$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: qqhiR0L2f1v0PqHTzdI5XUNalnYe1pDrvdzX9KOEpCM= Subject key identifier: 8A:E7:91:00:DA:C7:DC:B4:8E:DC:33:95:80:20:F7:EA:28:A1:42:8A Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 0191 Signing time: Mon 03 Nov 2025 03:26:52 +0000 Manifest this update: Mon 03 Nov 2025 03:26:51 +0000 Manifest next update: Mon 10 Nov 2025 03:26:51 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: gupoAr9iukL4yw/6uG6ZSnG4P8qjqIpaWMHMF9ORVTU=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Nov 3 03:26:51 2025 GMT Not After : Nov 10 03:26:51 2025 GMT Subject: CN=690820fc-7eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:92:c3:22:52:2d:88:50:c2:95:47:65:5e:3f: 73:51:69:64:92:86:82:8e:73:bb:d5:0b:c3:82:36: 32:58:72:04:26:fd:39:ed:ea:cc:54:bc:c4:61:18: e7:77:62:06:6a:bf:89:00:03:10:a6:7d:05:71:43: a0:d7:81:ba:27:54:d6:6e:ff:75:9a:41:f9:a2:51: 49:eb:76:f1:ac:dc:79:56:91:e9:e5:3a:2e:e3:ae: 95:9b:64:18:b5:5c:c6:49:44:5b:0f:ec:d1:fc:e9: c9:9a:ac:f4:7f:0c:f5:f3:8d:22:7b:b5:cf:4e:9a: 9f:d6:66:16:8f:5c:ab:b8:ca:ce:b2:8b:77:90:54: 9d:ba:de:da:02:e0:d4:fa:be:fc:65:8a:45:9d:74: c5:a2:da:66:c3:4f:6d:57:02:11:29:42:2e:1c:ac: 1e:fc:0e:b2:99:8d:8c:36:37:32:3a:10:ab:3c:79: 13:51:95:fd:1b:b5:c8:33:77:8e:d6:85:c6:e4:b4: 44:18:eb:43:34:6b:61:1a:b1:57:63:5d:b1:57:2f: 65:2c:4c:6d:50:21:a2:3e:38:fc:09:cc:40:83:23: f0:12:f0:87:b8:3c:ea:d6:e4:b1:1d:e7:2c:80:38: cb:47:93:4f:3a:89:56:fd:9b:29:fd:6a:cf:c1:2e: cf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E7:91:00:DA:C7:DC:B4:8E:DC:33:95:80:20:F7:EA:28:A1:42:8A X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:98:7f:4c:ee:b6:ee:60:da:dc:29:71:4e:5b:e5:14:96:f9: 47:18:33:3f:62:28:d2:f7:11:52:56:97:db:15:aa:8d:62:46: 6e:78:88:cd:9a:15:2c:d4:8f:32:40:15:77:ea:14:d2:03:66: 65:87:29:7d:bd:23:e8:c6:b8:71:f3:59:70:a9:43:b7:e5:e2: 87:3c:dc:6b:33:30:fd:41:3d:ac:90:f9:2c:4b:a0:07:5d:d0: e5:a8:99:c9:6f:7a:a2:b2:34:81:10:b3:7c:f5:c2:35:10:73: 2b:b0:5b:01:f3:99:13:c9:68:47:48:39:7d:99:42:97:33:10: 54:ed:fa:21:0e:1e:40:16:c3:4a:83:4c:36:6c:a9:39:0b:5b: b8:78:cb:11:46:a8:45:a0:bb:95:30:17:85:68:d5:b5:fd:03: 14:8d:69:f0:91:4a:a8:47:51:42:45:21:65:94:65:a0:f0:be: 22:80:96:e4:8c:0b:92:7f:28:d3:a5:c7:5d:f4:02:ea:00:71: a2:23:cf:70:39:1f:0e:97:50:1a:79:c7:1e:dc:56:c7:60:5c: b7:d7:a0:3b:1c:1e:bb:a2:70:99:3a:0a:6d:04:15:eb:b7:da: 97:40:fe:f3:dc:c0:0b:4d:f9:33:bc:26:f5:a6:52:f7:6d:96: ed:77:b4:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUxMTAzMDMyNjUxWhcNMjUxMTEwMDMyNjUxWjAYMRYwFAYD VQQDEw02OTA4MjBmYy03ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZLDIlItiFDClUdlXj9zUWlkkoaCjnO71QvDgjYyWHIEJv057erMVLzEYRjn d2IGar+JAAMQpn0FcUOg14G6J1TWbv91mkH5olFJ63bxrNx5VpHp5Tou466Vm2QY tVzGSURbD+zR/OnJmqz0fwz1840ie7XPTpqf1mYWj1yruMrOsot3kFSdut7aAuDU +r78ZYpFnXTFotpmw09tVwIRKUIuHKwe/A6ymY2MNjcyOhCrPHkTUZX9G7XIM3eO 1oXG5LREGOtDNGthGrFXY12xVy9lLExtUCGiPjj8CcxAgyPwEvCHuDzq1uSxHecs gDjLR5NPOolW/Zsp/WrPwS7PqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrnkQDa x9y0jtwzlYAg9+oooUKKMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBamH9M7rbuYNrcKXFOW+UUlvlHGDM/YijS9xFSVpfbFaqNYkZueIjN mhUs1I8yQBV36hTSA2Zlhyl9vSPoxrhx81lwqUO35eKHPNxrMzD9QT2skPksS6AH XdDlqJnJb3qisjSBELN89cI1EHMrsFsB85kTyWhHSDl9mUKXMxBU7fohDh5AFsNK g0w2bKk5C1u4eMsRRqhFoLuVMBeFaNW1/QMUjWnwkUqoR1FCRSFllGWg8L4igJbk jAuSfyjTpcdd9ALqAHGiI89wOR8Ol1Aaecce3FbHYFy316A7HB67onCZOgptBBXr t9qXQP7z3MALTfkzvCb1plL3bZbtd7QR -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:17 2025 by rpki-client