$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: Oy89eMOCvwexsoxl9Iy+QfMBpy0Hrr1ec9YlhEUsK2M= Subject key identifier: 31:71:BD:79:DB:6B:32:A6:EA:F7:97:80:5C:84:49:12:76:82:5A:E9 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 5A Signing time: Mon 03 Nov 2025 07:08:41 +0000 Manifest this update: Mon 03 Nov 2025 07:08:40 +0000 Manifest next update: Mon 10 Nov 2025 07:08:40 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: RFlXbcOFC0KAJuxDFyH+3/U1t8DT3ni2WUETXgD22QU=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Nov 3 07:08:40 2025 GMT Not After : Nov 10 07:08:40 2025 GMT Subject: CN=690854f8-608a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:d0:98:74:95:42:62:ec:4c:74:44:00:46: 77:81:3b:86:f9:9f:70:61:fb:78:3a:21:92:b0:a8: d8:56:18:47:3a:34:bd:32:54:a4:93:1e:74:57:42: ca:78:d9:e8:4d:d9:a7:3e:aa:a9:28:67:b5:9d:a4: 15:b9:6e:88:0e:4d:ce:f9:5f:65:7b:23:72:17:a9: 87:4c:c3:fc:c2:60:8e:b0:42:a8:80:57:f2:ed:eb: 1d:5a:66:01:55:bb:f8:46:d1:8e:a5:9c:01:88:42: 59:23:89:a5:56:f6:12:fa:dd:87:e9:74:10:94:82: 9b:fa:ae:6c:30:ce:1e:3d:29:42:51:31:d9:e6:77: 59:26:1f:5d:e6:2d:4e:97:e1:43:5c:45:fc:13:0a: e3:a1:84:73:19:27:3d:ed:f5:8c:c5:01:f3:81:da: 18:65:1c:ba:01:9f:24:a7:46:d6:a5:55:46:f5:6e: e7:2f:fe:32:0e:4f:bb:76:fd:8d:01:36:52:1b:b1: d8:bc:76:28:21:d5:ff:4a:83:cb:1a:7b:56:d6:db: 84:8e:3c:c5:a9:37:fb:64:ad:cd:51:65:b1:41:47: 17:48:f0:c8:fe:29:b1:ff:ef:30:6f:3e:06:3e:6e: ca:68:2f:4d:e7:07:50:c7:5b:57:25:07:54:cf:8d: 83:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:71:BD:79:DB:6B:32:A6:EA:F7:97:80:5C:84:49:12:76:82:5A:E9 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0c:ae:f5:4e:16:76:0e:8c:ae:0d:0f:76:34:53:48:11:4b: c9:12:3e:d8:9b:c0:35:07:60:ff:04:14:4e:35:5b:e6:3f:40: 80:a2:6d:2b:83:d4:eb:59:65:d8:34:b3:2d:8c:21:17:af:e0: 3b:4d:01:e7:07:aa:44:ea:b2:a2:df:df:e2:da:c2:1b:8e:7c: d9:f2:52:00:32:91:78:93:12:a1:b1:d6:d3:26:4c:85:0d:e6: b3:e2:64:af:b3:94:cf:0c:75:c0:c6:68:27:ed:e2:f0:38:f0: b8:3e:16:7e:76:50:8a:3a:70:30:d0:31:59:9d:98:b8:d3:8d: 8e:73:bc:61:54:df:13:2e:89:18:1d:9b:5a:7c:ca:e1:81:9c: ed:4c:f7:ab:0b:76:aa:88:cb:ae:9e:b4:19:59:4f:f6:b2:a8: 57:29:34:62:41:d3:bd:c5:13:c1:fa:20:7a:9a:8b:c1:b9:63: a7:2a:bd:8c:d2:eb:93:22:4f:85:d6:73:66:34:8e:ea:09:98: fc:44:e7:e8:1b:0e:4d:77:20:ca:d5:0f:f9:bd:4a:78:c1:1b: a5:ca:51:e1:99:9e:f6:63:66:46:ad:18:b3:5e:5e:12:0e:a9: ea:73:03:c7:4d:4e:20:06:97:02:a6:8a:8e:bc:a4:96:a6:94: cf:30:3e:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTExMDMwNzA4NDBaFw0yNTExMTAwNzA4NDBaMBgxFjAUBgNV BAMTDTY5MDg1NGY4LTYwOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNiNCYdJVCYuxMdEQARneBO4b5n3Bh+3g6IZKwqNhWGEc6NL0yVKSTHnRXQsp4 2ehN2ac+qqkoZ7WdpBW5bogOTc75X2V7I3IXqYdMw/zCYI6wQqiAV/Lt6x1aZgFV u/hG0Y6lnAGIQlkjiaVW9hL63YfpdBCUgpv6rmwwzh49KUJRMdnmd1kmH13mLU6X 4UNcRfwTCuOhhHMZJz3t9YzFAfOB2hhlHLoBnySnRtalVUb1bucv/jIOT7t2/Y0B NlIbsdi8digh1f9Kg8sae1bW24SOPMWpN/tkrc1RZbFBRxdI8Mj+KbH/7zBvPgY+ bspoL03nB1DHW1clB1TPjYNvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMXG9edtr Mqbq95eAXIRJEnaCWukwHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHgMrvVOFnYOjK4ND3Y0U0gRS8kSPtibwDUHYP8EFE41W+Y/QICibSuD 1OtZZdg0sy2MIRev4DtNAecHqkTqsqLf3+LawhuOfNnyUgAykXiTEqGx1tMmTIUN 5rPiZK+zlM8MdcDGaCft4vA48Lg+Fn52UIo6cDDQMVmdmLjTjY5zvGFU3xMuiRgd m1p8yuGBnO1M96sLdqqIy66etBlZT/ayqFcpNGJB073FE8H6IHqai8G5Y6cqvYzS 65MiT4XWc2Y0juoJmPxE5+gbDk13IMrVD/m9SnjBG6XKUeGZnvZjZkatGLNeXhIO qepzA8dNTiAGlwKmio68pJamlM8wPmQ= -----END CERTIFICATE-----Generated at Wed Nov 5 06:33:45 2025 by rpki-client