$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: mB6KfYxGFfrw4YC/6Dp9U+p19LCcwbFVsebmrgHudlM= Subject key identifier: 75:49:21:BB:D3:19:A9:F3:93:1E:D2:E1:0B:E4:B8:11:8D:5F:88:41 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1168 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 115E Signing time: Tue 04 Nov 2025 17:19:34 +0000 Manifest this update: Tue 04 Nov 2025 17:19:34 +0000 Manifest next update: Tue 11 Nov 2025 17:19:34 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: gTtDRP/niOmAkWOWl5TE9f3Ql3EjMOYqhno3XMvlUy4=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4456 (0x1168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Nov 4 17:19:34 2025 GMT Not After : Nov 11 17:19:34 2025 GMT Subject: CN=690a35a6-b201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f5:ec:8d:24:f3:ca:b5:ca:1b:a1:e2:d2:04: 1b:8a:ff:4f:ad:75:87:4a:b3:bb:ef:a9:a2:d2:d6: a7:71:c8:7a:a4:94:c5:25:73:b1:f3:89:0f:39:a7: 4b:9d:eb:06:a1:8a:22:a8:79:e1:05:83:75:9d:f5: 81:c9:ac:cb:c7:5d:62:cc:61:50:64:15:9d:42:c7: b8:67:88:f3:6c:e4:16:58:32:4e:6e:9c:55:6a:d7: 6a:73:bd:c2:77:2f:91:fd:19:9c:45:74:43:51:7a: 60:e6:f3:b4:a3:f6:09:54:41:02:25:d6:b0:c3:68: c5:b1:8d:04:9e:a0:cf:51:b4:ee:ad:fb:03:75:a8: af:41:ff:db:ba:eb:45:b6:b7:1a:ea:09:e3:ae:c8: 76:09:a9:dc:47:f4:09:54:fd:7b:d0:7d:29:e5:4d: ac:03:25:6f:11:08:38:58:6b:51:43:23:ca:16:ab: 03:40:8b:f8:41:f5:5d:f3:f0:af:0b:2a:29:0b:c2: ec:a2:c3:70:95:6f:fd:32:96:d6:a7:0e:f9:b5:49: 08:cc:9b:3d:ce:2e:c0:71:cf:64:b1:07:2d:c7:76: 9c:79:ac:1e:d0:51:b3:0d:d5:42:51:82:f2:75:bc: 54:38:4a:e6:71:28:87:d0:fb:28:7a:de:f1:b2:69: e3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:49:21:BB:D3:19:A9:F3:93:1E:D2:E1:0B:E4:B8:11:8D:5F:88:41 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d1:1e:89:d5:cd:71:72:12:d3:8e:f4:5c:63:b6:75:1b:b2: 5f:ff:36:fe:50:83:fb:d4:f4:c8:2c:dc:1f:90:14:a0:3b:cd: 5f:0d:75:a5:49:65:77:30:d7:1a:5e:0f:14:23:c3:6a:fd:d0: df:6f:b2:9f:ba:99:e0:93:0c:66:8e:42:a6:24:0d:4b:7d:74: 07:bd:25:93:6e:8e:37:22:49:97:a4:7f:c6:73:30:42:0f:67: 74:70:fc:41:e4:1c:b7:47:dc:85:28:d9:f3:3c:4c:b7:2c:3b: 6c:a6:b2:0f:b2:96:d4:a5:1d:59:b2:ce:56:8a:1b:9c:88:2a: b8:7c:30:ff:d7:57:9b:a2:47:e6:75:40:c4:19:57:66:9a:fa: f8:8a:34:09:c0:2d:ad:b0:bb:f7:18:eb:63:c6:36:91:cb:f3: 1e:f9:da:03:e5:c1:31:00:50:5e:cd:2f:d6:17:59:13:a7:ba: 12:d2:32:28:5b:87:e6:2d:dd:d5:36:b6:42:57:87:ad:60:5d: c2:f9:c8:2a:e4:70:e7:b5:05:ed:9a:a3:37:47:91:c2:e6:ff: b1:bb:e0:f0:d1:df:13:e7:41:39:4b:9e:9b:97:5d:86:7c:55: 7a:9e:c9:28:f8:53:d1:56:7b:5d:98:fb:f3:7f:fa:f4:e8:f4: 9d:13:0f:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUxMTA0MTcxOTM0WhcNMjUxMTExMTcxOTM0WjAYMRYwFAYD VQQDEw02OTBhMzVhNi1iMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPXsjSTzyrXKG6Hi0gQbiv9PrXWHSrO776mi0tancch6pJTFJXOx84kPOadL nesGoYoiqHnhBYN1nfWByazLx11izGFQZBWdQse4Z4jzbOQWWDJObpxVatdqc73C dy+R/RmcRXRDUXpg5vO0o/YJVEECJdaww2jFsY0EnqDPUbTurfsDdaivQf/buutF trca6gnjrsh2CancR/QJVP170H0p5U2sAyVvEQg4WGtRQyPKFqsDQIv4QfVd8/Cv CyopC8LsosNwlW/9MpbWpw75tUkIzJs9zi7Acc9ksQctx3aceawe0FGzDdVCUYLy dbxUOErmcSiH0Psoet7xsmnj9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVJIbvT Ganzkx7S4QvkuBGNX4hBMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN0R6J1c1xchLTjvRcY7Z1G7Jf/zb+UIP71PTILNwfkBSgO81fDXWl SWV3MNcaXg8UI8Nq/dDfb7KfupngkwxmjkKmJA1LfXQHvSWTbo43IkmXpH/GczBC D2d0cPxB5By3R9yFKNnzPEy3LDtsprIPspbUpR1Zss5WihuciCq4fDD/11ebokfm dUDEGVdmmvr4ijQJwC2tsLv3GOtjxjaRy/Me+doD5cExAFBezS/WF1kTp7oS0jIo W4fmLd3VNrZCV4etYF3C+cgq5HDntQXtmqM3R5HC5v+xu+Dw0d8T50E5S56bl12G fFV6nsko+FPRVntdmPvzf/r06PSdEw+A -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:01 2025 by rpki-client