$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: x1nQFX2/1Pbp7wAjPdHJQDsturf/+Ja7CP4XIjzDeQk= Subject key identifier: 46:67:40:EB:E9:39:AF:8A:12:C9:BF:4C:B1:97:66:22:1C:34:83:0E Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02F0 Signing time: Mon 27 Oct 2025 02:42:40 +0000 Manifest this update: Mon 27 Oct 2025 02:42:40 +0000 Manifest next update: Mon 03 Nov 2025 02:42:40 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: H0Ubq1fBodZ+uHFAN0uMk6R0aY0RmMZQeQrsfZXFV5s=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Oct 27 02:42:40 2025 GMT Not After : Nov 3 02:42:40 2025 GMT Subject: CN=68fedc20-978b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4b:10:9b:5c:85:3d:d3:e6:96:cd:12:62:93: cd:70:9f:59:c0:b6:67:fa:4f:75:99:36:36:1a:45: 35:95:89:f5:14:90:f1:4f:5f:47:8a:82:1f:af:b2: 9d:20:ba:63:04:a0:cb:bb:32:b3:12:75:e3:ec:cb: d3:15:1f:c2:9f:55:06:d8:b3:12:9d:d6:07:2f:77: c7:67:07:f9:e6:54:3d:95:71:19:ad:f0:09:0f:9f: e4:d5:7a:1b:79:6b:d1:a1:eb:d9:a9:bb:47:53:4f: e5:b5:ca:9d:20:86:90:ed:ca:07:97:fd:c8:62:31: 98:1f:a6:83:fe:6e:5d:99:f6:44:8b:25:64:8b:cf: e6:a6:19:b1:cf:e4:14:1b:d5:e9:ce:8b:85:55:e2: 04:50:c8:51:b2:5b:12:a6:f6:7f:c8:98:a5:eb:5e: cb:2d:ec:02:d0:7a:ab:6f:f1:a8:74:cd:e2:5f:d2: a7:b4:55:0d:4a:9e:45:df:91:d3:1c:ac:d2:93:d8: c9:4a:94:e4:e0:30:b1:ff:25:8c:90:2b:ec:54:c4: 3c:bc:c7:76:01:55:c5:9a:bf:21:3f:83:c1:09:c0: 1e:2e:62:09:ba:61:d4:3b:1e:5a:be:51:63:c1:4f: 4b:dc:1e:7f:d3:47:35:88:9f:32:60:76:ee:f3:42: c6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:67:40:EB:E9:39:AF:8A:12:C9:BF:4C:B1:97:66:22:1C:34:83:0E X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:f0:f3:92:e5:6f:6c:17:b3:7b:06:35:65:df:3d:a1:f7:10: 80:52:0e:ed:54:a7:b0:22:57:bc:9b:77:fd:b0:22:fe:b9:2b: 75:d7:4c:42:86:15:dd:31:15:e3:07:da:c8:8f:de:a3:16:87: c6:e6:32:b3:6e:e8:f2:52:a2:13:8c:c2:a5:91:02:d8:74:3b: b1:51:86:1b:60:5e:66:7c:63:72:e7:df:2b:2f:9f:0a:e9:95: 33:87:63:c4:07:68:74:c6:14:9c:73:d1:5e:82:3f:91:f4:fb: 0d:48:49:69:ae:f7:59:12:11:f0:c7:65:5d:c5:c5:7e:de:1d: cf:05:a6:71:d9:3b:9a:9b:95:c2:13:cc:69:c4:39:f7:62:58: 34:58:8d:fc:d5:53:f3:de:da:b1:db:7e:99:23:d8:91:7c:14: 06:e2:66:8e:75:b0:e5:6d:bf:54:2d:f6:b8:0f:59:e2:66:05: 4c:9a:23:7a:46:9c:82:3a:64:09:e7:4b:d4:76:e1:c0:eb:92: 96:b4:59:09:52:85:e0:a6:f3:18:27:ab:19:06:0b:95:c9:c9: da:1d:aa:83:a5:1f:b5:c6:98:f0:11:bf:ce:0b:96:38:ca:92: 69:5d:92:9c:c3:4b:60:d8:1a:a6:a2:a9:98:3f:89:27:5b:1f: 37:7e:88:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUxMDI3MDI0MjQwWhcNMjUxMTAzMDI0MjQwWjAYMRYwFAYD VQQDEw02OGZlZGMyMC05NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEsQm1yFPdPmls0SYpPNcJ9ZwLZn+k91mTY2GkU1lYn1FJDxT19HioIfr7Kd ILpjBKDLuzKzEnXj7MvTFR/Cn1UG2LMSndYHL3fHZwf55lQ9lXEZrfAJD5/k1Xob eWvRoevZqbtHU0/ltcqdIIaQ7coHl/3IYjGYH6aD/m5dmfZEiyVki8/mphmxz+QU G9XpzouFVeIEUMhRslsSpvZ/yJil617LLewC0Hqrb/GodM3iX9KntFUNSp5F35HT HKzSk9jJSpTk4DCx/yWMkCvsVMQ8vMd2AVXFmr8hP4PBCcAeLmIJumHUOx5avlFj wU9L3B5/00c1iJ8yYHbu80LGlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZnQOvp Oa+KEsm/TLGXZiIcNIMOMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI8POS5W9sF7N7BjVl3z2h9xCAUg7tVKewIle8m3f9sCL+uSt110xC hhXdMRXjB9rIj96jFofG5jKzbujyUqITjMKlkQLYdDuxUYYbYF5mfGNy598rL58K 6ZUzh2PEB2h0xhScc9Fegj+R9PsNSElprvdZEhHwx2VdxcV+3h3PBaZx2Tuam5XC E8xpxDn3Ylg0WI381VPz3tqx236ZI9iRfBQG4maOdbDlbb9ULfa4D1niZgVMmiN6 RpyCOmQJ50vUduHA65KWtFkJUoXgpvMYJ6sZBguVycnaHaqDpR+1xpjwEb/OC5Y4 ypJpXZKcw0tg2BqmoqmYP4knWx83fohp -----END CERTIFICATE-----Generated at Wed Oct 29 00:57:14 2025 by rpki-client