$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft File: lXRSk8iKJybhClfVj0LMMWm3ySI.mft (raw, json) Hash identifier: 1O+IMPjxuXmiMt6Y5Nbk2VPUBWzlLBKechatxzMIaT8= Subject key identifier: 9A:D9:BC:59:5C:D8:D8:60:D6:60:63:CE:23:7A:81:47:BB:DD:DD:D1 Authority key identifier: 95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 Certificate issuer: /CN=A91144C9/serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft Manifest number: 77 Signing time: Mon 27 Oct 2025 09:21:41 +0000 Manifest this update: Mon 27 Oct 2025 09:21:41 +0000 Manifest next update: Mon 03 Nov 2025 09:21:41 +0000 Files and hashes: 1: lXRSk8iKJybhClfVj0LMMWm3ySI.crl (hash: RpqWoE3eQ+QwlqFeKVjQGJLuiYZW302W5/eEhBU4GLw=) 2: 98DD71780ECC11F0B8E48170C4F9AE02.roa (hash: Hq759PuHcjxrqDO6XDqBKqYrfjX30gMufng1UMG6yPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Validity Not Before: Oct 27 09:21:41 2025 GMT Not After : Nov 3 09:21:41 2025 GMT Subject: CN=68ff39a5-18d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:30:bc:22:4a:29:8f:cc:3c:be:ad:00:48: dc:4c:ea:25:8e:8d:69:e9:d6:1e:2e:43:9a:45:f4: 9b:84:85:8b:34:e2:92:af:4d:0e:42:37:fe:8c:ef: 65:4a:5f:5e:21:1b:48:3e:81:c2:6c:d3:86:d3:67: dc:8f:57:bc:cf:7c:aa:ed:af:37:c0:39:4e:be:d3: be:cc:a9:51:08:e7:06:da:6b:66:2e:35:eb:54:4f: ea:2d:f0:85:32:26:6f:14:3b:be:27:a7:cd:13:37: ba:c9:a1:6a:c7:64:6f:a6:2c:de:6b:17:d1:68:b6: b8:9a:bf:78:f6:72:31:71:f3:24:a1:ee:45:2d:f1: 2e:22:ba:2a:f9:90:a0:04:12:11:02:3a:c3:48:bd: b8:02:92:bc:d4:ab:c1:1d:30:d0:47:15:06:bc:85: 62:99:4a:9c:7b:3b:33:15:f9:59:b0:43:e4:48:d5: fb:6f:05:a6:61:e0:d4:83:bb:90:73:39:91:26:cb: 20:22:b6:28:a4:23:82:39:9a:47:f2:ac:b7:f3:98: 29:7d:44:44:40:0c:67:01:ae:b5:eb:6e:57:6b:80: 04:34:d1:6a:b1:21:02:68:6a:76:ed:fb:94:3f:f5: e8:af:af:45:12:78:71:43:3c:a3:cc:4c:1f:88:55: bd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D9:BC:59:5C:D8:D8:60:D6:60:63:CE:23:7A:81:47:BB:DD:DD:D1 X509v3 Authority Key Identifier: keyid:95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:1f:b3:bb:40:af:6f:db:c7:f8:e4:ad:dd:c1:0b:69:13:e7: 81:9b:e7:8e:9e:f2:a1:4d:60:e6:7c:45:15:58:c4:8f:74:62: 66:47:0d:7b:be:42:2a:15:fb:be:61:bf:a5:3c:58:aa:8f:b7: 71:86:44:08:62:f9:0a:21:7e:6f:d7:d1:97:3f:e6:53:d0:5f: 3c:30:70:e7:bf:5b:24:19:98:a1:ee:7b:35:ed:02:16:ea:54: 30:22:04:9b:2a:e0:8d:df:ba:bc:16:6e:25:47:59:38:fd:7c: 14:77:d9:03:32:18:d9:08:b2:3d:3f:b2:68:b5:48:40:dc:29: ff:f7:77:c2:c1:8c:8c:1f:c2:81:34:77:54:1c:2e:fc:ec:a9: 13:f0:a3:b3:7c:cc:ab:f5:bc:3f:63:42:e9:6c:ba:f3:0b:d7: 4f:e6:a9:ed:2b:e4:14:37:a4:45:cd:a1:a7:2a:d1:bd:1b:18: 6f:b5:91:2b:02:d7:0d:17:42:02:83:90:09:6b:16:76:b1:b6: 6a:0b:08:78:1a:8c:59:54:d4:90:ef:50:3d:6f:5b:e5:e0:d2: ec:1c:8d:ef:46:ef:00:93:df:b9:d6:6d:65:b3:c6:d8:43:8e: 4d:f3:cb:b3:0e:56:a0:c0:2e:00:6b:cd:9f:c8:3d:73:04:03: 12:b9:1b:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKDk1NzQ1MjkzQzg4QTI3MjZFMTBBNTdENThGNDJDQzMx NjlCN0M5MjIwHhcNMjUxMDI3MDkyMTQxWhcNMjUxMTAzMDkyMTQxWjAYMRYwFAYD VQQDEw02OGZmMzlhNS0xOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSMwvCJKKY/MPL6tAEjcTOoljo1p6dYeLkOaRfSbhIWLNOKSr00OQjf+jO9l Sl9eIRtIPoHCbNOG02fcj1e8z3yq7a83wDlOvtO+zKlRCOcG2mtmLjXrVE/qLfCF MiZvFDu+J6fNEze6yaFqx2RvpizeaxfRaLa4mr949nIxcfMkoe5FLfEuIroq+ZCg BBIRAjrDSL24ApK81KvBHTDQRxUGvIVimUqcezszFflZsEPkSNX7bwWmYeDUg7uQ czmRJssgIrYopCOCOZpH8qy385gpfUREQAxnAa61625Xa4AENNFqsSECaGp27fuU P/Xor69FEnhxQzyjzEwfiFW9IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrZvFlc 2Nhg1mBjziN6gUe73d3RMB8GA1UdIwQYMBaAFJV0UpPIiicm4QpX1Y9CzDFpt8ki MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS84NDJGOTg5NDBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9sWFJTazhpS0p5YmhDbGZWajBMTU1XbTN5 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYUlNrOGlLSnliaENsZlZqMExNTVdtM3lTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRDOS84NDJGOTg5NDBFQzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9sWFJTazhpS0p5 YmhDbGZWajBMTU1XbTN5U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9H7O7QK9v28f45K3dwQtpE+eBm+eOnvKhTWDmfEUVWMSPdGJmRw17 vkIqFfu+Yb+lPFiqj7dxhkQIYvkKIX5v19GXP+ZT0F88MHDnv1skGZih7ns17QIW 6lQwIgSbKuCN37q8Fm4lR1k4/XwUd9kDMhjZCLI9P7JotUhA3Cn/93fCwYyMH8KB NHdUHC787KkT8KOzfMyr9bw/Y0LpbLrzC9dP5qntK+QUN6RFzaGnKtG9GxhvtZEr AtcNF0ICg5AJaxZ2sbZqCwh4GoxZVNSQ71A9b1vl4NLsHI3vRu8Ak9+51m1ls8bY Q45N88uzDlagwC4Aa82fyD1zBAMSuRsR -----END CERTIFICATE-----Generated at Mon Oct 27 11:58:54 2025 by rpki-client