$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: nU4nDWuNWbvX8KV1SiX+yxGftoarMwf4W+xOJKMtqlk= Subject key identifier: 4A:0A:B3:8F:34:3C:86:81:24:7C:CC:13:FB:ED:41:45:4F:4E:50:81 Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 038B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 036F Signing time: Mon 03 Nov 2025 00:56:57 +0000 Manifest this update: Mon 03 Nov 2025 00:56:56 +0000 Manifest next update: Mon 10 Nov 2025 00:56:56 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: Fs8O+jNhVvnxZJxNqkUsJ+Ljc/UAj2MRnzAXyNjjk7M=) 2: B2FCF1C07FF911F08FAAC57FC4F9AE02.roa (hash: MnpTevKrhY7L4cqXUyU9PXlqHjDSUZYAGeApiPXwlBI=) 3: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: fuFQR3XBNeUBp3GuT5Rq8XdFNfctvFuOXUDcjAZyCQA=) 4: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: Oo/z3Tl848fDTqTqN7CA+y187n0AUvuUe1PsbRy+loY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 907 (0x38b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Nov 3 00:56:56 2025 GMT Not After : Nov 10 00:56:56 2025 GMT Subject: CN=6907fdd8-3346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8c:2d:aa:ee:25:3b:0d:b1:3e:d1:77:c2:01: 9a:01:3f:86:88:7e:f6:86:79:65:6a:99:1f:d0:0a: dd:65:42:ed:f2:e0:8c:5d:06:94:86:2e:69:90:f1: 14:b2:a4:13:f9:fa:fc:9c:90:a3:eb:31:af:27:4a: e2:dc:4e:14:97:54:70:68:47:e8:2c:28:15:92:c9: 98:a7:13:5a:60:da:27:1a:2c:21:a3:32:ce:35:05: 1c:ce:78:4d:d6:ca:8d:a9:64:a9:23:fa:17:1a:36: 2a:b9:52:97:1c:80:ce:fd:e0:bf:b6:5a:1f:c9:f7: 8b:f0:24:e1:f7:cf:4f:43:06:78:b6:36:bd:cd:7d: 71:45:29:b4:1a:6f:a8:d7:1e:c1:d7:27:66:b9:ae: 7e:49:7e:cd:0a:71:c5:87:51:d3:4e:68:e5:43:03: 98:08:4d:fd:e2:b1:c3:dd:07:4b:7e:72:a7:91:3b: be:1d:3d:a4:d0:ea:8b:ad:b2:40:e0:c0:7f:c4:40: cc:02:c0:86:49:e6:3e:68:3e:77:59:1e:28:ea:f5: 3d:76:4a:ed:b6:a1:eb:27:0e:4e:14:67:b3:c7:3d: 4f:06:0c:fc:d7:e7:54:75:ea:7c:71:35:64:2c:75: c3:b7:e4:19:2d:f0:83:31:5e:37:e5:8f:e8:62:f8: 0e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0A:B3:8F:34:3C:86:81:24:7C:CC:13:FB:ED:41:45:4F:4E:50:81 X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:37:56:35:bc:38:ec:29:e6:8e:89:d6:66:fe:15:fa:ca:a4: 39:d8:10:a3:9b:ff:2f:eb:ba:23:de:e5:d9:88:28:47:c3:29: 38:a1:a1:a1:38:8c:ad:8d:2e:99:56:78:2e:87:d2:da:03:4c: 2f:cb:a3:f9:63:f9:24:ce:32:f9:4b:51:be:5b:0a:43:42:85: 46:cc:ad:09:ad:4c:26:39:a0:40:93:1f:97:a7:e9:29:87:6a: 26:12:82:2b:66:bb:b0:25:ed:a9:06:dc:b5:11:1a:9d:3c:08: dd:4c:7f:df:a9:b4:9d:ed:ff:d4:ef:98:44:17:fc:8e:35:b5: 7b:30:d6:c6:46:6b:59:19:c2:5b:fe:0c:73:40:33:9d:f8:f9: e4:3a:75:bc:44:cf:d8:35:3e:ef:a2:09:41:a7:01:2f:4d:80: 7a:8d:f6:72:7d:01:04:c2:a3:79:eb:70:0b:79:5c:a5:b5:87: c5:8f:f5:ca:18:c9:ba:08:99:b5:6e:ae:85:52:e7:39:bf:65: 47:b0:2a:0f:fc:ed:ea:b7:e4:0c:85:dc:40:e2:71:40:e5:57: 91:8a:ab:ea:01:9c:8c:c7:5c:85:fc:8a:b9:de:8a:44:1e:70: 34:4d:dd:42:a5:4f:11:65:a5:38:2f:63:e9:c1:ca:d5:56:68: 42:b1:9f:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjUxMTAzMDA1NjU2WhcNMjUxMTEwMDA1NjU2WjAYMRYwFAYD VQQDEw02OTA3ZmRkOC0zMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ywtqu4lOw2xPtF3wgGaAT+GiH72hnllapkf0ArdZULt8uCMXQaUhi5pkPEU sqQT+fr8nJCj6zGvJ0ri3E4Ul1RwaEfoLCgVksmYpxNaYNonGiwhozLONQUcznhN 1sqNqWSpI/oXGjYquVKXHIDO/eC/tlofyfeL8CTh989PQwZ4tja9zX1xRSm0Gm+o 1x7B1ydmua5+SX7NCnHFh1HTTmjlQwOYCE394rHD3QdLfnKnkTu+HT2k0OqLrbJA 4MB/xEDMAsCGSeY+aD53WR4o6vU9dkrttqHrJw5OFGezxz1PBgz81+dUdep8cTVk LHXDt+QZLfCDMV435Y/oYvgOYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoKs480 PIaBJHzME/vtQUVPTlCBMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmN1Y1vDjsKeaOidZm/hX6yqQ52BCjm/8v67oj3uXZiChHwyk4oaGh OIytjS6ZVnguh9LaA0wvy6P5Y/kkzjL5S1G+WwpDQoVGzK0JrUwmOaBAkx+Xp+kp h2omEoIrZruwJe2pBty1ERqdPAjdTH/fqbSd7f/U75hEF/yONbV7MNbGRmtZGcJb /gxzQDOd+PnkOnW8RM/YNT7voglBpwEvTYB6jfZyfQEEwqN563ALeVyltYfFj/XK GMm6CJm1bq6FUuc5v2VHsCoP/O3qt+QMhdxA4nFA5VeRiqvqAZyMx1yF/Iq53opE HnA0Td1CpU8RZaU4L2PpwcrVVmhCsZ9a -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:53 2025 by rpki-client