$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: R6k6pop/7OHnQFU0dTvN803AvpRx+cEQehLnjFidgrI= Subject key identifier: 1A:04:DC:4B:2F:24:C7:F1:C9:8A:81:0F:BD:F3:D8:41:65:80:D9:EC Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A21 Signing time: Sun 02 Nov 2025 19:43:40 +0000 Manifest this update: Sun 02 Nov 2025 19:43:39 +0000 Manifest next update: Sun 09 Nov 2025 19:43:39 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: usB54F4b8KlfQsFdzK+q4Re+p6uwRkG81jYbhakeFlU=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Nov 2 19:43:39 2025 GMT Not After : Nov 9 19:43:39 2025 GMT Subject: CN=6907b46c-ab3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ba:e4:5b:72:8f:60:ca:ee:53:23:62:01:07: a0:6b:17:6b:28:92:02:d6:97:37:82:90:c4:3e:55: 47:31:22:67:be:81:38:4d:b9:e5:fd:02:a3:34:f6: 72:dc:ce:11:f7:47:f9:ba:31:46:6e:a9:05:ef:a2: ea:fd:a4:5d:18:53:86:22:c6:dc:89:5f:92:aa:2d: 4e:2b:5c:ae:6c:50:9f:36:99:1b:8a:32:cc:78:72: 3e:04:c5:1e:75:cb:14:82:81:95:bf:9c:be:8f:70: 6f:d9:a5:e4:d2:b7:81:5b:ef:86:b7:8d:c3:89:b7: cc:c9:03:b0:29:b9:a7:6e:27:68:6c:ed:9b:a5:cc: f1:6f:01:2a:ca:4b:a7:d4:cc:9f:23:0e:22:c4:5d: bd:39:c3:94:e5:8c:13:da:58:38:2e:c8:f4:41:85: c5:14:10:11:96:fa:8c:c6:61:8b:99:02:7d:f4:8e: 37:2e:23:bc:63:b5:f0:53:0f:24:70:3e:b0:9f:fa: b6:67:cb:ab:c5:fe:f3:47:ff:ec:25:c5:41:8a:d4: 5e:50:10:ec:26:95:d8:97:be:85:2d:be:0f:e6:17: fa:ee:88:7f:b1:55:20:78:b0:4c:25:b1:b6:54:46: e3:4e:eb:0f:fd:19:86:70:ec:ce:a3:c5:77:d5:f1: 7a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:04:DC:4B:2F:24:C7:F1:C9:8A:81:0F:BD:F3:D8:41:65:80:D9:EC X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:3f:d3:20:2f:ae:7f:9d:7d:33:bf:6c:f3:2f:8a:a4:76:8e: 32:ae:5e:e2:63:6c:f1:0d:89:f6:4b:93:91:8a:17:da:f9:43: af:3a:24:99:b8:63:7a:32:ee:68:0d:b6:c4:0e:ea:54:6b:15: 55:cd:4d:22:2c:ee:c3:08:d1:96:f5:18:b3:0b:d3:f2:ca:a3: 4e:c8:a7:96:5c:ae:5d:94:11:9a:d5:eb:c1:78:10:2b:0d:6d: 42:0e:13:2b:03:dc:20:aa:98:aa:59:51:59:56:46:74:10:19: ec:dd:6f:e8:0d:86:a9:3c:8e:7f:d1:ba:c8:f5:16:c5:b3:35: 73:a5:4d:ab:b7:f0:f3:f7:d6:27:b5:78:bc:26:81:d8:84:76: ad:4e:c5:cb:e5:f1:62:84:94:0f:27:82:cc:04:14:e7:07:12: 3b:e9:95:ad:65:61:b7:40:9f:ed:ae:43:c3:53:6f:24:17:e3: f4:7b:9a:8f:a8:9d:63:8e:9f:18:b6:3e:de:0d:14:f7:20:42: cc:6f:cd:e8:f7:1b:85:7d:b9:92:8e:a5:e4:00:37:52:f0:87: 50:9b:cb:0b:82:56:b3:b0:2f:19:3d:64:e5:4d:f6:52:aa:93: 4a:b7:d4:80:df:64:ed:f9:44:37:4d:87:6f:83:85:8e:cf:1e: 53:d9:eb:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUxMTAyMTk0MzM5WhcNMjUxMTA5MTk0MzM5WjAYMRYwFAYD VQQDEw02OTA3YjQ2Yy1hYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrrkW3KPYMruUyNiAQegaxdrKJIC1pc3gpDEPlVHMSJnvoE4Tbnl/QKjNPZy 3M4R90f5ujFGbqkF76Lq/aRdGFOGIsbciV+Sqi1OK1yubFCfNpkbijLMeHI+BMUe dcsUgoGVv5y+j3Bv2aXk0reBW++Gt43DibfMyQOwKbmnbidobO2bpczxbwEqykun 1MyfIw4ixF29OcOU5YwT2lg4Lsj0QYXFFBARlvqMxmGLmQJ99I43LiO8Y7XwUw8k cD6wn/q2Z8urxf7zR//sJcVBitReUBDsJpXYl76FLb4P5hf67oh/sVUgeLBMJbG2 VEbjTusP/RmGcOzOo8V31fF6ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoE3Esv JMfxyYqBD73z2EFlgNnsMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhP9MgL65/nX0zv2zzL4qkdo4yrl7iY2zxDYn2S5ORihfa+UOvOiSZ uGN6Mu5oDbbEDupUaxVVzU0iLO7DCNGW9RizC9PyyqNOyKeWXK5dlBGa1evBeBAr DW1CDhMrA9wgqpiqWVFZVkZ0EBns3W/oDYapPI5/0brI9RbFszVzpU2rt/Dz99Yn tXi8JoHYhHatTsXL5fFihJQPJ4LMBBTnBxI76ZWtZWG3QJ/trkPDU28kF+P0e5qP qJ1jjp8Ytj7eDRT3IELMb83o9xuFfbmSjqXkADdS8IdQm8sLglazsC8ZPWTlTfZS qpNKt9SA32Tt+UQ3TYdvg4WOzx5T2esG -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:44 2025 by rpki-client