$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: Zi2K3kmdnlJUWs+7vKm+sG43zcKX4Pb3Ijg8hgFhIyI= Subject key identifier: 68:D9:B6:B1:85:D8:4E:04:EC:AC:A6:4C:8B:67:13:56:4D:D9:AB:D1 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34E1 Signing time: Sun 02 Nov 2025 14:37:48 +0000 Manifest this update: Sun 02 Nov 2025 14:37:47 +0000 Manifest next update: Sun 09 Nov 2025 14:37:47 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: M9RsgCIXAFFwmJ08Gy9IR93D0mBNRec7tyRH+/gInsI=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Nov 2 14:37:47 2025 GMT Not After : Nov 9 14:37:47 2025 GMT Subject: CN=69076cbc-0cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:bd:91:fa:ad:12:5b:d8:64:89:c0:56:c8: 08:13:87:e4:7c:cc:2a:4a:72:c6:52:3e:77:96:2b: b0:32:7b:41:13:c8:f3:f2:ff:22:08:2b:db:9b:e7: 52:db:fa:82:89:4a:99:1f:50:f5:d6:d6:9f:cc:10: ba:52:3f:80:8e:0f:9c:1c:35:b8:75:32:44:64:5e: f2:64:4b:9f:88:3d:e5:1e:22:db:ec:64:52:29:56: 99:fc:56:31:b0:bc:d9:e2:3b:a2:98:33:e5:c7:ed: 69:e8:8c:b4:36:ef:40:3f:21:c4:d5:76:a9:59:96: 48:42:8e:2a:9a:86:b3:55:1b:97:e6:ad:89:e2:82: 79:51:12:16:f6:92:a9:d8:3b:ef:2d:7f:7d:77:16: 98:05:84:33:10:be:59:66:25:76:59:25:3d:f4:7c: ac:8e:2a:93:0e:ac:9c:87:f4:4b:83:36:fa:bd:48: dd:56:30:87:e2:c6:d0:b8:b5:fc:14:42:cd:88:59: 6d:b3:17:99:ed:a2:c6:fc:74:c2:9e:05:42:b5:20: 46:83:de:24:cb:50:d9:ea:29:b5:bc:23:ef:49:9a: 71:d7:6c:c4:13:de:98:4b:86:9e:d2:d3:ff:03:6d: 74:1b:94:76:57:d0:ee:a8:f9:18:15:e2:5e:de:a2: 22:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D9:B6:B1:85:D8:4E:04:EC:AC:A6:4C:8B:67:13:56:4D:D9:AB:D1 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:2d:12:16:00:c4:66:0b:e2:74:46:ba:40:8b:1a:74:2e:f9: 23:8d:6b:52:4d:59:95:a9:c9:c8:df:9e:59:4b:ca:00:72:08: f8:ba:09:30:34:71:e9:3f:58:a3:21:62:4a:dd:da:15:a1:15: 04:4a:c1:b9:f2:ca:15:ea:eb:ab:f4:9b:95:cb:29:07:a5:6d: cf:a9:21:3d:c1:4f:3e:bd:d8:24:7f:44:da:83:f9:48:06:f1: 81:c3:9e:d5:f0:64:49:ff:99:d7:14:44:21:52:4f:b7:1b:0e: 94:0a:77:b8:0b:ed:10:f0:e0:c1:96:26:7e:81:86:41:92:31: fd:24:1b:81:3a:8d:94:4c:6d:65:6f:af:67:a3:e7:0e:93:93: 1f:85:5d:80:bc:81:f9:a7:75:ea:dd:ec:f7:66:62:da:81:61: 98:5c:8a:dc:66:a6:e8:2b:a8:9c:29:f1:48:11:4a:9a:12:44: e0:36:42:af:69:ab:29:ba:33:81:1a:35:d7:7d:a6:d6:f3:e6: cd:eb:69:64:87:2f:80:ee:72:f6:a6:10:2b:39:33:45:67:0c: 78:ff:00:8f:b2:16:52:64:0e:ac:11:93:f7:90:b5:af:9a:28: b4:c8:18:ff:03:da:bb:73:e4:26:15:8a:0b:ad:c0:4b:46:22: 95:47:73:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMTAyMTQzNzQ3WhcNMjUxMTA5MTQzNzQ3WjAYMRYwFAYD VQQDEw02OTA3NmNiYy0wY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvG9kfqtElvYZInAVsgIE4fkfMwqSnLGUj53liuwMntBE8jz8v8iCCvbm+dS 2/qCiUqZH1D11tafzBC6Uj+Ajg+cHDW4dTJEZF7yZEufiD3lHiLb7GRSKVaZ/FYx sLzZ4juimDPlx+1p6Iy0Nu9APyHE1XapWZZIQo4qmoazVRuX5q2J4oJ5URIW9pKp 2DvvLX99dxaYBYQzEL5ZZiV2WSU99HysjiqTDqych/RLgzb6vUjdVjCH4sbQuLX8 FELNiFltsxeZ7aLG/HTCngVCtSBGg94ky1DZ6im1vCPvSZpx12zEE96YS4ae0tP/ A210G5R2V9DuqPkYFeJe3qIizwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjZtrGF 2E4E7KymTItnE1ZN2avRMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+LRIWAMRmC+J0RrpAixp0LvkjjWtSTVmVqcnI355ZS8oAcgj4ugkw NHHpP1ijIWJK3doVoRUESsG58soV6uur9JuVyykHpW3PqSE9wU8+vdgkf0Tag/lI BvGBw57V8GRJ/5nXFEQhUk+3Gw6UCne4C+0Q8ODBliZ+gYZBkjH9JBuBOo2UTG1l b69no+cOk5MfhV2AvIH5p3Xq3ez3ZmLagWGYXIrcZqboK6icKfFIEUqaEkTgNkKv aaspujOBGjXXfabW8+bN62lkhy+A7nL2phArOTNFZwx4/wCPshZSZA6sEZP3kLWv mii0yBj/A9q7c+QmFYoLrcBLRiKVR3P3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:58 2025 by rpki-client