$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: Fke+L7Z2sqHAG5fbgQiDlu+JjQyOr5DJsgRWT8EQEuE= Subject key identifier: 05:10:29:F3:FC:96:CF:E6:25:E6:D9:34:CE:66:95:86:1A:7D:1D:94 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 0688 Signing time: Tue 04 Nov 2025 22:31:06 +0000 Manifest this update: Tue 04 Nov 2025 22:31:06 +0000 Manifest next update: Tue 11 Nov 2025 22:31:06 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: BFdZSrgGkoV+8vRPxtD27JmuzY9gdzf3HZrhTQHxqtU=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: hzbXrtnctw9RaO4u4LO+M5su44TkMPAo6wV59Ue+QJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Nov 4 22:31:06 2025 GMT Not After : Nov 11 22:31:06 2025 GMT Subject: CN=690a7eaa-9b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:d1:9a:24:ba:2a:c0:e6:b6:31:f5:25:99: 8d:2e:ec:09:5d:a1:47:96:65:89:bc:98:e3:86:72: ed:21:e9:3c:29:45:8d:8a:49:c7:7c:5a:2b:08:4d: 77:53:d4:e3:e5:89:b1:91:f6:01:c0:90:74:02:be: e4:75:0b:1b:4b:ab:33:cc:69:d2:77:53:4a:e6:e3: ae:37:b9:fa:d4:b9:1b:3e:66:a7:57:eb:d2:67:2d: a7:7f:a3:8b:9c:aa:55:77:7c:4c:9a:41:d8:7e:9a: 25:e9:45:72:69:cb:e2:1b:a9:8d:6f:30:75:6e:52: 6b:96:cb:c5:20:4d:b2:3e:2b:ba:b0:70:28:b8:62: 3b:1a:ba:f3:d1:45:ae:03:43:c9:8c:c0:be:fd:93: f0:02:6a:a2:f1:ac:c6:df:f4:53:03:07:80:29:96: f2:a0:f9:e2:33:8c:16:70:c7:92:a0:c6:98:5f:72: 29:57:b6:f3:88:b4:4c:78:68:10:51:38:81:24:f2: c9:43:e5:2d:cb:fc:3d:24:47:6d:d1:d5:20:1a:cc: 3b:a9:01:14:a9:f6:94:e9:4f:6b:57:4f:8d:6b:6f: 46:38:a9:08:e2:db:31:a1:02:f6:db:15:f2:02:86: 2b:32:9e:b6:bc:0a:d6:0f:7e:ad:72:db:27:0d:b2: d2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:10:29:F3:FC:96:CF:E6:25:E6:D9:34:CE:66:95:86:1A:7D:1D:94 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a5:32:fd:85:14:7e:da:14:05:52:ff:20:bc:04:98:9d:fa: 22:31:eb:26:39:5d:c5:54:39:38:70:02:7f:2c:66:49:ee:02: f7:c9:82:bf:b4:49:4d:8e:0d:62:21:35:f1:01:a2:a0:0d:0f: c5:cf:6c:64:9e:02:43:24:29:d6:dc:4d:5c:e8:c7:5e:c7:1e: e5:e6:14:91:d7:57:fc:db:ad:ab:32:f1:74:82:f2:c0:e4:31: 88:af:c3:7a:1b:d5:de:14:eb:c1:f1:8d:2c:0b:ad:83:9f:f1: 16:3e:f6:f1:6d:2e:99:23:d0:95:e7:6b:07:e6:d7:c5:20:9e: a8:81:ee:35:ca:e7:4c:62:59:69:21:e9:10:2b:fe:f3:7e:b1: 15:7e:01:28:2b:06:62:12:13:87:47:ff:c9:a8:6d:60:ea:8b: 8a:33:b9:1c:3c:40:79:e0:08:df:19:cb:7d:82:20:5b:0f:d8: 5f:8e:2e:43:b0:c5:0c:c0:44:fa:f9:9d:37:7a:c5:d1:98:c0: e5:8f:82:fd:7d:94:e4:38:23:33:66:cf:43:3a:e2:83:d2:2f: e6:b7:2d:34:36:9a:ad:2c:64:74:b9:8d:f0:a3:f8:48:50:e3: f3:54:bc:50:3c:ae:d2:10:04:e0:4d:cf:2e:b3:07:fc:53:45: 45:44:65:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUxMTA0MjIzMTA2WhcNMjUxMTExMjIzMTA2WjAYMRYwFAYD VQQDEw02OTBhN2VhYS05YjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqXRmiS6KsDmtjH1JZmNLuwJXaFHlmWJvJjjhnLtIek8KUWNiknHfForCE13 U9Tj5YmxkfYBwJB0Ar7kdQsbS6szzGnSd1NK5uOuN7n61LkbPmanV+vSZy2nf6OL nKpVd3xMmkHYfpol6UVyacviG6mNbzB1blJrlsvFIE2yPiu6sHAouGI7Grrz0UWu A0PJjMC+/ZPwAmqi8azG3/RTAweAKZbyoPniM4wWcMeSoMaYX3IpV7bziLRMeGgQ UTiBJPLJQ+Uty/w9JEdt0dUgGsw7qQEUqfaU6U9rV0+Na29GOKkI4tsxoQL22xXy AoYrMp62vArWD36tctsnDbLSyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUQKfP8 ls/mJebZNM5mlYYafR2UMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pTL9hRR+2hQFUv8gvASYnfoiMesmOV3FVDk4cAJ/LGZJ7gL3yYK/ tElNjg1iITXxAaKgDQ/Fz2xkngJDJCnW3E1c6Mdexx7l5hSR11f8262rMvF0gvLA 5DGIr8N6G9XeFOvB8Y0sC62Dn/EWPvbxbS6ZI9CV52sH5tfFIJ6oge41yudMYllp IekQK/7zfrEVfgEoKwZiEhOHR//JqG1g6ouKM7kcPEB54AjfGct9giBbD9hfji5D sMUMwET6+Z03esXRmMDlj4L9fZTkOCMzZs9DOuKD0i/mty00NpqtLGR0uY3wo/hI UOPzVLxQPK7SEATgTc8uswf8U0VFRGVn -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:57 2025 by rpki-client