$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: t3AoQ+toJ7feUmU1kPxpKtg24tgjPO7KkuDgLrN3CFs= Subject key identifier: 65:59:56:B2:47:E7:E9:F4:92:E4:7D:6A:24:7B:4E:1D:B2:32:82:15 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 017C Signing time: Sun 26 Oct 2025 19:07:22 +0000 Manifest this update: Sun 26 Oct 2025 19:07:21 +0000 Manifest next update: Sun 02 Nov 2025 19:07:21 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: EfFnz0XQEu3azhqeeVXGyjpV0TcKt2JHrOjWMtD2Ids=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Oct 26 19:07:21 2025 GMT Not After : Nov 2 19:07:21 2025 GMT Subject: CN=68fe7169-ebae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0e:31:77:8e:11:02:16:10:e0:28:ae:b2:58: cc:c9:25:29:5a:ba:f1:70:2b:7b:60:5e:3f:ac:d2: cd:3b:e9:e6:a4:34:84:ae:f3:4e:1c:a7:9b:56:d5: 8a:99:ec:de:d3:5c:a8:77:d1:3d:15:92:ad:00:f1: 1c:c1:6f:2c:aa:aa:85:ba:b2:52:b3:3a:b8:46:18: 2b:5c:78:d7:e0:39:8f:c3:87:a0:f9:ec:19:7a:bb: b2:77:e1:14:9b:b1:bc:ec:ca:16:27:43:95:c6:bc: cc:a8:b2:07:da:d1:e6:28:a4:73:e6:7c:45:31:20: a7:7d:03:3b:7a:92:45:0e:3d:9b:47:e5:95:3b:86: f1:fd:56:49:a9:1c:2e:27:16:03:ec:c7:ea:c3:b6: 11:83:1b:47:16:2b:2a:25:6b:a9:02:8d:fc:23:db: 91:ae:4c:ff:23:37:3c:6c:87:0a:43:e4:ca:2b:45: b6:3d:ec:be:68:44:9d:f3:76:d8:46:bc:dc:3a:a8: b3:29:1d:ad:5a:01:95:6d:2f:ad:a6:68:34:f3:88: 3b:45:11:69:e5:e7:7a:29:86:2d:ad:e2:3f:3f:22: 6f:a9:fb:bf:be:d0:fd:b7:7a:66:e6:1f:9d:ad:3a: 2b:6c:c8:4a:8c:cd:54:8c:45:c1:c6:53:96:7a:2d: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:59:56:B2:47:E7:E9:F4:92:E4:7D:6A:24:7B:4E:1D:B2:32:82:15 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:97:78:1b:ce:b9:b0:a2:f7:fe:d8:43:09:fc:6d:01:50:48: d4:49:ee:67:ff:a1:6e:03:97:36:95:80:a5:eb:15:e0:88:54: 0e:c6:4a:5e:7e:9a:9d:a6:12:5c:bd:70:a3:2f:b9:6a:fa:36: 5e:8c:b9:79:5b:f9:74:31:bb:9d:e2:58:a4:78:0a:55:7c:16: c7:b3:f6:c2:cd:32:ed:1b:0e:d7:8c:25:d6:01:08:5d:1f:4e: a1:b9:44:cb:33:c5:48:0f:e8:12:09:8e:89:de:05:92:fc:f7: 4d:73:6b:f4:00:76:ff:cd:eb:fd:4c:8d:60:3b:6e:13:fb:2e: 4f:f9:17:e7:2e:c1:3d:02:94:e4:30:ad:61:31:82:44:03:45: 88:78:4b:ad:30:b9:e8:ef:af:33:3c:bd:95:f1:2e:60:8f:3e: 51:a6:0d:2e:da:50:2b:cf:f0:71:93:df:b2:5e:5a:11:a7:70: f5:a4:77:ff:15:8d:a2:33:0c:42:b9:22:f1:a9:9a:07:3d:30: 95:b9:6c:78:8a:09:d6:da:ef:21:f2:e2:d1:84:e2:ce:b3:c9: 21:45:1c:f6:c2:35:e4:4c:ab:20:fb:73:ba:fe:67:2d:df:83: b5:3e:86:42:24:1f:f6:65:22:ff:46:8b:d9:44:97:aa:53:b0: 0a:93:86:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUxMDI2MTkwNzIxWhcNMjUxMTAyMTkwNzIxWjAYMRYwFAYD VQQDEw02OGZlNzE2OS1lYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow4xd44RAhYQ4CiusljMySUpWrrxcCt7YF4/rNLNO+nmpDSErvNOHKebVtWK meze01yod9E9FZKtAPEcwW8sqqqFurJSszq4RhgrXHjX4DmPw4eg+ewZeruyd+EU m7G87MoWJ0OVxrzMqLIH2tHmKKRz5nxFMSCnfQM7epJFDj2bR+WVO4bx/VZJqRwu JxYD7Mfqw7YRgxtHFisqJWupAo38I9uRrkz/Izc8bIcKQ+TKK0W2Pey+aESd83bY RrzcOqizKR2tWgGVbS+tpmg084g7RRFp5ed6KYYtreI/PyJvqfu/vtD9t3pm5h+d rTorbMhKjM1UjEXBxlOWei3rHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVZVrJH 5+n0kuR9aiR7Th2yMoIVMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsl3gbzrmwovf+2EMJ/G0BUEjUSe5n/6FuA5c2lYCl6xXgiFQOxkpe fpqdphJcvXCjL7lq+jZejLl5W/l0Mbud4likeApVfBbHs/bCzTLtGw7XjCXWAQhd H06huUTLM8VID+gSCY6J3gWS/PdNc2v0AHb/zev9TI1gO24T+y5P+RfnLsE9ApTk MK1hMYJEA0WIeEutMLno768zPL2V8S5gjz5Rpg0u2lArz/Bxk9+yXloRp3D1pHf/ FY2iMwxCuSLxqZoHPTCVuWx4ignW2u8h8uLRhOLOs8khRRz2wjXkTKsg+3O6/mct 34O1PoZCJB/2ZSL/RovZRJeqU7AKk4bu -----END CERTIFICATE-----Generated at Mon Oct 27 12:10:50 2025 by rpki-client