$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: qcK7romn6LmAbmtsNBJunjnZY7I2MyqTZGoOCFruCc0= Subject key identifier: C9:C4:D2:D6:8F:FA:9B:0C:D2:3E:8C:16:2E:1C:CF:D0:02:C0:D5:A2 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05CC Signing time: Sun 02 Nov 2025 23:04:53 +0000 Manifest this update: Sun 02 Nov 2025 23:04:52 +0000 Manifest next update: Sun 09 Nov 2025 23:04:52 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: oqbBrwtbonef3jYaexS0sHQhLdgQMM8thkkgLPlln2o=) 2: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 3: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Nov 2 23:04:52 2025 GMT Not After : Nov 9 23:04:52 2025 GMT Subject: CN=6907e395-4238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:91:08:0b:9d:0b:6c:84:ce:85:6f:42:84:21: 10:21:a8:95:83:1d:b6:21:fc:15:97:00:fa:3c:b7: e8:f8:aa:94:c3:bd:4b:bf:39:84:79:2c:e8:52:e9: d0:a1:4f:1f:e1:fe:b9:56:5a:e7:e2:0f:2f:5a:1a: 23:49:57:0d:ab:6f:b4:a1:f5:2e:71:20:68:ad:ec: e4:f3:31:e5:49:a1:e7:05:fd:40:aa:a7:c1:c8:92: b7:fc:8a:9e:7c:25:13:57:8e:b2:01:94:bf:60:ff: 27:59:1d:d4:2c:62:85:0f:af:f9:9c:ba:06:6c:5f: a1:d7:93:a5:63:cc:c0:25:32:4b:9c:88:a8:07:71: 0c:f7:50:17:d7:bd:29:3d:9b:c9:8a:9b:b8:cd:2f: 1c:4f:01:0e:6a:c4:f7:fe:c1:22:44:21:ed:57:da: b5:5e:1e:9f:4f:4e:c5:50:cf:0b:b3:89:5f:7c:a8: 4b:2d:d7:7c:b3:76:9f:96:ee:c6:b4:16:96:31:f6: 73:e9:91:0a:97:6c:1f:e5:01:18:5d:c7:9c:74:9d: 2e:91:fe:56:3e:1f:65:63:17:c9:d8:e1:74:9e:17: de:53:0d:d9:ba:a6:e8:52:84:56:55:fb:90:86:c7: 0c:08:fe:18:22:4a:69:9d:dd:bd:9d:c7:c2:b4:7e: cf:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C4:D2:D6:8F:FA:9B:0C:D2:3E:8C:16:2E:1C:CF:D0:02:C0:D5:A2 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:be:82:ff:37:4b:d9:c5:80:a3:39:e4:32:cd:9f:53:e0:fa: 58:76:2a:f0:3a:bf:51:bf:77:b9:24:00:72:f6:a4:72:6e:ce: b5:1e:ed:99:a2:d1:3f:50:c4:0b:52:6e:6d:c1:64:4f:61:51: 81:09:50:ee:67:2d:cc:aa:43:f7:e1:99:6c:54:2f:39:1a:d7: 8f:bf:6f:b7:aa:6a:80:bc:f9:10:a4:c1:1f:dc:23:86:58:08: de:d6:b0:58:38:22:85:29:7e:5c:b1:30:8c:38:36:1f:60:fd: b1:eb:92:81:35:24:68:32:11:c1:7b:73:9e:5a:14:2a:84:6c: d4:ca:06:c4:a0:d7:3c:57:20:3f:ee:01:37:c5:3d:a6:88:15: 97:45:40:ad:f1:35:f0:91:68:b6:4b:e5:c6:5f:f6:53:d3:52: 25:2f:83:34:83:a5:aa:72:52:11:0f:b5:20:8e:2d:9c:51:d6: 22:b9:08:48:f8:43:25:92:3e:9e:20:10:4b:b5:cc:bd:b4:67: 6a:4f:b8:6b:96:b9:ff:77:c7:60:d1:b9:fd:74:50:1d:4a:f0: f0:a1:4e:f7:d4:f6:88:1c:f5:60:d2:f1:83:3f:1a:4c:aa:e9: ef:f5:10:79:0b:04:a9:18:3b:46:93:74:ce:4e:79:2f:1b:26: 68:29:2b:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMTAyMjMwNDUyWhcNMjUxMTA5MjMwNDUyWjAYMRYwFAYD VQQDEw02OTA3ZTM5NS00MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55EIC50LbITOhW9ChCEQIaiVgx22IfwVlwD6PLfo+KqUw71LvzmEeSzoUunQ oU8f4f65Vlrn4g8vWhojSVcNq2+0ofUucSBorezk8zHlSaHnBf1AqqfByJK3/Iqe fCUTV46yAZS/YP8nWR3ULGKFD6/5nLoGbF+h15OlY8zAJTJLnIioB3EM91AX170p PZvJipu4zS8cTwEOasT3/sEiRCHtV9q1Xh6fT07FUM8Ls4lffKhLLdd8s3aflu7G tBaWMfZz6ZEKl2wf5QEYXcecdJ0ukf5WPh9lYxfJ2OF0nhfeUw3ZuqboUoRWVfuQ hscMCP4YIkppnd29ncfCtH7PMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnE0taP +psM0j6MFi4cz9ACwNWiMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLvoL/N0vZxYCjOeQyzZ9T4PpYdirwOr9Rv3e5JABy9qRybs61Hu2Z otE/UMQLUm5twWRPYVGBCVDuZy3MqkP34ZlsVC85GtePv2+3qmqAvPkQpMEf3COG WAje1rBYOCKFKX5csTCMODYfYP2x65KBNSRoMhHBe3OeWhQqhGzUygbEoNc8VyA/ 7gE3xT2miBWXRUCt8TXwkWi2S+XGX/ZT01IlL4M0g6WqclIRD7Ugji2cUdYiuQhI +EMlkj6eIBBLtcy9tGdqT7hrlrn/d8dg0bn9dFAdSvDwoU731PaIHPVg0vGDPxpM qunv9RB5CwSpGDtGk3TOTnkvGyZoKSsC -----END CERTIFICATE-----Generated at Tue Nov 4 18:58:51 2025 by rpki-client