$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: 9iTGhkDIRqwYAThjGzvxaCiWV5EF+jxUEgwH5hbVa8A= Subject key identifier: 43:A6:45:AD:A4:C8:97:EA:6B:4B:12:67:A2:20:D1:DC:70:FD:C2:A0 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0428 Signing time: Wed 05 Nov 2025 00:26:56 +0000 Manifest this update: Wed 05 Nov 2025 00:26:55 +0000 Manifest next update: Wed 12 Nov 2025 00:26:55 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: ZKf4DQ1qEVQ1HucbjcYmzFANTTxazYk3TgmmtZmNCyE=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Nov 5 00:26:55 2025 GMT Not After : Nov 12 00:26:55 2025 GMT Subject: CN=690a99d0-cc52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:50:21:b6:f9:be:75:5e:fa:76:93:9d:d4:8f: d5:2c:1f:90:c6:e1:16:00:25:92:3c:a2:70:95:47: 89:bd:45:6c:29:d5:24:d3:b6:b4:bd:5e:ad:7e:54: 86:81:c7:39:73:69:61:9d:f3:46:70:31:96:b3:8a: 47:5c:39:7b:d8:a6:e8:34:7e:01:bf:4c:b5:ae:d3: 89:9d:18:46:28:8b:0e:b5:49:dd:80:70:71:b9:e7: 59:d5:2a:6f:0e:56:a6:46:57:f7:a0:e7:8b:49:48: ea:22:29:e1:1e:d9:2a:fb:a8:ed:fc:c7:e5:1a:33: 79:5e:6c:46:ca:e0:e3:de:57:09:a8:3e:33:86:40: 76:88:13:a0:f4:ae:bf:28:53:d9:16:97:de:74:ed: 09:13:a4:f4:a1:f5:53:cf:9e:20:de:7c:ad:1f:3e: 39:87:9f:88:1d:92:87:65:01:73:ec:5d:d4:33:50: 8b:d6:d5:a7:4d:40:27:d9:26:e5:80:6d:54:d9:54: 61:24:a5:d1:b4:da:69:6a:cc:c3:7d:b0:c7:24:48: 2f:59:3e:fb:4d:02:02:98:ab:db:d6:54:f2:03:ec: 52:7e:88:33:d5:b4:d8:60:bf:1d:6e:ff:ae:bd:04: a1:79:36:1c:fa:6f:4d:d9:db:af:33:10:af:46:e8: 6d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A6:45:AD:A4:C8:97:EA:6B:4B:12:67:A2:20:D1:DC:70:FD:C2:A0 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:d3:d7:f9:6b:26:b9:2a:d4:a7:06:71:79:e6:f6:c9:de:2c: 6e:77:0d:6b:b8:42:7e:68:36:59:a5:8c:af:37:6f:6c:5e:12: 8d:bd:b7:6e:39:01:ff:6b:bd:7b:82:bc:c9:53:96:05:50:42: f0:b4:e7:37:ac:8e:48:8c:23:7c:19:17:f2:a2:c4:25:b2:52: a0:81:79:ea:36:f0:1e:f5:ee:bf:62:7e:c8:87:e9:92:2e:10: 7f:1f:73:4b:49:01:80:12:3a:01:a7:9b:87:a9:df:fc:f0:dc: 8f:d3:32:d2:3f:62:2b:f5:90:cb:ca:a3:00:46:8d:47:49:27: 45:67:33:fe:fe:e8:03:30:ba:95:66:d5:84:9a:c2:86:49:90: 7e:d5:e7:15:3f:78:21:45:2e:da:e8:d1:10:60:1b:91:7b:29: e8:df:12:c2:ba:a1:7a:d1:5d:38:6f:c5:60:14:92:4b:b0:a8: 56:76:d4:e6:44:5c:83:b8:8e:c1:eb:82:1f:e4:8d:b3:be:00: fe:69:22:da:d2:f8:c5:d3:f3:59:43:2c:6a:db:f8:a8:d8:9d: 95:13:1a:ea:dd:e6:f4:72:cd:3b:3b:7f:43:e2:ae:1a:34:cb: fa:f2:e9:29:16:20:a3:9d:b1:1e:3b:63:ae:b7:d5:9d:7e:88: 5f:53:0d:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUxMTA1MDAyNjU1WhcNMjUxMTEyMDAyNjU1WjAYMRYwFAYD VQQDEw02OTBhOTlkMC1jYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+lAhtvm+dV76dpOd1I/VLB+QxuEWACWSPKJwlUeJvUVsKdUk07a0vV6tflSG gcc5c2lhnfNGcDGWs4pHXDl72KboNH4Bv0y1rtOJnRhGKIsOtUndgHBxuedZ1Spv DlamRlf3oOeLSUjqIinhHtkq+6jt/MflGjN5XmxGyuDj3lcJqD4zhkB2iBOg9K6/ KFPZFpfedO0JE6T0ofVTz54g3nytHz45h5+IHZKHZQFz7F3UM1CL1tWnTUAn2Sbl gG1U2VRhJKXRtNppaszDfbDHJEgvWT77TQICmKvb1lTyA+xSfogz1bTYYL8dbv+u vQSheTYc+m9N2duvMxCvRuhteQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOmRa2k yJfqa0sSZ6Ig0dxw/cKgMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK09f5aya5KtSnBnF55vbJ3ixudw1ruEJ+aDZZpYyvN29sXhKNvbdu OQH/a717grzJU5YFUELwtOc3rI5IjCN8GRfyosQlslKggXnqNvAe9e6/Yn7Ih+mS LhB/H3NLSQGAEjoBp5uHqd/88NyP0zLSP2Ir9ZDLyqMARo1HSSdFZzP+/ugDMLqV ZtWEmsKGSZB+1ecVP3ghRS7a6NEQYBuReyno3xLCuqF60V04b8VgFJJLsKhWdtTm RFyDuI7B64If5I2zvgD+aSLa0vjF0/NZQyxq2/io2J2VExrq3eb0cs07O39D4q4a NMv68ukpFiCjnbEeO2Out9WdfohfUw3a -----END CERTIFICATE-----Generated at Wed Nov 5 14:41:34 2025 by rpki-client