$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: nc5wQZtB8OB4dod3lFtv2LzisdtSfF7g0OW3gBsO6oA= Subject key identifier: B0:D2:77:EF:E9:DE:14:CD:19:26:1B:98:84:C1:0F:F4:81:76:2C:45 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02F5 Signing time: Wed 05 Nov 2025 01:19:18 +0000 Manifest this update: Wed 05 Nov 2025 01:19:17 +0000 Manifest next update: Wed 12 Nov 2025 01:19:17 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: B0SMrry0NYZgBsxcl0apBiwpgPJOpBWUaF+5oVC9zrM=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Nov 5 01:19:17 2025 GMT Not After : Nov 12 01:19:17 2025 GMT Subject: CN=690aa615-d3c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:49:c1:b9:b5:ce:b0:dc:2c:19:54:fb:f3: 35:fb:c3:08:0e:45:40:df:f7:ca:f9:92:5c:32:2d: 77:35:e9:ca:6f:6a:b7:cd:bf:ee:1f:db:03:8a:c1: f3:1b:ef:ba:df:45:ad:68:25:d5:0f:47:ce:67:22: 4c:15:d5:a6:23:ae:48:60:a4:ab:ed:57:c9:dd:b4: db:41:bd:66:bc:d3:b2:cd:91:ef:b8:80:61:c2:64: 9f:4e:ee:20:2b:95:ae:8c:34:3f:40:dc:0b:8d:0f: 67:7f:c1:35:6b:2a:42:d3:a3:88:50:9b:b7:ae:f4: 42:3f:ae:a4:84:b8:2f:04:a6:aa:29:f0:5e:9b:1a: 3b:31:21:c7:08:c6:74:d7:ef:24:d2:c6:56:8f:6e: 79:d7:f0:5b:b7:86:74:63:fb:33:a8:a2:81:d8:22: db:7e:29:3c:c8:fd:10:0b:09:22:c4:f1:7f:13:71: 8d:c5:b6:9c:ad:03:5c:b7:f4:8a:24:55:2b:d0:91: d4:c4:f5:cf:c7:16:ec:ae:fd:a9:45:7c:b1:5f:4c: 77:25:92:de:6b:39:06:d1:e0:9b:a5:1e:19:a7:34: f0:46:70:23:9a:05:a7:e6:dd:62:d9:bf:5d:1a:d8: 1b:db:89:c8:40:0a:fe:95:3f:67:a2:c5:c1:fe:b0: 0c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D2:77:EF:E9:DE:14:CD:19:26:1B:98:84:C1:0F:F4:81:76:2C:45 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:c5:11:7a:a9:3f:ac:ec:e9:e9:03:b0:a3:8a:3d:3c:5c:fc: 88:d1:8a:7e:df:14:1c:51:2d:00:f1:d1:de:d2:51:c9:cf:43: 1a:f1:fb:c5:74:68:e7:b5:16:7f:11:77:63:37:75:e6:21:37: d3:63:13:47:ff:00:25:28:bd:5f:6c:9b:fb:bf:67:aa:3d:ab: 0d:65:56:b5:38:8c:12:76:fe:5c:7b:58:83:de:db:98:75:9e: 31:79:16:d2:74:26:fb:a7:e6:7f:08:55:38:7a:88:da:7d:83: 00:dd:37:0a:f4:ca:9d:ea:a0:94:3c:5d:d4:56:74:a8:7d:37: 50:a7:95:05:84:a6:33:56:94:93:c5:6c:67:e2:06:d6:51:ee: d4:84:65:40:51:33:e5:0c:8b:03:bf:7b:c6:28:30:ab:09:19: c5:a2:7b:1b:d4:3f:5a:f6:27:5b:c0:59:f6:fa:d8:4a:a6:ed: 96:b6:19:7d:a9:42:1a:2f:47:a8:cc:73:f1:10:77:c7:c7:2d: fc:f3:f7:1d:23:6c:bd:f8:ad:12:f0:b9:61:2f:c0:5d:6c:e3: 0a:a0:17:c8:73:4e:50:39:ac:9b:87:41:07:e5:9b:c0:b2:d4: 0f:e0:dd:3b:39:33:1c:8d:23:87:66:14:c1:6f:42:71:3d:c9: e4:76:8a:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUxMTA1MDExOTE3WhcNMjUxMTEyMDExOTE3WjAYMRYwFAYD VQQDEw02OTBhYTYxNS1kM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14NJwbm1zrDcLBlU+/M1+8MIDkVA3/fK+ZJcMi13NenKb2q3zb/uH9sDisHz G++630WtaCXVD0fOZyJMFdWmI65IYKSr7VfJ3bTbQb1mvNOyzZHvuIBhwmSfTu4g K5WujDQ/QNwLjQ9nf8E1aypC06OIUJu3rvRCP66khLgvBKaqKfBemxo7MSHHCMZ0 1+8k0sZWj2551/Bbt4Z0Y/szqKKB2CLbfik8yP0QCwkixPF/E3GNxbacrQNct/SK JFUr0JHUxPXPxxbsrv2pRXyxX0x3JZLeazkG0eCbpR4ZpzTwRnAjmgWn5t1i2b9d Gtgb24nIQAr+lT9nosXB/rAMHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDSd+/p 3hTNGSYbmITBD/SBdixFMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7xRF6qT+s7OnpA7Cjij08XPyI0Yp+3xQcUS0A8dHe0lHJz0Ma8fvF dGjntRZ/EXdjN3XmITfTYxNH/wAlKL1fbJv7v2eqPasNZVa1OIwSdv5ce1iD3tuY dZ4xeRbSdCb7p+Z/CFU4eojafYMA3TcK9Mqd6qCUPF3UVnSofTdQp5UFhKYzVpST xWxn4gbWUe7UhGVAUTPlDIsDv3vGKDCrCRnFonsb1D9a9idbwFn2+thKpu2Wthl9 qUIaL0eozHPxEHfHxy388/cdI2y9+K0S8LlhL8BdbOMKoBfIc05QOaybh0EH5ZvA stQP4N07OTMcjSOHZhTBb0JxPcnkdoqL -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:13 2025 by rpki-client