$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: cZgAEcaVtMOzyf7zhLq8aSK0K2i1A4wHBd/4kUYocBo= Subject key identifier: 30:DD:53:3A:F3:93:A6:E5:79:89:21:B7:39:06:C4:CD:A6:FF:BB:D4 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 0199 Signing time: Mon 03 Nov 2025 03:24:25 +0000 Manifest this update: Mon 03 Nov 2025 03:24:24 +0000 Manifest next update: Mon 10 Nov 2025 03:24:24 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: kXHQ6WixN/Thmy5MkVmFJ+iA0+E8byheqg+y4xgHfcg=) 2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: LiaqpSK92cBpFsHl2uGwMK05eZl8TgnXPG5GLO/r81A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Nov 3 03:24:24 2025 GMT Not After : Nov 10 03:24:24 2025 GMT Subject: CN=69082068-8c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:f6:1e:3e:1a:e7:44:18:d1:f0:75:9d:13: 2d:5f:87:59:00:fd:b1:c5:b3:54:ff:af:9b:fc:c6: e9:fe:98:6a:07:9a:d3:64:aa:18:33:0a:21:d5:c5: e5:73:11:e7:51:f2:c5:86:9c:ce:cd:e6:5a:3d:f8: 9f:5d:cc:b1:4d:2d:62:8b:04:dc:3a:89:c0:55:13: 8f:46:36:79:b0:8f:7f:f7:98:6e:20:36:cb:a4:56: 0d:a4:53:f7:c4:5a:55:df:a5:20:58:8b:9d:2e:cd: e9:57:cd:c1:e9:7d:2e:40:40:25:bb:44:e0:ad:d0: 6a:ab:30:a1:fd:29:d1:9f:38:17:e0:35:7f:4d:1e: 2f:ba:bf:18:c6:89:d1:6f:b4:a9:ed:6d:a4:5f:09: 9b:64:c5:72:b0:65:9a:db:8e:21:ac:65:82:35:4f: b2:7f:56:a0:4f:0b:6e:db:b5:6c:a6:07:ac:31:96: b7:33:74:85:5e:34:f0:39:1a:9b:f1:ca:d3:2e:db: 83:82:4e:5a:d2:f4:8f:76:a5:38:3f:5b:78:ae:cb: c2:9a:2d:9b:7a:48:41:f6:0c:6c:5c:5e:d4:41:41: 48:1d:f9:73:24:72:3f:e9:d5:fe:5b:f1:d7:ea:70: 98:4c:58:c5:74:80:c5:82:e1:e3:4f:8f:08:46:05: 05:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DD:53:3A:F3:93:A6:E5:79:89:21:B7:39:06:C4:CD:A6:FF:BB:D4 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:a8:60:1a:97:46:da:b8:18:89:a0:9b:b4:31:7e:f2:68:e6: 3d:04:02:ea:0b:03:73:f8:8d:64:05:8b:d3:c5:a5:48:45:eb: 34:30:a8:93:f5:d8:a8:02:67:40:cb:9c:6a:32:a2:16:d1:fd: 9e:c2:8c:78:f0:26:06:d9:9f:b6:da:65:95:83:09:6b:d3:0f: 9b:fb:b6:e1:ce:d2:86:8a:f0:9e:64:6b:59:ed:2f:dd:42:e0: 19:38:dd:28:9c:d8:77:db:64:0e:2c:f7:10:24:8c:87:24:e4: 58:c3:cc:2c:52:1e:6f:e2:f1:c2:74:4b:c7:05:66:52:d9:35: 0f:0b:fe:71:b1:dd:9c:07:a8:31:fe:02:41:38:55:a6:bf:d4: 15:80:39:0b:f8:cf:bc:75:9e:87:99:ab:b0:ab:78:e9:4b:d0: cc:41:ff:15:74:99:85:8e:e1:b2:b6:68:e0:6d:cc:58:e6:57: ca:39:6c:af:03:d0:15:e2:c1:ff:5c:f5:e3:d3:eb:91:39:0c: 85:17:20:09:38:38:15:4a:0e:87:5c:cd:14:35:8e:08:97:a8: 84:f6:1e:16:62:d3:26:69:42:b5:1e:3a:9c:9a:03:fd:5e:04: 76:cb:e6:37:5e:e0:b6:39:d3:30:f3:4b:70:df:ff:c8:9a:14: 6e:0d:0d:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjUxMTAzMDMyNDI0WhcNMjUxMTEwMDMyNDI0WjAYMRYwFAYD VQQDEw02OTA4MjA2OC04YzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5/2Hj4a50QY0fB1nRMtX4dZAP2xxbNU/6+b/Mbp/phqB5rTZKoYMwoh1cXl cxHnUfLFhpzOzeZaPfifXcyxTS1iiwTcOonAVROPRjZ5sI9/95huIDbLpFYNpFP3 xFpV36UgWIudLs3pV83B6X0uQEAlu0TgrdBqqzCh/SnRnzgX4DV/TR4vur8YxonR b7Sp7W2kXwmbZMVysGWa244hrGWCNU+yf1agTwtu27VspgesMZa3M3SFXjTwORqb 8crTLtuDgk5a0vSPdqU4P1t4rsvCmi2bekhB9gxsXF7UQUFIHflzJHI/6dX+W/HX 6nCYTFjFdIDFguHjT48IRgUFBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDdUzrz k6bleYkhtzkGxM2m/7vUMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHqGAal0bauBiJoJu0MX7yaOY9BALqCwNz+I1kBYvTxaVIRes0MKiT 9dioAmdAy5xqMqIW0f2ewox48CYG2Z+22mWVgwlr0w+b+7bhztKGivCeZGtZ7S/d QuAZON0onNh322QOLPcQJIyHJORYw8wsUh5v4vHCdEvHBWZS2TUPC/5xsd2cB6gx /gJBOFWmv9QVgDkL+M+8dZ6Hmauwq3jpS9DMQf8VdJmFjuGytmjgbcxY5lfKOWyv A9AV4sH/XPXj0+uROQyFFyAJODgVSg6HXM0UNY4Il6iE9h4WYtMmaUK1HjqcmgP9 XgR2y+Y3XuC2OdMw80tw3//ImhRuDQ12 -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:07 2025 by rpki-client