$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: hcKi0j/uhjnh+3Qjso2yymwrQmj0KmcbHKFTv7dg6Nc= Subject key identifier: F5:07:8E:E9:42:2A:39:51:89:03:48:7A:12:A1:A7:3C:C6:DC:35:45 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 11E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 11D3 Signing time: Sun 02 Nov 2025 17:12:44 +0000 Manifest this update: Sun 02 Nov 2025 17:12:43 +0000 Manifest next update: Sun 09 Nov 2025 17:12:43 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: 2QvRUtNFAWKy7riZdgoaz/Wk1xSjdH7qXVF+Kn+kwKA=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4576 (0x11e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Nov 2 17:12:43 2025 GMT Not After : Nov 9 17:12:43 2025 GMT Subject: CN=6907910c-9e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:23:9d:15:3d:64:e5:d4:9c:a9:04:14:b9: fc:34:c8:78:22:27:3b:57:35:ad:03:44:1e:0c:df: 2d:29:92:22:38:60:42:47:06:26:cb:9e:ca:ce:17: 96:b3:39:68:4b:51:f6:83:7a:a9:7c:e5:e1:87:b4: 2c:67:81:8d:78:24:25:64:c9:cb:f6:52:53:69:f4: d1:2f:24:f8:fd:b3:b0:e2:62:aa:cc:03:dc:2c:82: 0e:68:73:3e:dd:24:a5:1f:09:8a:e3:cc:ed:1c:db: d1:0e:66:01:b2:c7:e4:4b:5c:66:f2:b0:9b:1e:68: 2b:89:b8:5e:82:b4:54:9a:bd:00:ae:3a:a6:dd:dd: dd:c9:da:38:72:a0:8c:1c:38:00:0a:8c:db:57:cd: bc:45:e8:82:37:0f:02:dd:93:4c:2a:a9:2e:8d:9b: c0:b0:d7:ca:b7:26:bd:d5:7d:85:29:c1:db:df:ed: 9f:e6:fa:8f:ee:a7:77:27:81:2a:6f:1a:5c:b6:b2: 04:bc:19:fd:d3:be:d7:a7:98:78:ec:3a:08:7b:84: 11:64:fe:f3:05:a3:71:c6:d7:2f:6b:1a:e4:a9:8a: 47:fd:2c:8c:58:14:b8:83:6f:98:d7:67:a3:52:27: bb:b0:2f:23:44:35:90:ee:2e:2b:9a:35:6a:67:29: c8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:07:8E:E9:42:2A:39:51:89:03:48:7A:12:A1:A7:3C:C6:DC:35:45 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:36:b6:c4:7e:c9:41:28:7a:a2:5f:8b:7b:85:ba:22:39:d2: c5:8b:bd:cd:bd:b4:d2:7f:3c:c7:97:3c:2a:d1:98:a9:16:97: 9c:d2:b6:b7:23:ca:94:34:35:fc:15:11:b5:59:bb:29:c6:26: e9:1b:a2:39:51:2a:ce:2a:a7:d9:fa:d5:7f:b2:c3:2c:89:37: fd:24:f2:93:36:e2:73:03:a7:60:29:4b:fe:3b:d2:12:8f:ad: d2:e2:e0:b2:59:6e:7c:55:da:17:8d:70:6f:a2:f4:a6:e1:c0: 16:16:5a:ad:48:aa:33:44:8c:4d:2d:f5:bd:36:d7:c0:7c:4a: a9:35:56:14:2f:78:cd:47:ed:fd:b7:9a:d8:34:6c:89:ac:31: dd:3b:0f:6a:f3:8f:c2:79:83:2b:8e:32:20:45:36:c6:12:a7: e9:06:13:97:70:95:42:31:0f:70:fd:01:ef:d6:e1:fd:c4:f1: 3e:a3:af:c3:0f:b4:45:23:cb:91:3d:f7:13:a3:ec:cc:5f:2e: 89:4a:43:51:23:09:41:b5:f1:2e:7a:d1:cd:b9:6e:c7:f4:36: 3c:5f:ef:68:2e:1d:73:76:4a:7a:24:79:ae:ac:90:0f:64:50: 45:81:79:8b:47:2d:06:b1:45:6d:f9:b6:3f:22:41:f0:8f:0d: fd:68:c1:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUxMTAyMTcxMjQzWhcNMjUxMTA5MTcxMjQzWjAYMRYwFAYD VQQDEw02OTA3OTEwYy05ZTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7UjnRU9ZOXUnKkEFLn8NMh4Iic7VzWtA0QeDN8tKZIiOGBCRwYmy57KzheW szloS1H2g3qpfOXhh7QsZ4GNeCQlZMnL9lJTafTRLyT4/bOw4mKqzAPcLIIOaHM+ 3SSlHwmK48ztHNvRDmYBssfkS1xm8rCbHmgribhegrRUmr0Arjqm3d3dydo4cqCM HDgACozbV828ReiCNw8C3ZNMKqkujZvAsNfKtya91X2FKcHb3+2f5vqP7qd3J4Eq bxpctrIEvBn9077Xp5h47DoIe4QRZP7zBaNxxtcvaxrkqYpH/SyMWBS4g2+Y12ej Uie7sC8jRDWQ7i4rmjVqZynIzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUHjulC KjlRiQNIehKhpzzG3DVFMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfNrbEfslBKHqiX4t7hboiOdLFi73NvbTSfzzHlzwq0ZipFpec0ra3 I8qUNDX8FRG1WbspxibpG6I5USrOKqfZ+tV/ssMsiTf9JPKTNuJzA6dgKUv+O9IS j63S4uCyWW58VdoXjXBvovSm4cAWFlqtSKozRIxNLfW9NtfAfEqpNVYUL3jNR+39 t5rYNGyJrDHdOw9q84/CeYMrjjIgRTbGEqfpBhOXcJVCMQ9w/QHv1uH9xPE+o6/D D7RFI8uRPfcTo+zMXy6JSkNRIwlBtfEuetHNuW7H9DY8X+9oLh1zdkp6JHmurJAP ZFBFgXmLRy0GsUVt+bY/IkHwjw39aMGp -----END CERTIFICATE-----Generated at Tue Nov 4 12:19:37 2025 by rpki-client