$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: Q8LGOJKxpZmMM2PXQJHIqcln4zo7R/v19XOBYRl1eeI= Subject key identifier: DA:AE:1D:74:79:43:6D:E1:AF:BB:A2:94:B6:CA:E6:03:01:2C:9F:82 Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 076A Signing time: Tue 04 Nov 2025 21:43:28 +0000 Manifest this update: Tue 04 Nov 2025 21:43:28 +0000 Manifest next update: Tue 11 Nov 2025 21:43:28 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: TJivWWzjydeXwuv9PmDBQykYcFhuqBZ2gROCz92fQD4=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: if2Ty+xI9lsixRtkfYJ2DrsSLWOZeEaMUkbkKLpKeBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278, serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: Nov 4 21:43:28 2025 GMT Not After : Nov 11 21:43:28 2025 GMT Subject: CN=690a7380-6e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a6:a6:b1:3d:06:9d:45:f4:bc:66:83:3c:53: f2:00:b5:55:a9:08:3f:cb:6d:a0:aa:dd:fb:c0:0b: 32:d8:03:e2:ce:89:96:07:30:ea:0f:bb:6d:82:02: 16:20:cb:81:2b:f8:4d:e7:31:0e:8d:65:79:d8:18: 14:fd:c0:66:e5:ab:71:88:1a:d5:a6:80:10:80:f6: d5:0f:45:4d:e2:6c:07:37:ac:cf:25:eb:52:63:1a: ca:a8:bd:a6:f2:70:e8:76:7d:b4:44:7e:e1:05:96: 33:b5:b0:28:2e:74:e9:28:e1:ae:6a:97:8c:0c:74: d5:0d:ff:e5:e2:f5:66:e4:0d:10:d7:13:1e:3c:9f: 82:72:0f:f0:05:65:af:28:93:d8:0c:33:52:70:5d: 5b:c6:8a:f3:48:d2:e6:f2:de:91:b3:52:82:a0:51: da:5f:ac:e7:a7:30:64:6e:86:5f:1d:c1:ed:97:46: bb:8e:a0:27:dc:9f:09:ee:8f:88:e0:3f:e8:e7:20: 12:4f:9a:c4:3a:1b:62:89:ef:fa:e4:0d:f0:dc:77: 26:b4:41:5e:20:5c:23:87:aa:9d:59:cf:0b:a7:b9: 04:37:72:f3:20:d8:2c:05:0b:dc:d2:93:69:c8:dc: 4a:5a:ca:d9:0f:ec:54:2d:92:d5:96:7a:2d:66:eb: 8a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AE:1D:74:79:43:6D:E1:AF:BB:A2:94:B6:CA:E6:03:01:2C:9F:82 X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a6:dc:d0:a0:90:26:11:c2:f6:f9:dd:3b:c4:3f:c1:3a:20: 5b:80:89:2a:71:3c:74:66:2d:7c:7b:b9:be:46:30:1a:4a:2c: 43:4f:95:a2:3e:49:65:2a:38:ca:4c:ff:ff:83:08:b0:10:7c: 12:bc:f0:43:4a:d1:dc:e4:9c:fb:2b:f3:cf:ff:4b:ac:6d:ab: 55:05:09:e3:cf:9b:ff:9e:b7:1d:f0:1d:16:8c:98:12:e5:f8: 1c:af:f1:dd:53:ae:61:ea:ab:53:64:a3:26:da:d4:52:a8:c1: 41:1e:19:b8:5c:88:89:6b:97:41:64:24:83:b6:c9:75:35:97: 2c:f1:a5:db:60:f4:a3:0d:cd:74:07:a2:eb:fb:60:45:60:32: ae:3e:dd:b3:82:e9:32:34:3d:a8:1f:b1:ce:e6:d1:11:b3:c6: 3e:5f:26:78:40:c9:91:af:0c:77:b1:d6:bd:9e:84:d4:30:48: ba:6a:e3:79:ba:97:ba:eb:a2:44:81:c6:6c:60:96:fe:00:67: 33:69:8a:86:6a:6e:35:11:4f:d6:28:c7:0b:64:8e:af:e6:9d: 16:d8:45:52:82:00:de:20:e4:bc:92:fa:8a:ad:c4:80:0f:9b: b2:0b:30:75:02:ee:2f:4b:e3:2a:1d:2e:b0:76:11:06:48:d2: 72:82:0b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjUxMTA0MjE0MzI4WhcNMjUxMTExMjE0MzI4WjAYMRYwFAYD VQQDEw02OTBhNzM4MC02ZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aamsT0GnUX0vGaDPFPyALVVqQg/y22gqt37wAsy2APizomWBzDqD7ttggIW IMuBK/hN5zEOjWV52BgU/cBm5atxiBrVpoAQgPbVD0VN4mwHN6zPJetSYxrKqL2m 8nDodn20RH7hBZYztbAoLnTpKOGuapeMDHTVDf/l4vVm5A0Q1xMePJ+Ccg/wBWWv KJPYDDNScF1bxorzSNLm8t6Rs1KCoFHaX6znpzBkboZfHcHtl0a7jqAn3J8J7o+I 4D/o5yAST5rEOhtiie/65A3w3HcmtEFeIFwjh6qdWc8Lp7kEN3LzINgsBQvc0pNp yNxKWsrZD+xULZLVlnotZuuKQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNquHXR5 Q23hr7uilLbK5gMBLJ+CMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdptzQoJAmEcL2+d07xD/BOiBbgIkqcTx0Zi18e7m+RjAaSixDT5Wi PkllKjjKTP//gwiwEHwSvPBDStHc5Jz7K/PP/0usbatVBQnjz5v/nrcd8B0WjJgS 5fgcr/HdU65h6qtTZKMm2tRSqMFBHhm4XIiJa5dBZCSDtsl1NZcs8aXbYPSjDc10 B6Lr+2BFYDKuPt2zgukyND2oH7HO5tERs8Y+XyZ4QMmRrwx3sda9noTUMEi6auN5 upe666JEgcZsYJb+AGczaYqGam41EU/WKMcLZI6v5p0W2EVSggDeIOS8kvqKrcSA D5uyCzB1Au4vS+MqHS6wdhEGSNJyggvZ -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:42 2025 by rpki-client