$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: 7ItF9IYuGB/twGPmpwJrer7J1TMHzKeCgFPJMyVDxQA= Subject key identifier: 17:24:F5:94:8C:D6:29:41:2D:45:B7:F1:4C:68:E8:6C:7F:CB:93:6D Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 054C Signing time: Sun 02 Nov 2025 23:33:16 +0000 Manifest this update: Sun 02 Nov 2025 23:33:15 +0000 Manifest next update: Sun 09 Nov 2025 23:33:15 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: Ltd75V0582f0cursmh6RWLhMwvi/ZfqkwkgtQ9nzJV8=) 2: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: khj0U83Oh0MV75Awop79+WdRP+WJETqec/zA5LVnzro=) 3: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 2jfJLAfv4sSmTjn+t4R2DbosLO6LZGV4JERzq1/IuT0=) 4: F88F642285E411EEB951413BC4F9AE02.roa (hash: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=) 5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: ZVXIXb68LMeIyoHASYy5oVFyflHWdmoVD7FAYMUQOp4=) 6: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (hash: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg=) 7: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY=) 8: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: H6lUECWs/LnmCnEJB/ye5BlXZoehdKlxdmR5+P/1VOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Nov 2 23:33:15 2025 GMT Not After : Nov 9 23:33:15 2025 GMT Subject: CN=6907ea3c-338e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:ef:0f:37:b0:0a:63:f8:0e:ac:e1:65:01: 86:32:a9:25:56:33:af:63:7b:a3:02:fb:a3:30:22: 04:5c:c8:f5:66:2f:d7:b2:55:7f:d2:03:86:14:1b: 08:a2:1b:c6:06:d9:20:9a:58:77:4e:e4:d3:17:24: c8:29:89:47:39:4e:4f:18:50:cb:2c:e3:b9:e9:74: c9:43:fe:9a:df:6e:d5:80:85:f4:de:72:e2:7b:12: a9:c9:9d:52:1a:22:08:2f:e4:2a:81:a0:8a:5f:61: 9e:40:60:dd:6e:4d:b0:4b:80:37:0a:ed:4b:34:0e: e4:1f:bd:04:ce:a1:31:61:c9:ad:8f:b3:53:9c:f2: c7:65:b1:a4:48:ed:52:5f:62:70:7d:3f:dd:15:70: b5:58:f6:b7:af:43:ec:89:fc:43:e5:d6:a2:52:f5: 62:67:2e:79:56:e4:15:a9:80:3b:cb:7d:05:c6:de: f6:d9:7f:f7:f9:c6:c4:50:c7:dc:40:d1:b2:01:0c: 36:28:70:08:96:b6:0b:c5:bc:e6:02:f5:70:f4:76: e8:ee:61:f6:da:70:62:df:44:f2:2e:b0:5c:5c:e9: e0:37:49:5f:72:eb:26:db:9e:a9:42:92:ee:45:6b: 4c:4d:bb:b0:cb:62:f6:be:9e:e7:22:e3:48:40:86: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:24:F5:94:8C:D6:29:41:2D:45:B7:F1:4C:68:E8:6C:7F:CB:93:6D X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a2:23:df:a6:17:42:0b:b1:9b:15:cd:63:cb:0a:72:47:b7: f1:2d:79:3f:69:57:6d:5b:35:8d:da:1a:73:9e:54:de:b5:bf: c7:77:4f:33:59:38:93:ac:99:24:5a:a2:05:99:01:a5:ed:b6: b7:e2:95:42:08:2e:07:13:78:7d:13:ac:c2:88:92:81:45:53: 15:55:96:6f:ce:6a:9d:60:84:38:bb:8c:3b:9b:fb:b3:92:a2: df:7a:f0:55:c8:e6:0e:c9:18:1d:73:23:e9:c8:3c:91:bc:db: 12:d6:6b:de:23:b1:87:72:0a:80:10:1c:0d:f8:29:e5:36:aa: f0:87:aa:b7:eb:91:15:8d:af:aa:fa:67:f0:90:d7:e4:24:74: f3:99:40:18:24:21:39:10:a3:87:1c:79:c0:87:48:a9:9e:35: f3:22:cc:58:4b:e7:45:b4:69:f5:ab:c2:5f:76:c9:af:53:7f: d2:60:1c:7e:01:86:d0:33:59:20:47:ea:dd:b7:40:3c:72:34: 17:83:eb:4f:70:b5:b8:7d:e7:8f:67:52:0f:3c:4b:f6:42:ac: 6d:d1:69:4f:f7:5a:43:0b:6c:b1:d2:28:04:11:ba:d6:a8:92: 2f:b8:99:7d:e9:11:9c:a4:98:e7:9c:f4:ba:2a:3f:f4:17:e5: 1e:68:6e:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjUxMTAyMjMzMzE1WhcNMjUxMTA5MjMzMzE1WjAYMRYwFAYD VQQDEw02OTA3ZWEzYy0zMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWLvDzewCmP4DqzhZQGGMqklVjOvY3ujAvujMCIEXMj1Zi/XslV/0gOGFBsI ohvGBtkgmlh3TuTTFyTIKYlHOU5PGFDLLOO56XTJQ/6a327VgIX03nLiexKpyZ1S GiIIL+QqgaCKX2GeQGDdbk2wS4A3Cu1LNA7kH70EzqExYcmtj7NTnPLHZbGkSO1S X2JwfT/dFXC1WPa3r0PsifxD5daiUvViZy55VuQVqYA7y30Fxt722X/3+cbEUMfc QNGyAQw2KHAIlrYLxbzmAvVw9Hbo7mH22nBi30TyLrBcXOngN0lfcusm256pQpLu RWtMTbuwy2L2vp7nIuNIQIbyMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBck9ZSM 1ilBLUW38Uxo6Gx/y5NtMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAoiPfphdCC7GbFc1jywpyR7fxLXk/aVdtWzWN2hpznlTetb/Hd08z WTiTrJkkWqIFmQGl7ba34pVCCC4HE3h9E6zCiJKBRVMVVZZvzmqdYIQ4u4w7m/uz kqLfevBVyOYOyRgdcyPpyDyRvNsS1mveI7GHcgqAEBwN+CnlNqrwh6q365EVja+q +mfwkNfkJHTzmUAYJCE5EKOHHHnAh0ipnjXzIsxYS+dFtGn1q8JfdsmvU3/SYBx+ AYbQM1kgR+rdt0A8cjQXg+tPcLW4feePZ1IPPEv2Qqxt0WlP91pDC2yx0igEEbrW qJIvuJl96RGcpJjnnPS6Kj/0F+UeaG68 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:00 2025 by rpki-client