$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: B1bZfP/xNZsfWSEirdubp16nt5fI0XsJLeq1zUVUPc0= Subject key identifier: CE:84:75:BB:BD:B6:A8:F6:37:40:62:BC:9C:21:E7:80:8B:18:FF:09 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 013A Signing time: Mon 03 Nov 2025 04:35:05 +0000 Manifest this update: Mon 03 Nov 2025 04:35:04 +0000 Manifest next update: Mon 10 Nov 2025 04:35:04 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: XlugG16su9cBBA+O2QB+bAeelI371/46seZA9tPd0k4=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: saXUgFYFE88ebAmrp0hfBEAM07HUjSBQgX0rZpCJXb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Nov 3 04:35:04 2025 GMT Not After : Nov 10 04:35:04 2025 GMT Subject: CN=690830f8-ff33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a9:3e:15:ae:63:66:ed:c5:cd:f6:ef:2c:7a: 18:74:50:bb:1f:8a:2f:be:ef:6e:b9:c3:ff:7e:f4: 80:93:b0:ab:79:e1:29:49:76:58:75:b1:51:d7:87: 61:ba:ca:17:e4:42:23:70:a8:12:ac:4e:61:94:37: a0:41:7a:77:eb:dd:6a:af:7a:cd:a3:6d:3a:63:8a: b8:af:c1:3d:a5:b1:76:d0:d0:b2:1f:d8:17:7b:dc: 64:93:23:c1:58:66:ba:7c:ad:30:4a:8e:01:60:02: c5:bd:ea:82:7b:34:f2:01:ab:33:26:c8:71:25:0a: f2:19:92:7d:c1:35:67:d7:f6:d6:6a:8f:c8:d7:3f: a9:92:55:ac:40:c3:22:d8:0a:99:10:90:8a:28:06: fd:58:98:95:ff:c5:56:0f:c1:8a:e5:57:0d:26:6c: 82:8c:e4:4e:21:f7:e7:c2:1c:3f:39:b7:db:a8:59: bb:47:a5:ef:29:42:da:a6:36:aa:35:c0:31:46:09: 2e:2d:be:02:a9:b9:e8:e0:bd:22:f3:eb:2e:80:57: 83:51:3c:78:1b:a3:9b:67:ec:79:35:b0:be:89:ce: 19:c6:50:11:8a:bf:53:19:42:92:fc:8d:f0:7f:7f: d3:59:4f:92:e6:e0:4a:8d:fa:81:75:6a:cc:27:33: d5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:84:75:BB:BD:B6:A8:F6:37:40:62:BC:9C:21:E7:80:8B:18:FF:09 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a3:43:69:2c:b3:d8:eb:9a:59:ab:7d:c6:93:14:7f:84:f3: e1:88:b5:1f:52:4c:1a:83:32:5f:41:e6:26:c5:5f:37:52:e4: e2:ec:b1:8a:6e:71:71:64:f4:72:c5:d2:8a:17:c6:e2:a2:18: 23:d9:06:27:b5:ee:26:6a:b8:74:be:e8:62:91:00:67:57:69: c9:06:b6:ef:ec:ad:6b:f4:a1:a7:a4:86:ae:b1:77:7e:f0:ac: 18:74:ae:ec:e0:b7:2d:b5:47:bd:8c:b4:5c:73:03:38:f5:29: 9b:83:22:88:90:2f:66:0a:3c:27:09:9b:1c:b8:16:38:92:a0: ca:01:d1:54:e1:9e:8c:17:e3:3c:48:8f:0c:51:4c:c5:db:62: f4:10:3e:a5:65:af:22:0b:8b:b5:08:29:4e:e3:46:38:6f:cd: fd:02:c6:20:f3:e1:2a:af:db:ad:ed:eb:c7:ea:48:74:77:a1: dc:7c:ea:3c:bc:e6:92:31:44:28:fe:2b:41:59:f1:1e:38:b6: df:9a:9e:03:29:c7:3b:4c:7a:da:d3:66:b5:51:12:b8:93:2f: ba:24:e4:f4:40:7d:cc:d3:57:7e:2b:79:13:4f:eb:0b:02:70: 6c:aa:e7:04:cb:6d:04:e4:e3:91:3e:8f:6d:59:d3:22:f8:9d: 22:c7:38:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUxMTAzMDQzNTA0WhcNMjUxMTEwMDQzNTA0WjAYMRYwFAYD VQQDEw02OTA4MzBmOC1mZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKk+Fa5jZu3FzfbvLHoYdFC7H4ovvu9uucP/fvSAk7CreeEpSXZYdbFR14dh usoX5EIjcKgSrE5hlDegQXp3691qr3rNo206Y4q4r8E9pbF20NCyH9gXe9xkkyPB WGa6fK0wSo4BYALFveqCezTyAaszJshxJQryGZJ9wTVn1/bWao/I1z+pklWsQMMi 2AqZEJCKKAb9WJiV/8VWD8GK5VcNJmyCjOROIffnwhw/ObfbqFm7R6XvKULapjaq NcAxRgkuLb4Cqbno4L0i8+sugFeDUTx4G6ObZ+x5NbC+ic4ZxlARir9TGUKS/I3w f3/TWU+S5uBKjfqBdWrMJzPVkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6Edbu9 tqj2N0BivJwh54CLGP8JMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3o0NpLLPY65pZq33GkxR/hPPhiLUfUkwagzJfQeYmxV83UuTi7LGK bnFxZPRyxdKKF8biohgj2QYnte4marh0vuhikQBnV2nJBrbv7K1r9KGnpIausXd+ 8KwYdK7s4LcttUe9jLRccwM49SmbgyKIkC9mCjwnCZscuBY4kqDKAdFU4Z6MF+M8 SI8MUUzF22L0ED6lZa8iC4u1CClO40Y4b839AsYg8+Eqr9ut7evH6kh0d6HcfOo8 vOaSMUQo/itBWfEeOLbfmp4DKcc7THra02a1URK4ky+6JOT0QH3M01d+K3kTT+sL AnBsqucEy20E5OORPo9tWdMi+J0ixzh1 -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:12 2025 by rpki-client