$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: OoioooiR8aAxVccr0SjOoNZLXr6ot35OLW1s3Wp8ZvQ= Subject key identifier: 1E:BF:62:53:BA:E1:82:C0:F4:31:28:AD:79:77:98:7D:9F:FA:F2:AC Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34E2 Signing time: Tue 04 Nov 2025 14:40:55 +0000 Manifest this update: Tue 04 Nov 2025 14:40:54 +0000 Manifest next update: Tue 11 Nov 2025 14:40:54 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: QyS/IVVlV2MTZAQZfegvSqF2l/sluisFnbaGykkUzq8=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Nov 4 14:40:54 2025 GMT Not After : Nov 11 14:40:54 2025 GMT Subject: CN=690a1077-613b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:12:f8:f2:c5:f6:d8:03:a4:31:95:70:be: 30:f4:ac:0e:68:2a:76:92:e5:4e:82:e8:29:98:0b: cb:6a:7d:79:b8:76:5c:de:d2:d4:2a:a1:cd:98:68: 5d:14:97:9b:f3:f9:30:f9:03:2d:10:f2:57:17:79: ed:4e:8d:b0:c8:69:be:2a:d3:4b:e7:45:f9:bc:d5: 56:0d:4e:30:77:03:d6:91:06:23:c0:74:a2:0c:9a: c7:83:c6:f3:ba:65:3a:cc:7b:ce:d3:b6:fc:24:e9: 41:ca:ee:8b:cc:76:c4:ed:50:09:cb:c7:45:3a:56: cf:23:3e:2c:18:77:bf:c2:9f:b3:5b:cd:3b:ac:65: 7a:f2:b3:5d:11:6d:6f:24:ea:b5:9d:44:d2:8d:ad: 63:40:25:23:a1:1f:ce:9a:4c:ef:71:73:00:6b:f9: df:f1:17:cd:9d:07:5a:65:c9:7f:21:ba:41:16:a5: 24:8f:45:89:89:09:b4:b8:7f:44:90:6f:ef:81:de: c4:0b:76:8f:e6:68:13:94:f5:b8:ba:e3:57:e0:69: 91:ae:df:99:26:7a:57:d7:b5:67:27:80:5a:dc:a2: 17:40:01:5b:b2:a7:db:44:ae:b4:b8:3b:f8:09:0e: 85:25:e7:a1:6e:9a:3b:4b:aa:52:29:99:ed:63:a4: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BF:62:53:BA:E1:82:C0:F4:31:28:AD:79:77:98:7D:9F:FA:F2:AC X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3c:5a:49:4b:e3:6f:d3:26:e4:89:11:38:a0:a9:89:4a:2c: e5:83:86:7f:f6:cb:c5:73:68:83:af:c8:5b:4f:bb:a5:f6:d1: 92:29:94:dd:62:20:dd:37:31:f7:4e:be:0b:49:55:c4:6b:c1: c2:9d:14:65:56:7b:cb:40:d9:fe:88:25:ed:90:98:06:3d:6d: d8:79:80:a5:d2:9a:a9:60:15:a5:83:b2:64:12:bc:37:8c:6e: 31:1f:ac:25:fb:76:28:f2:a4:73:d4:4c:80:1a:2c:3c:bb:f9: 84:8e:65:b6:d9:f8:30:c0:97:ce:c4:fb:02:a5:25:71:72:75: ff:7e:09:e0:8e:5e:25:f3:6f:ab:97:52:e3:91:bf:62:61:d7: 4f:18:75:c5:bb:45:8e:4f:89:57:51:ea:74:bb:a0:0c:f6:98: 92:dd:5f:fb:f9:44:74:38:8f:3b:02:b1:31:60:cc:89:ee:9e: 8b:b2:4a:10:0d:17:3d:37:ee:e8:b4:66:d9:0a:4d:5d:ef:89: 10:b1:b0:08:d4:9f:63:d0:e2:25:df:68:f7:a0:3f:67:cf:06: 0d:04:97:b0:e9:34:1d:dc:01:14:63:6e:7e:e9:a0:80:85:22: d3:c0:81:4c:3b:f0:ec:61:db:7f:96:66:70:ed:e6:73:e3:ff: 31:86:47:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMTA0MTQ0MDU0WhcNMjUxMTExMTQ0MDU0WjAYMRYwFAYD VQQDEw02OTBhMTA3Ny02MTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF0S+PLF9tgDpDGVcL4w9KwOaCp2kuVOgugpmAvLan15uHZc3tLUKqHNmGhd FJeb8/kw+QMtEPJXF3ntTo2wyGm+KtNL50X5vNVWDU4wdwPWkQYjwHSiDJrHg8bz umU6zHvO07b8JOlByu6LzHbE7VAJy8dFOlbPIz4sGHe/wp+zW807rGV68rNdEW1v JOq1nUTSja1jQCUjoR/OmkzvcXMAa/nf8RfNnQdaZcl/IbpBFqUkj0WJiQm0uH9E kG/vgd7EC3aP5mgTlPW4uuNX4GmRrt+ZJnpX17VnJ4Ba3KIXQAFbsqfbRK60uDv4 CQ6FJeehbpo7S6pSKZntY6QAnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6/YlO6 4YLA9DEorXl3mH2f+vKsMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBePFpJS+Nv0ybkiRE4oKmJSizlg4Z/9svFc2iDr8hbT7ul9tGSKZTd YiDdNzH3Tr4LSVXEa8HCnRRlVnvLQNn+iCXtkJgGPW3YeYCl0pqpYBWlg7JkErw3 jG4xH6wl+3Yo8qRz1EyAGiw8u/mEjmW22fgwwJfOxPsCpSVxcnX/fgngjl4l82+r l1Ljkb9iYddPGHXFu0WOT4lXUep0u6AM9piS3V/7+UR0OI87ArExYMyJ7p6LskoQ DRc9N+7otGbZCk1d74kQsbAI1J9j0OIl32j3oD9nzwYNBJew6TQd3AEUY25+6aCA hSLTwIFMO/DsYdt/lmZw7eZz4/8xhkfO -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:14 2025 by rpki-client