee:ee:73:66:4d: af:ee:80:42:c8:b2:30:d1:e1:6f:c1:09:3f:62:8d:5a:bb:d2: df:40:17:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUxMTAzMDYwNjQ2WhcNMjUxMTEwMDYwNjQ2WjAYMRYwFAYD VQQDEw02OTA4NDY3Ni1hYmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wwKxIy/0jo+wGEbSgUOkV675YotrTNPpaLprRt2RODSCM/Guay9k+dUhJH1 oX6estN3NnPaOHyAwtokj/Gmbnut6AEAFolQZspaa1PKN7zff01ggjnPpPm726xr LPoYZoZ85nnXWBrsS7DWHU+KUm78YGAdujydRPha1/r/fvnpkGxqSgWgTiPn8l1F cZX/hN6a5gw0Vu9STC/DAb1sOvM/8hGUCaAiwrMGgXC6cWoO0p3ijgG3n6WxZnNq FGyrYtAej0nFpa7+uyUOi9XnI3wRZwKpSLG5iKfV0B+kFXmkW7psZAW1pgSIofRm 7OYBG0iDs2rRJP1OId2sV6Dt9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaKd+Ug MAe6NKDhuXfyRAdCA5hGMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMhmaLdBlm4L8fHaRtd5GLR1nuhj+W3/BbvD7KXLuWNyEnd6THpQyE mbfKn0MigYFOHlo3nodobf0WmZZo2gMGJHQkeAWmHh+qcDcZlN3dlEZXL/c7tA8v 1/TEGKgOdpmQn6aqbIDHaFGLnNCUJgE+GfF3psy0OBG23UF7a1aTl9t1zMaYdp7/ X6e551t0F9xDkYM3bX4EbA/wl3mCaSwUd/gRyhzlzrDQUKKMHyfmSsP+sXx98yFn AS0foGsQkNhyOg2KA+KKmseyqRohc9IRpREYxaIjuD821MjO6h/piHySmu797u5z Zk2v7oBCyLIw0eFvwQk/Yo1au9LfQBeN -----END CERTIFICATE-----Generated at Tue Nov 4 19:00:58 2025 by rpki-client