$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: JTQKWEEsGqyZDERiaY/7FXizPNmMgRxBS5eGugQOkQs= Subject key identifier: 70:41:CF:A6:77:1C:D7:A3:4D:EA:17:35:0D:ED:36:76:9D:3B:0B:AA Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 1938 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 1923 Signing time: Tue 04 Nov 2025 16:32:09 +0000 Manifest this update: Tue 04 Nov 2025 16:32:08 +0000 Manifest next update: Tue 11 Nov 2025 16:32:08 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: 54u+vEOUl3nAs9cvr0Vnjt4OzPXhBZFgpAiBfSMZMYU=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: psURfyPJMxxR2CGBpJlzsnwoEyc78Mv6OwXOUqaExNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6456 (0x1938) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Nov 4 16:32:08 2025 GMT Not After : Nov 11 16:32:08 2025 GMT Subject: CN=690a2a89-a689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:af:83:63:cb:54:82:b7:47:4d:d8:41:75:8b: 62:2a:a3:d1:78:f6:21:67:2b:2e:92:6e:e9:29:de: 47:42:96:86:47:0c:4a:b6:e8:95:9f:ab:8d:db:13: 9b:71:fa:cc:a6:21:cb:30:58:f4:41:89:ac:91:fd: 11:07:28:be:56:8b:fe:1d:75:b9:f6:0a:b2:ff:87: 02:4b:e9:dc:1b:c2:32:1e:a1:07:ca:ae:55:33:ab: 5c:44:13:07:ef:9a:16:49:2e:94:d3:32:cd:3e:54: c8:7b:f7:5a:fc:71:b9:35:04:00:b5:93:7c:43:7f: 0c:dc:09:e3:5f:93:83:89:a3:89:79:5a:49:2d:45: cf:c5:79:92:dd:43:ed:28:d9:21:a7:1e:3a:93:59: 56:06:a0:18:a0:77:b0:70:26:0e:8f:d7:3e:64:5e: 9e:1e:23:4f:44:42:d7:c5:48:49:aa:76:3f:07:96: 04:b2:d5:e3:fc:c0:0b:d8:eb:34:34:4e:f5:61:ff: 75:ba:dc:c1:88:75:f1:6a:6c:a7:82:21:1e:5a:68: a4:d0:34:ac:4c:da:7f:cb:47:f4:90:b5:be:90:18: b8:8e:3b:f4:1e:86:68:ff:f2:6c:15:cd:7a:eb:dd: 68:d4:28:53:c9:dd:54:2e:ce:e5:99:f1:b0:86:78: 65:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:41:CF:A6:77:1C:D7:A3:4D:EA:17:35:0D:ED:36:76:9D:3B:0B:AA X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e0:72:4d:18:24:67:4a:93:2e:01:05:fa:29:31:0f:b8:f3: 2e:c5:8d:31:ac:5e:d3:e5:1e:85:76:85:a2:75:ad:14:9c:02: e5:f1:f7:ba:38:76:06:04:9c:11:98:37:c5:4c:f9:6d:b0:11: ff:86:9e:2f:28:9d:b5:6d:c3:5b:b1:58:18:9a:3d:4e:83:38: 91:39:19:20:52:21:a3:e9:5c:b8:cc:a0:f6:f1:25:12:a5:01: d6:38:8e:f6:ad:fa:a7:fc:39:12:b8:51:dc:c5:30:43:61:05: f0:87:f7:4d:31:1e:d9:ca:e9:f7:2f:4d:c8:a0:05:be:00:6c: 8c:34:af:e6:3f:2f:b3:b8:a0:29:c5:35:1d:93:11:58:b6:d8: da:1b:8d:eb:8c:45:a1:a7:c0:83:06:71:cc:cf:5f:a6:01:19: 34:cd:1d:31:d0:31:64:56:17:05:7e:a6:2e:31:27:ca:6e:4b: 26:7e:0b:80:ec:e8:b7:4c:7b:dc:89:eb:f7:05:f4:ea:0a:4f: 43:84:a4:42:f9:5a:b9:d9:42:79:02:23:fb:0c:24:36:f3:1e: 18:84:b0:0a:30:86:3d:b2:2c:c6:07:6c:61:ee:bb:65:1a:c9: 44:3f:b1:19:fd:7b:84:67:f7:94:73:42:40:5c:97:9b:fc:92: 11:d0:cc:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjUxMTA0MTYzMjA4WhcNMjUxMTExMTYzMjA4WjAYMRYwFAYD VQQDEw02OTBhMmE4OS1hNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAza+DY8tUgrdHTdhBdYtiKqPRePYhZysukm7pKd5HQpaGRwxKtuiVn6uN2xOb cfrMpiHLMFj0QYmskf0RByi+Vov+HXW59gqy/4cCS+ncG8IyHqEHyq5VM6tcRBMH 75oWSS6U0zLNPlTIe/da/HG5NQQAtZN8Q38M3AnjX5ODiaOJeVpJLUXPxXmS3UPt KNkhpx46k1lWBqAYoHewcCYOj9c+ZF6eHiNPRELXxUhJqnY/B5YEstXj/MAL2Os0 NE71Yf91utzBiHXxamyngiEeWmik0DSsTNp/y0f0kLW+kBi4jjv0HoZo//JsFc16 691o1ChTyd1ULs7lmfGwhnhl7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBBz6Z3 HNejTeoXNQ3tNnadOwuqMB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA34HJNGCRnSpMuAQX6KTEPuPMuxY0xrF7T5R6FdoWida0UnALl8fe6 OHYGBJwRmDfFTPltsBH/hp4vKJ21bcNbsVgYmj1OgziRORkgUiGj6Vy4zKD28SUS pQHWOI72rfqn/DkSuFHcxTBDYQXwh/dNMR7Zyun3L03IoAW+AGyMNK/mPy+zuKAp xTUdkxFYttjaG43rjEWhp8CDBnHMz1+mARk0zR0x0DFkVhcFfqYuMSfKbksmfguA 7Oi3THvciev3BfTqCk9DhKRC+Vq52UJ5AiP7DCQ28x4YhLAKMIY9sizGB2xh7rtl GslEP7EZ/XuEZ/eUc0JAXJeb/JIR0MwK -----END CERTIFICATE-----Generated at Wed Nov 5 11:49:50 2025 by rpki-client