$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: eJ4fl0pIlnzm4F78QV6HvVFHVwSM/uTlBYdENPdGcbs= Subject key identifier: 4D:4A:CD:DE:38:D3:E6:3A:18:A9:BB:A1:E7:53:A8:0C:30:F0:DB:D0 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 7C Signing time: Mon 03 Nov 2025 06:53:58 +0000 Manifest this update: Mon 03 Nov 2025 06:53:57 +0000 Manifest next update: Mon 10 Nov 2025 06:53:57 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: 9xyWEEWGZ2loseYTZMjXN9RzKVxyNKgSyvCUkDAjX1s=) 2: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 2JnfU/Mgp4zZ19X7p0k0eCs4HoUbNZM1uROYF0brrz8=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Nov 3 06:53:57 2025 GMT Not After : Nov 10 06:53:57 2025 GMT Subject: CN=69085185-764d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:51:e1:9c:6a:41:98:0f:02:f6:a5:4d:08: 17:42:3c:5c:ab:f8:54:b8:b4:35:35:d0:eb:d5:6b: 81:e5:35:dd:af:3d:f9:7d:8e:46:9d:77:c9:df:f5: 6b:07:ad:ae:84:0a:6e:b2:eb:18:0d:9e:fb:6f:ab: 7d:da:b5:38:fa:06:ea:f0:df:5b:6d:61:e2:c5:ae: 61:6d:1f:09:88:23:46:1b:80:66:27:34:54:4e:87: 92:9e:64:20:10:2e:3e:5c:30:66:e2:3b:74:a0:eb: 20:39:04:67:9d:0e:06:7f:c9:0d:e3:e7:de:9f:d2: 12:3f:31:a3:d8:76:3c:b8:f0:56:9d:03:3e:50:96: 18:cf:bc:5f:22:6f:20:5b:00:ba:6c:13:d5:5b:f7: 85:48:fc:90:f1:12:8c:27:63:73:03:fc:f5:40:7a: 8f:b8:85:e1:d9:8e:7e:72:c3:fe:16:07:54:54:28: 0b:a3:90:17:05:3a:8c:2d:98:8b:fc:28:aa:52:f0: 13:a3:35:84:e6:e0:2b:3b:c9:a2:16:51:7f:b0:96: ee:6a:90:8f:81:9a:84:f7:26:62:4b:82:9a:e4:47: 03:eb:27:a6:60:d6:49:96:d9:55:10:22:8f:23:fe: f7:5e:a2:73:2f:e9:de:63:9a:95:85:e3:dc:89:17: 2b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4A:CD:DE:38:D3:E6:3A:18:A9:BB:A1:E7:53:A8:0C:30:F0:DB:D0 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:71:df:89:e9:cd:58:15:d1:80:da:c6:34:30:3a:50:17:00: a6:d1:34:8f:1f:16:1f:ba:40:a1:3a:b0:f2:56:c4:2c:b5:7a: 24:36:73:59:9e:8a:c0:d5:47:3c:df:27:37:84:fd:37:57:8b: 33:78:6a:eb:ac:9b:06:11:8a:24:b6:f7:da:28:87:36:b6:72: 60:59:d8:c9:18:8e:3c:38:52:ce:cf:83:43:f4:55:68:23:00: 39:62:7b:d8:9c:24:d5:fa:98:74:96:03:46:4d:35:7c:08:51: 04:f4:f6:91:f6:24:f2:c4:b9:77:0f:e1:b5:6f:87:ec:b8:84: b9:d5:0b:b7:dc:8a:32:fc:66:35:74:48:c7:c6:1a:61:43:d5: 98:fc:ad:cb:97:9c:74:35:f9:dd:66:76:78:2f:ed:9c:1d:cb: 42:fb:a7:6e:58:fb:26:5a:0f:c9:ff:f0:27:80:a4:98:3b:1b: 20:75:a1:0a:7e:4f:bc:ca:d7:05:2a:fd:96:39:04:92:00:b1: 81:45:1a:8a:41:ed:61:92:bb:9b:ed:ad:31:7c:95:3b:04:c2: 69:9b:87:59:d2:39:9e:dd:a3:df:a4:67:8b:6c:a2:20:40:57: cc:ae:2d:5d:78:20:2d:68:43:52:2b:54:6a:10:32:83:5a:23: 71:26:2b:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjUxMTAzMDY1MzU3WhcNMjUxMTEwMDY1MzU3WjAYMRYwFAYD VQQDEw02OTA4NTE4NS03NjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKFR4ZxqQZgPAvalTQgXQjxcq/hUuLQ1NdDr1WuB5TXdrz35fY5GnXfJ3/Vr B62uhApususYDZ77b6t92rU4+gbq8N9bbWHixa5hbR8JiCNGG4BmJzRUToeSnmQg EC4+XDBm4jt0oOsgOQRnnQ4Gf8kN4+fen9ISPzGj2HY8uPBWnQM+UJYYz7xfIm8g WwC6bBPVW/eFSPyQ8RKMJ2NzA/z1QHqPuIXh2Y5+csP+FgdUVCgLo5AXBTqMLZiL /CiqUvATozWE5uArO8miFlF/sJbuapCPgZqE9yZiS4Ka5EcD6yemYNZJltlVECKP I/73XqJzL+neY5qVhePciRcrUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1Kzd44 0+Y6GKm7oedTqAww8NvQMB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCucd+J6c1YFdGA2sY0MDpQFwCm0TSPHxYfukChOrDyVsQstXokNnNZ norA1Uc83yc3hP03V4szeGrrrJsGEYoktvfaKIc2tnJgWdjJGI48OFLOz4ND9FVo IwA5YnvYnCTV+ph0lgNGTTV8CFEE9PaR9iTyxLl3D+G1b4fsuIS51Qu33Ioy/GY1 dEjHxhphQ9WY/K3Ll5x0NfndZnZ4L+2cHctC+6duWPsmWg/J//AngKSYOxsgdaEK fk+8ytcFKv2WOQSSALGBRRqKQe1hkrub7a0xfJU7BMJpm4dZ0jme3aPfpGeLbKIg QFfMri1deCAtaENSK1RqEDKDWiNxJisF -----END CERTIFICATE-----Generated at Tue Nov 4 19:13:10 2025 by rpki-client