$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft File: LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft (raw, json) Hash identifier: +k3aGvcBvH3HsinJfRzG9jOQ2Qh0K+cVTxCu4YpBTdQ= Subject key identifier: A4:E1:8E:F1:E4:27:A0:DD:1F:91:4F:1B:FD:CE:C9:DC:E0:E5:F1:8C Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 34DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft Manifest number: 34D7 Signing time: Tue 04 Nov 2025 15:20:01 +0000 Manifest this update: Tue 04 Nov 2025 15:20:01 +0000 Manifest next update: Tue 11 Nov 2025 15:20:01 +0000 Files and hashes: 1: LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl (hash: KqbAa5pe83NVqM0soKBpP/hjr2CIgMChrSq/EjZoJqs=) 2: 22355CF4DE8411EDBC551D19C4F9AE02.roa (hash: cD8CzWCOccX7amwfxtqgHIbE7YwiBohTqztQjp4x6HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13531 (0x34db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A, serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: Nov 4 15:20:01 2025 GMT Not After : Nov 11 15:20:01 2025 GMT Subject: CN=690a19a1-1087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:41:3f:04:29:6b:4e:3c:db:56:f3:9e:06: de:d3:03:d4:c8:cd:65:b5:c0:64:38:36:d2:fb:86: 67:7c:8a:f3:9e:21:79:68:51:6d:de:4a:46:e2:a4: d7:7f:64:fb:d5:be:46:c1:3f:cd:e4:6e:28:21:3e: 4d:4d:27:de:9c:32:62:08:00:f7:44:67:1e:21:63: 6f:b1:aa:e8:3c:be:11:1b:18:ec:27:55:3b:ef:02: bb:39:7a:61:97:26:6b:eb:e5:41:38:82:ce:fe:68: 84:96:c6:7e:d8:db:bd:db:40:20:c2:a1:36:2a:dd: 7e:4a:9f:88:68:61:f5:67:04:d4:1c:3e:e4:77:cf: e9:e6:19:d0:ec:7e:3b:ae:ee:38:14:bb:d9:92:36: 45:02:ec:3d:89:bd:2e:82:77:bb:f9:41:92:95:4a: 73:4d:b1:d7:43:a0:27:09:03:a5:fa:d6:1f:06:f2: d9:c7:c8:92:d8:61:22:99:b3:42:ef:7b:21:ff:a6: ed:6c:47:58:f3:a5:bd:55:eb:48:56:58:dc:ff:a3: cd:bf:bd:39:f3:3f:5a:35:98:5e:d0:36:20:b5:7d: df:04:05:ed:34:dc:f6:80:16:10:2d:55:9e:db:ed: f6:2f:ac:16:f2:50:cc:bb:d0:4c:18:d9:20:02:e8: db:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E1:8E:F1:E4:27:A0:DD:1F:91:4F:1B:FD:CE:C9:DC:E0:E5:F1:8C X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:ec:c1:5d:92:8f:58:fa:85:da:a4:00:93:1b:c3:40:b0:8a: 63:49:25:39:01:8a:ad:ae:00:19:7a:8f:54:42:30:c7:86:18: 11:83:64:7c:1c:7f:8a:74:6a:02:86:db:24:d7:8d:3e:f9:21: f6:38:03:11:c9:2a:cf:28:ea:ab:a6:04:0f:dd:4b:47:ff:be: be:15:61:83:cc:b9:93:f8:f1:28:a5:bd:06:d6:0a:bd:1d:71: 72:ee:b9:96:09:3f:40:ce:cc:da:04:3b:3e:3d:00:0a:03:48: fe:4a:4b:45:b4:3d:4e:a3:1a:ba:d3:92:e3:d5:98:56:ce:e3: aa:3e:67:48:d1:1c:3a:45:1e:9e:cf:dd:d6:7f:3a:d8:5c:52: f7:7f:f7:4f:08:94:ad:92:18:1b:a9:10:08:56:74:01:11:bc: 64:ef:95:53:54:b5:42:de:0c:9d:be:1c:be:15:b0:37:b9:55: 26:66:1d:56:50:42:2b:0c:c8:12:e1:0a:09:1d:5d:e6:fd:2f: 47:fb:bb:ef:e2:e0:6e:9d:0e:43:c5:b9:6a:37:16:2b:8e:ed: 8f:58:a7:fb:ee:67:11:d0:80:aa:d6:f3:a4:9e:8a:ff:7c:18: 5f:3b:70:b8:43:57:18:2a:ab:1b:79:a5:a1:b2:f3:8f:0e:55: 4c:11:c0:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjUxMTA0MTUyMDAxWhcNMjUxMTExMTUyMDAxWjAYMRYwFAYD VQQDEw02OTBhMTlhMS0xMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbdBPwQpa04821bzngbe0wPUyM1ltcBkODbS+4ZnfIrzniF5aFFt3kpG4qTX f2T71b5GwT/N5G4oIT5NTSfenDJiCAD3RGceIWNvsaroPL4RGxjsJ1U77wK7OXph lyZr6+VBOILO/miElsZ+2Nu920AgwqE2Kt1+Sp+IaGH1ZwTUHD7kd8/p5hnQ7H47 ru44FLvZkjZFAuw9ib0ugne7+UGSlUpzTbHXQ6AnCQOl+tYfBvLZx8iS2GEimbNC 73sh/6btbEdY86W9VetIVljc/6PNv7058z9aNZhe0DYgtX3fBAXtNNz2gBYQLVWe 2+32L6wW8lDMu9BMGNkgAujbRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKThjvHk J6DdH5FPG/3Oydzg5fGMMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUU2QS81ODMyNDVCNjFEQUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQ TEJrYVA2S3hrVnJnaVloelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZ7MFdko9Y+oXapACTG8NAsIpjSSU5AYqtrgAZeo9UQjDHhhgRg2R8 HH+KdGoChtsk140++SH2OAMRySrPKOqrpgQP3UtH/76+FWGDzLmT+PEopb0G1gq9 HXFy7rmWCT9AzszaBDs+PQAKA0j+SktFtD1Ooxq605Lj1ZhWzuOqPmdI0Rw6RR6e z93WfzrYXFL3f/dPCJStkhgbqRAIVnQBEbxk75VTVLVC3gydvhy+FbA3uVUmZh1W UEIrDMgS4QoJHV3m/S9H+7vv4uBunQ5DxblqNxYrju2PWKf77mcR0ICq1vOknor/ fBhfO3C4Q1cYKqsbeaWhsvOPDlVMEcBq -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:37 2025 by rpki-client