$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: IwVmgqY07X8maZae52K38mjXTMxiYZ8mzq0YL9m1rDY= Subject key identifier: 2D:B9:A2:FA:C9:9D:2D:4E:3D:23:9B:D7:4C:05:98:38:12:27:14:97 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0181 Signing time: Tue 04 Nov 2025 18:47:06 +0000 Manifest this update: Tue 04 Nov 2025 18:47:05 +0000 Manifest next update: Tue 11 Nov 2025 18:47:05 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: joKxzIErTcN0Tx7UEWFi4MKDjyFj/e1j5Um9D+BE2E4=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Nov 4 18:47:05 2025 GMT Not After : Nov 11 18:47:05 2025 GMT Subject: CN=690a4a29-488e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:7d:fc:56:96:f3:b9:70:34:61:b7:12:a0: fe:74:a1:e7:60:b3:da:2f:03:15:f3:8e:09:60:10: be:72:f6:fa:ae:a7:d5:c4:fb:d9:9d:07:80:3b:a3: d3:81:90:03:ab:dc:7d:54:b3:a6:11:f5:4f:af:23: 33:e3:a7:ee:78:6f:cd:18:1a:18:46:96:4b:0a:cf: 78:3f:f2:08:26:14:a1:6f:38:91:43:e5:97:c5:73: f2:4a:b7:95:e6:9a:7a:7c:54:ab:25:90:1b:9d:14: 30:37:98:a7:18:ff:aa:68:31:7b:68:c0:67:f1:e3: 48:b0:34:82:e1:ba:4e:3e:bd:36:ed:a1:6b:46:1f: 75:ee:d5:a3:21:a8:35:3d:2b:43:3d:3f:77:89:12: d6:94:dd:cc:14:46:a8:2c:20:85:b1:fb:35:85:ea: 61:f0:b2:4d:ef:59:03:12:7d:8a:af:89:0d:82:50: 6e:e5:a2:5b:f2:87:23:4c:99:b9:7d:ec:f3:ac:23: e0:22:b9:b4:b8:f6:8d:9b:34:e9:5e:61:48:fd:0f: ab:7b:39:f9:9f:e5:ad:26:d4:a6:d5:69:c3:8b:82: 4a:f0:bf:3b:dc:f1:41:50:84:3f:5d:c5:a5:89:ab: 89:5c:54:2e:05:6c:ac:45:14:c7:e4:d9:9f:57:cb: 57:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B9:A2:FA:C9:9D:2D:4E:3D:23:9B:D7:4C:05:98:38:12:27:14:97 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:68:97:8c:f4:45:d1:0f:78:1f:0b:c5:46:da:5c:61:2d:85: 40:ff:ae:1b:6c:b5:17:a7:5f:e3:f5:0e:4d:15:1b:70:37:35: 49:bf:20:9c:b6:1d:9c:d1:2f:bb:d7:7f:42:ac:48:f3:6f:ae: 17:09:8c:61:56:8a:f0:fb:48:61:fc:84:db:cc:ed:5e:5b:fb: 08:2c:68:f1:83:43:6b:d7:69:63:74:67:2c:25:f9:af:bf:61: e7:6c:59:87:35:f6:82:d0:01:33:3c:9b:12:1a:5e:c5:ed:59: 8f:18:fe:1f:56:03:d7:7a:8c:6f:e9:52:28:69:49:37:8a:d0: 19:24:b5:81:f8:ed:ee:de:8f:bf:d2:df:c7:da:34:68:e2:50: 5c:bb:de:b5:72:ae:2f:bc:0e:f0:97:2e:ee:37:ae:7f:f5:46: e0:e4:51:d9:10:cf:0f:b4:da:e4:87:e0:af:0f:88:ac:5a:d0: 11:97:9e:96:1e:35:9d:78:ad:1f:e4:83:7d:99:c6:41:23:d7: 6d:f7:f2:f7:d8:45:23:eb:13:05:df:f8:ef:49:0f:ac:06:fc: 61:b2:90:f8:95:c1:07:ec:b7:05:6c:9a:8d:69:38:c5:33:8f: 3f:72:bc:9b:48:89:a8:dd:7e:f7:e2:27:7b:8e:cf:8c:ac:f1: 15:1a:88:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUxMTA0MTg0NzA1WhcNMjUxMTExMTg0NzA1WjAYMRYwFAYD VQQDEw02OTBhNGEyOS00ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur99/FaW87lwNGG3EqD+dKHnYLPaLwMV844JYBC+cvb6rqfVxPvZnQeAO6PT gZADq9x9VLOmEfVPryMz46fueG/NGBoYRpZLCs94P/IIJhShbziRQ+WXxXPySreV 5pp6fFSrJZAbnRQwN5inGP+qaDF7aMBn8eNIsDSC4bpOPr027aFrRh917tWjIag1 PStDPT93iRLWlN3MFEaoLCCFsfs1heph8LJN71kDEn2Kr4kNglBu5aJb8ocjTJm5 fezzrCPgIrm0uPaNmzTpXmFI/Q+rezn5n+WtJtSm1WnDi4JK8L873PFBUIQ/XcWl iauJXFQuBWysRRTH5NmfV8tXOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC25ovrJ nS1OPSOb10wFmDgSJxSXMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7aJeM9EXRD3gfC8VG2lxhLYVA/64bbLUXp1/j9Q5NFRtwNzVJvyCc th2c0S+7139CrEjzb64XCYxhVorw+0hh/ITbzO1eW/sILGjxg0Nr12ljdGcsJfmv v2HnbFmHNfaC0AEzPJsSGl7F7VmPGP4fVgPXeoxv6VIoaUk3itAZJLWB+O3u3o+/ 0t/H2jRo4lBcu961cq4vvA7wly7uN65/9Ubg5FHZEM8PtNrkh+CvD4isWtARl56W HjWdeK0f5IN9mcZBI9dt9/L32EUj6xMF3/jvSQ+sBvxhspD4lcEH7LcFbJqNaTjF M48/crybSImo3X734id7js+MrPEVGogW -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:47 2025 by rpki-client