$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: M9SU9SPehOvomsWdm2BC06/dkxDBtv7E0i7SuAJZY5Q= Subject key identifier: 67:BC:75:FC:01:0B:F6:F3:A8:17:90:0A:27:07:BB:A4:44:62:B2:5C Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 34D4 Signing time: Sun 02 Nov 2025 14:28:11 +0000 Manifest this update: Sun 02 Nov 2025 14:28:11 +0000 Manifest next update: Sun 09 Nov 2025 14:28:11 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: HX6D9FYvo4AaF7EfisydBgD7bpfw/DFYQFGOWo3VeLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8, serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: Nov 2 14:28:11 2025 GMT Not After : Nov 9 14:28:11 2025 GMT Subject: CN=69076a7b-57c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:46:8d:c2:a3:f3:31:08:ea:f5:13:7e:00:19: 49:e9:05:c8:d5:0e:de:1e:a5:34:b3:2e:16:ac:7b: e6:d3:b0:c6:7c:58:40:80:ad:85:9f:97:90:25:58: c5:68:15:45:1a:f9:68:92:aa:4b:0e:0a:f4:31:dd: a9:08:43:f0:18:f3:5e:f8:66:7d:f1:94:b9:52:ae: 7b:cf:ab:e4:53:c6:27:6c:33:13:35:c7:9f:91:5a: 71:a6:3b:e9:96:f8:32:3c:22:4a:2d:92:92:f6:9e: d0:c1:f6:d1:94:9e:21:88:70:32:2b:32:36:df:b3: 79:47:41:56:a8:0e:8a:c5:da:f5:06:c7:94:f2:9f: 29:e5:d8:48:06:d0:c0:0d:05:c3:4e:1c:8f:b1:dc: ae:2e:43:14:ff:38:fe:03:04:22:b7:82:9d:1b:9b: 98:27:45:8a:4a:e2:b8:43:0d:b5:5e:81:7a:3f:ef: 7b:6f:30:5f:a1:a7:33:f8:24:c6:e5:fa:19:bf:72: be:86:33:1a:1a:a2:60:de:35:18:f2:25:fd:4c:74: d8:51:29:90:d7:21:93:39:b7:74:60:4d:a4:bd:5e: 61:b7:e8:fe:24:84:d7:a4:c1:9d:0b:75:73:5d:5c: 4d:ed:f5:3b:36:db:a3:96:e2:db:66:04:a8:60:e3: 6d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BC:75:FC:01:0B:F6:F3:A8:17:90:0A:27:07:BB:A4:44:62:B2:5C X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6f:85:c2:49:b6:d7:f7:45:29:44:d2:87:6c:05:14:d6:a1: a6:79:fa:1c:b3:68:6e:e6:d0:2c:64:36:49:48:59:ba:01:9b: aa:15:f0:1a:19:66:37:14:d5:3b:e9:42:4f:9e:16:4f:bf:4d: 5d:75:a3:09:eb:61:5a:f1:ab:38:70:c6:ae:8d:f8:e2:5e:40: 5a:9e:36:84:ae:e1:2b:7f:a4:25:47:13:63:ec:88:01:5f:71: 4f:9e:e4:af:bc:c1:c4:89:15:1f:e2:ff:ed:f7:a9:e1:fb:63: 87:4f:1f:69:68:e6:d3:a5:4a:cb:f3:7d:a1:1f:c3:cb:75:bb: c5:d3:eb:22:01:ec:46:7c:8f:a3:65:74:8a:35:31:41:b8:35: 3c:e7:1b:8a:96:80:77:9b:01:88:57:1d:d3:4d:92:62:4c:b4: d0:fe:bc:e0:51:c2:16:7d:1d:d0:65:ab:42:53:8e:a6:01:cb: cf:b5:ec:6d:0f:71:a0:9f:38:75:50:9e:e7:fe:ea:ad:31:eb: 8a:ae:d2:75:43:27:4b:3d:b4:fc:55:2e:14:87:ca:b2:56:4d: e4:c3:11:80:28:a4:cc:6e:f4:d8:68:5b:c6:dc:45:a3:9e:ba: 21:e8:3b:17:a8:82:b6:34:fd:9c:b1:36:ed:67:29:ae:9c:0c: af:1d:3d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjUxMTAyMTQyODExWhcNMjUxMTA5MTQyODExWjAYMRYwFAYD VQQDEw02OTA3NmE3Yi01N2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkaNwqPzMQjq9RN+ABlJ6QXI1Q7eHqU0sy4WrHvm07DGfFhAgK2Fn5eQJVjF aBVFGvlokqpLDgr0Md2pCEPwGPNe+GZ98ZS5Uq57z6vkU8YnbDMTNcefkVpxpjvp lvgyPCJKLZKS9p7QwfbRlJ4hiHAyKzI237N5R0FWqA6Kxdr1BseU8p8p5dhIBtDA DQXDThyPsdyuLkMU/zj+AwQit4KdG5uYJ0WKSuK4Qw21XoF6P+97bzBfoacz+CTG 5foZv3K+hjMaGqJg3jUY8iX9THTYUSmQ1yGTObd0YE2kvV5ht+j+JITXpMGdC3Vz XVxN7fU7NtujluLbZgSoYONttwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGe8dfwB C/bzqBeQCicHu6REYrJcMB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBub4XCSbbX90UpRNKHbAUU1qGmefocs2hu5tAsZDZJSFm6AZuqFfAa GWY3FNU76UJPnhZPv01ddaMJ62Fa8as4cMaujfjiXkBanjaEruErf6QlRxNj7IgB X3FPnuSvvMHEiRUf4v/t96nh+2OHTx9paObTpUrL832hH8PLdbvF0+siAexGfI+j ZXSKNTFBuDU85xuKloB3mwGIVx3TTZJiTLTQ/rzgUcIWfR3QZatCU46mAcvPtext D3Ggnzh1UJ7n/uqtMeuKrtJ1QydLPbT8VS4Uh8qyVk3kwxGAKKTMbvTYaFvG3EWj nroh6DsXqIK2NP2csTbtZymunAyvHT2M -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:44 2025 by rpki-client