$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: WqR768qQfN8KTLgVENgcILjteF6bzRS/DEuqVIDgMK0= Subject key identifier: 13:70:38:CC:70:DD:E9:C3:48:09:13:59:A5:C7:86:B0:C9:AB:BB:14 Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 17E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 2035 Signing time: Tue 04 Nov 2025 16:38:57 +0000 Manifest this update: Tue 04 Nov 2025 16:38:56 +0000 Manifest next update: Tue 11 Nov 2025 16:38:56 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: 4PLWO6sw73iv7a4bf697/4cieUVld2t3brUnDj2XKH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6117 (0x17e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Nov 4 16:38:56 2025 GMT Not After : Nov 11 16:38:56 2025 GMT Subject: CN=690a2c20-8ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:27:76:ba:e3:f2:e4:6d:b5:62:6a:41:a4:70: 7b:45:41:3b:26:3b:e8:56:5e:49:ae:26:ec:e6:1c: d4:3e:81:e1:37:c1:5c:32:f8:f4:5c:d5:f4:99:56: 9b:ee:53:90:cc:3e:5d:aa:59:da:1a:01:d4:60:fa: c1:53:a0:2a:c2:bf:e8:24:34:bd:a9:30:78:8f:40: 43:b0:9a:c8:8c:d9:ae:c7:bf:3c:d5:8c:11:52:bc: 15:30:55:f1:2d:3c:3d:2f:96:92:40:04:77:8a:4b: cc:58:ed:49:61:5b:33:ec:2f:c8:c4:01:48:1d:19: ef:81:7b:b1:57:e6:89:3f:2a:6e:3c:af:c8:d4:2c: 95:0d:dc:7a:d2:72:d4:19:b3:39:dd:98:19:0a:e2: be:3e:c7:3b:b3:93:c8:bb:76:7f:2c:f7:44:7e:44: 9a:8e:20:54:f4:bd:c5:a2:53:83:2e:1e:cd:92:50: 9b:86:90:c2:4b:a6:6c:74:03:09:8f:64:c9:e3:83: 15:d9:74:ee:7b:35:83:60:d6:53:7a:77:08:45:a1: eb:6c:1f:6d:6a:13:6e:67:ac:a1:34:65:55:ef:14: 5d:bb:58:61:e0:39:d7:fc:d5:98:8a:e4:0f:64:33: cb:b7:94:cd:d0:38:6f:29:f9:93:8f:45:40:70:c3: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:70:38:CC:70:DD:E9:C3:48:09:13:59:A5:C7:86:B0:C9:AB:BB:14 X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:81:79:c9:ab:a7:03:fb:3d:6f:d4:b9:a8:90:a8:8e:38:94: e0:02:1e:36:63:ab:02:e3:4f:2e:f6:99:17:77:39:42:1e:4f: ee:42:29:be:a6:94:3b:8d:d2:d3:ce:07:f8:c8:4e:26:9a:19: c6:dc:6f:2f:5a:3c:50:54:ab:ee:bb:e6:0c:5f:49:d2:28:7c: 0f:6f:a1:08:b4:02:73:03:2b:21:24:fc:f5:fc:92:bb:0d:20: c1:9b:ad:0e:5f:20:44:ba:0c:74:04:26:50:23:c1:31:6e:b4: bb:e7:b6:f9:66:74:2c:fc:14:5a:0a:89:d0:72:b7:b4:a5:ff: 01:2a:c3:59:7e:fd:26:cc:ef:30:90:72:9f:6e:13:97:21:e2: bb:9e:5a:4d:b7:a1:ee:1e:7e:e2:81:0f:b3:c2:8f:4d:ba:fc: 75:aa:c8:2a:71:12:a2:77:64:44:73:ea:29:2e:fb:96:1e:87: b9:64:64:f7:bc:89:bc:4c:12:df:1b:08:b7:ef:8f:42:5d:b8: a8:97:b3:68:51:c3:27:22:3f:ac:11:ce:fd:97:0b:97:e6:6f: 50:6c:c3:8a:e9:db:ba:b0:6f:49:c1:fc:56:f8:58:f5:cf:87: d9:2d:fe:2a:7c:13:f9:30:4f:3d:0f:21:08:49:33:0f:82:91: 10:c6:e8:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUxMTA0MTYzODU2WhcNMjUxMTExMTYzODU2WjAYMRYwFAYD VQQDEw02OTBhMmMyMC04ZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxid2uuPy5G21YmpBpHB7RUE7JjvoVl5Jribs5hzUPoHhN8FcMvj0XNX0mVab 7lOQzD5dqlnaGgHUYPrBU6Aqwr/oJDS9qTB4j0BDsJrIjNmux7881YwRUrwVMFXx LTw9L5aSQAR3ikvMWO1JYVsz7C/IxAFIHRnvgXuxV+aJPypuPK/I1CyVDdx60nLU GbM53ZgZCuK+Psc7s5PIu3Z/LPdEfkSajiBU9L3FolODLh7NklCbhpDCS6ZsdAMJ j2TJ44MV2XTuezWDYNZTencIRaHrbB9tahNuZ6yhNGVV7xRdu1hh4DnX/NWYiuQP ZDPLt5TN0DhvKfmTj0VAcMNauQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNwOMxw 3enDSAkTWaXHhrDJq7sUMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+gXnJq6cD+z1v1LmokKiOOJTgAh42Y6sC408u9pkXdzlCHk/uQim+ ppQ7jdLTzgf4yE4mmhnG3G8vWjxQVKvuu+YMX0nSKHwPb6EItAJzAyshJPz1/JK7 DSDBm60OXyBEugx0BCZQI8ExbrS757b5ZnQs/BRaConQcre0pf8BKsNZfv0mzO8w kHKfbhOXIeK7nlpNt6HuHn7igQ+zwo9Nuvx1qsgqcRKid2REc+opLvuWHoe5ZGT3 vIm8TBLfGwi3749CXbiol7NoUcMnIj+sEc79lwuX5m9QbMOK6du6sG9JwfxW+Fj1 z4fZLf4qfBP5ME89DyEISTMPgpEQxugJ -----END CERTIFICATE-----Generated at Wed Nov 5 05:20:36 2025 by rpki-client