$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft File: lGqi80z6-eS9bjRboJqd6bnC0U0.mft (raw, json) Hash identifier: R4JKdHZiDUhKpwhdlkRAWQTB9SIl7tWckUPsW0ZAj04= Subject key identifier: 1C:5E:B1:5D:81:D6:92:E7:56:49:22:2E:6C:BB:23:E2:46:11:91:80 Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0EAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft Manifest number: 0E9C Signing time: Sun 02 Nov 2025 17:42:40 +0000 Manifest this update: Sun 02 Nov 2025 17:42:39 +0000 Manifest next update: Sun 09 Nov 2025 17:42:39 +0000 Files and hashes: 1: lGqi80z6-eS9bjRboJqd6bnC0U0.crl (hash: 6sRL/uqST2qAMpR5grmCidN/+p5wGNf5Q70TBNfB0RY=) 2: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (hash: J9DgdD9cL2JfNJGX2KpEbeL9xCo98zH1CjpWmw6WEyg=) 3: DECBB040985611ECBE7ED328C4F9AE02.roa (hash: fVjIBFUgnQxd9qxxnDI3HntLIaXeeQgbbHy+hbpb2zg=) 4: DF5D49F6985611ECBE7ED328C4F9AE02.roa (hash: oySlLPz0K/UmHCqFTFPFIY5DaigueFo/oV/JPUia/uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3757 (0xead) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Nov 2 17:42:39 2025 GMT Not After : Nov 9 17:42:39 2025 GMT Subject: CN=6907980f-7aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:f8:18:bb:80:ee:5a:08:57:54:64:ca:9a: c9:2f:62:df:cd:07:6f:c4:44:4a:f4:9e:e1:de:a0: eb:e3:c1:72:b7:7c:24:3e:d6:d4:45:72:c0:84:80: f7:25:dd:8e:d7:6d:18:db:7d:4d:95:13:c6:30:8f: 24:ac:b6:cb:10:fb:9c:0b:96:fd:dd:4e:6b:5b:da: bb:51:81:73:7e:93:15:c0:b8:9b:f4:f9:c8:a2:0d: 4e:c0:47:41:78:da:11:11:2a:94:79:84:3f:e8:4f: 7a:1d:df:f8:b6:8e:44:1a:7f:41:f4:a7:aa:20:05: e0:00:77:57:57:87:b5:3f:3d:ee:3c:f0:09:e0:2a: 27:d6:98:df:e0:18:27:1a:44:bb:7d:59:6d:53:7a: 0a:ca:36:11:a7:c1:fb:9e:ec:d4:73:29:cd:f0:f3: 20:ed:09:34:53:d3:e0:81:35:7a:a6:83:bb:8f:7f: 4f:12:8d:13:8f:70:13:64:0a:d3:20:42:0b:dd:6a: 25:40:e2:43:9c:55:02:c0:81:85:50:33:0a:22:3a: db:97:b0:d0:3e:0b:20:07:7e:eb:13:13:5f:d3:13: f5:56:34:0a:87:bb:3d:2c:19:8e:e9:39:5b:c6:d1: 61:3e:60:21:05:0a:2f:81:1a:80:bf:b3:35:de:b7: 3d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:5E:B1:5D:81:D6:92:E7:56:49:22:2E:6C:BB:23:E2:46:11:91:80 X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8a:2f:ba:aa:9b:63:4c:68:95:9b:7b:5e:ff:49:f5:94:68: 2e:32:04:fd:58:5b:38:2c:70:b1:09:61:03:03:69:68:e6:bb: b6:34:46:d1:70:c1:3f:a0:2a:dc:0a:e3:44:7a:f1:ad:f5:58: 81:de:79:d8:3b:c8:d5:f7:62:31:cc:3d:85:b7:a3:80:40:c5: ff:f1:7b:05:cc:0e:20:97:f6:30:4c:12:4f:f8:f4:15:8a:e9: 5e:ce:d9:d8:29:49:d9:63:34:80:5d:90:81:f3:cc:36:88:22: 53:53:1e:89:03:bf:bb:0b:55:ce:7a:e8:8c:7e:d3:99:02:04: 7f:66:5d:96:d1:1f:44:8a:a6:df:a8:04:be:8a:05:c4:a3:f8: d5:ed:a6:7d:87:2d:a6:ac:74:09:cd:7a:19:cf:2f:a3:ec:2d: b6:98:93:97:5a:9a:c1:69:da:fb:1c:c7:c2:e8:64:7e:ed:91: 0b:93:4f:2f:fc:e3:31:3f:06:91:68:13:fc:04:f1:07:22:3e: 13:64:40:fe:ed:90:79:5b:8e:9d:09:b1:7d:ef:ae:a9:3e:b5: 51:34:aa:a1:8f:85:e3:fa:ff:b2:bb:e1:c7:ef:f9:ad:69:d1: b1:81:05:56:d8:99:90:f7:74:40:72:51:2d:c1:6b:9e:b1:ae: c6:ae:e0:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjUxMTAyMTc0MjM5WhcNMjUxMTA5MTc0MjM5WjAYMRYwFAYD VQQDEw02OTA3OTgwZi03YWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ34GLuA7loIV1RkyprJL2LfzQdvxERK9J7h3qDr48Fyt3wkPtbURXLAhID3 Jd2O120Y231NlRPGMI8krLbLEPucC5b93U5rW9q7UYFzfpMVwLib9PnIog1OwEdB eNoRESqUeYQ/6E96Hd/4to5EGn9B9KeqIAXgAHdXV4e1Pz3uPPAJ4Con1pjf4Bgn GkS7fVltU3oKyjYRp8H7nuzUcynN8PMg7Qk0U9PggTV6poO7j39PEo0Tj3ATZArT IEIL3WolQOJDnFUCwIGFUDMKIjrbl7DQPgsgB37rExNf0xP1VjQKh7s9LBmO6Tlb xtFhPmAhBQovgRqAv7M13rc99QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxesV2B 1pLnVkkiLmy7I+JGEZGAMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE2OS80MEUxRkM5QzlFQjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1l UzlialJib0pxZDZibkMwVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXii+6qptjTGiVm3te/0n1lGguMgT9WFs4LHCxCWEDA2lo5ru2NEbR cME/oCrcCuNEevGt9ViB3nnYO8jV92IxzD2Ft6OAQMX/8XsFzA4gl/YwTBJP+PQV iuleztnYKUnZYzSAXZCB88w2iCJTUx6JA7+7C1XOeuiMftOZAgR/Zl2W0R9Eiqbf qAS+igXEo/jV7aZ9hy2mrHQJzXoZzy+j7C22mJOXWprBadr7HMfC6GR+7ZELk08v /OMxPwaRaBP8BPEHIj4TZED+7ZB5W46dCbF9766pPrVRNKqhj4Xj+v+yu+HH7/mt adGxgQVW2JmQ93RAclEtwWuesa7GruCx -----END CERTIFICATE-----Generated at Tue Nov 4 08:16:01 2025 by rpki-client