$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: B7mPWyhRqQGumsJBCPaU8n1ZGr6W+dLGUUx9NGK3rms= Subject key identifier: B2:86:B5:6F:8E:99:A2:28:40:16:7F:FD:9B:1A:94:3F:9D:E7:68:A8 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 34E7 Signing time: Sun 02 Nov 2025 14:51:07 +0000 Manifest this update: Sun 02 Nov 2025 14:51:07 +0000 Manifest next update: Sun 09 Nov 2025 14:51:07 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: Z8OkYXlpPrzrjRQNx/8iC7nZ8wDpiNj1o/P/PK/qQE0=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: 5UVYc1gM3pcN5MyLC+3d2F4QJ6pH7wnclugT6lLmPzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Nov 2 14:51:07 2025 GMT Not After : Nov 9 14:51:07 2025 GMT Subject: CN=69076fdb-1281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:4d:89:19:d4:29:cb:44:79:8d:4a:cc:79: 98:8c:c3:c6:d5:88:46:56:73:93:12:f9:d4:bc:a0: b9:4f:36:82:ba:2d:5f:37:36:d9:09:fb:f2:04:dc: 7b:22:ea:2b:7d:f7:73:9f:8b:24:ed:48:b8:7e:13: d6:c7:2e:5a:9d:48:85:4b:be:d4:89:16:60:50:2a: 0a:08:b2:a0:aa:22:d3:26:81:8b:c1:62:4a:5a:9c: 6a:3f:c2:54:d2:d7:35:44:5a:a7:00:02:c3:dc:53: 81:8b:a7:f0:65:4e:a2:f0:d1:af:f3:a2:94:cd:7f: cc:2a:80:df:15:0e:a9:eb:17:dc:a7:6f:58:50:eb: 23:fb:3f:f5:aa:d1:d7:fa:fb:86:e7:5e:4d:4a:6b: bb:52:c2:e0:43:8a:98:03:39:44:6f:a2:b5:fb:a6: b2:a2:64:1c:fd:ce:8c:ac:a6:23:dd:f0:68:07:6d: 3e:f5:24:82:6b:96:89:cf:ba:13:22:01:7f:d4:b4: f5:3c:84:28:2a:5b:04:1f:e1:fb:d2:b8:58:7a:91: 8a:6f:60:71:09:36:3f:92:7d:5f:89:a7:87:dc:91: 8b:8e:da:1d:64:3f:0c:39:fd:a4:05:97:13:5c:bd: 45:34:a1:51:49:7e:14:63:a3:3f:32:e5:f6:ea:01: c4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:86:B5:6F:8E:99:A2:28:40:16:7F:FD:9B:1A:94:3F:9D:E7:68:A8 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:d3:24:b4:a2:95:98:62:be:50:b6:2c:e7:b2:02:79:5f:cf: bc:18:96:cc:16:48:32:93:b7:43:47:72:ed:e9:eb:f1:68:44: 43:c4:34:7a:c2:23:64:a9:f6:2d:7e:9d:b7:1c:1f:49:f5:13: 43:99:3a:0d:06:57:d0:41:19:1e:63:e6:a0:10:90:1e:fc:b2: 97:b8:c7:c7:c7:5c:f9:31:2d:ad:a9:5a:2c:89:57:15:2b:f6: 47:00:de:2c:fa:f6:41:94:a8:9e:7c:2d:d8:70:a3:1a:a4:cc: 01:dc:78:7e:2a:a9:b7:78:2f:44:60:ad:e1:11:98:63:a4:55: 0e:a8:2c:0b:9f:54:68:89:c1:d5:fb:66:16:12:40:8e:3b:ed: 19:8c:10:18:57:8f:25:2f:9c:46:dd:e5:5a:48:1c:63:15:7d: 33:b4:6d:b1:72:1b:09:5d:53:cb:70:17:97:12:02:37:6e:30: 30:59:1a:c1:0f:d3:33:b7:eb:ad:3c:ec:a1:6a:d8:a1:05:73: 59:f7:85:7b:2c:b3:0c:dc:f7:a7:62:90:01:d4:4d:e8:2f:8f: 3d:73:d0:07:d5:6b:8d:71:09:d9:1a:c8:d4:f5:d3:c1:83:ca: 49:59:fd:ed:1e:ba:9f:1c:a3:78:6b:60:c2:66:89:be:97:2b: f5:ad:d6:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjUxMTAyMTQ1MTA3WhcNMjUxMTA5MTQ1MTA3WjAYMRYwFAYD VQQDEw02OTA3NmZkYi0xMjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24lNiRnUKctEeY1KzHmYjMPG1YhGVnOTEvnUvKC5TzaCui1fNzbZCfvyBNx7 Iuorffdzn4sk7Ui4fhPWxy5anUiFS77UiRZgUCoKCLKgqiLTJoGLwWJKWpxqP8JU 0tc1RFqnAALD3FOBi6fwZU6i8NGv86KUzX/MKoDfFQ6p6xfcp29YUOsj+z/1qtHX +vuG515NSmu7UsLgQ4qYAzlEb6K1+6ayomQc/c6MrKYj3fBoB20+9SSCa5aJz7oT IgF/1LT1PIQoKlsEH+H70rhYepGKb2BxCTY/kn1fiaeH3JGLjtodZD8MOf2kBZcT XL1FNKFRSX4UY6M/MuX26gHEtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKGtW+O maIoQBZ//ZsalD+d52ioMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDg0yS0opWYYr5QtiznsgJ5X8+8GJbMFkgyk7dDR3Lt6evxaERDxDR6 wiNkqfYtfp23HB9J9RNDmToNBlfQQRkeY+agEJAe/LKXuMfHx1z5MS2tqVosiVcV K/ZHAN4s+vZBlKiefC3YcKMapMwB3Hh+Kqm3eC9EYK3hEZhjpFUOqCwLn1RoicHV +2YWEkCOO+0ZjBAYV48lL5xG3eVaSBxjFX0ztG2xchsJXVPLcBeXEgI3bjAwWRrB D9Mzt+utPOyhatihBXNZ94V7LLMM3PenYpAB1E3oL489c9AH1WuNcQnZGsjU9dPB g8pJWf3tHrqfHKN4a2DCZom+lyv1rdYF -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:28 2025 by rpki-client