$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: JMXufwerAksAwUznNye9ITHJfnNZrc4g7fB32drWzBM= Subject key identifier: 81:DE:25:57:58:CF:B1:B4:09:A0:35:15:CD:C2:54:6B:B5:0C:D8:7C Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1ED3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1EC3 Signing time: Tue 04 Nov 2025 16:08:29 +0000 Manifest this update: Tue 04 Nov 2025 16:08:29 +0000 Manifest next update: Tue 11 Nov 2025 16:08:29 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: vu+JWm+9nnoejtJAF9q4BIRGOneNE+Ex2G3duY9Vn8s=) 2: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: G8JFHwSz1ocsPfiu5EdB881TguSYEm9QZ2Yz9AovjhA=) 3: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: 0mgkLjgKwKqnZvyXs7R0/CM7YveV0fnq5l57+ocSN+k=) 4: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: mcsOJ/PSjF+pyGpbfB/eXtIe/0dKHqcd9NaSWEDdEYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7891 (0x1ed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: Nov 4 16:08:29 2025 GMT Not After : Nov 11 16:08:29 2025 GMT Subject: CN=690a24fd-675b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:60:c3:4c:50:11:a1:35:86:33:f5:2e:50: f0:ab:08:62:2d:64:c5:f0:92:28:2e:69:61:e2:70: 9e:bb:de:21:31:fa:49:ad:59:c5:62:66:ea:96:7d: 99:3e:98:8b:0b:2d:9d:4f:87:30:2c:8f:01:18:70: d8:4d:da:3a:8a:7d:5c:09:a7:a3:fc:60:30:7f:29: 48:e0:53:0e:58:95:9a:0b:cc:bb:e4:98:53:56:e0: f3:d7:84:08:3d:22:a9:6f:e3:66:6b:be:c1:8e:3b: 7f:5d:01:6a:38:f6:8c:ee:9a:f1:9a:c6:af:21:60: be:df:f8:0a:5c:62:38:85:c4:2f:9c:dc:1a:c9:bd: ad:3d:19:5a:d5:3c:c8:fc:03:30:8c:52:42:e8:63: c0:96:21:d8:2b:2e:42:51:65:90:92:6f:f9:b9:4b: 79:7d:cd:07:b6:fd:01:1e:d0:63:2a:5a:31:bf:d5: 4e:32:da:78:d5:4c:08:23:a9:fc:c2:86:5c:bc:d9: 74:f1:43:c6:43:c2:9a:f4:40:07:75:fd:6f:e9:be: 7f:68:85:83:62:a3:78:55:e7:57:7a:f0:4b:99:29: b7:c7:67:f9:c7:37:0c:7a:be:f9:49:6b:03:d8:62: c5:82:85:10:d9:3c:9b:9a:c5:2d:ba:a3:4b:14:de: 4a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DE:25:57:58:CF:B1:B4:09:A0:35:15:CD:C2:54:6B:B5:0C:D8:7C X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c5:d7:5f:b6:c4:02:61:0f:06:79:73:be:c9:e8:2d:4c:16: 16:b2:8e:4c:f8:49:b9:37:c3:ee:8a:5a:28:cd:a3:a8:ca:ba: 27:cd:d8:67:0d:ef:34:56:e9:55:8a:be:00:7b:47:d3:a0:ad: 59:74:0b:d1:05:c6:37:b0:11:f5:cf:ad:2f:55:e8:e9:e5:8b: cd:89:16:8a:4c:71:ac:90:2e:51:f6:1c:b9:07:6d:3f:aa:bb: 8b:bc:01:bb:b0:6e:a9:74:1c:16:29:14:84:72:4e:b5:46:df: bc:98:65:04:ca:8e:f2:f7:fc:da:dc:8e:6a:33:b7:6c:17:71: 76:c3:92:3c:8f:9b:19:71:d7:65:1b:4a:b4:6b:a8:7a:61:be: 2c:65:87:48:f3:76:77:db:e6:91:fd:c7:29:31:eb:c2:05:93: 21:6e:40:88:44:e7:24:65:86:99:6f:c4:0d:6d:f9:84:ba:af: 81:78:45:53:d6:40:dd:43:a1:1e:27:04:bd:2d:1d:73:16:42: 2d:ba:86:75:a7:bd:c0:65:4f:34:53:e0:b0:2a:f5:4b:8d:ed: 84:a4:6d:dc:bb:9f:13:b6:98:cd:4a:f2:42:7b:42:3b:4a:34: a1:0c:1b:b7:da:8f:9c:ff:0c:34:cc:a6:5c:91:27:9a:40:85: 7f:4d:56:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjUxMTA0MTYwODI5WhcNMjUxMTExMTYwODI5WjAYMRYwFAYD VQQDEw02OTBhMjRmZC02NzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpBgw0xQEaE1hjP1LlDwqwhiLWTF8JIoLmlh4nCeu94hMfpJrVnFYmbqln2Z PpiLCy2dT4cwLI8BGHDYTdo6in1cCaej/GAwfylI4FMOWJWaC8y75JhTVuDz14QI PSKpb+Nma77Bjjt/XQFqOPaM7prxmsavIWC+3/gKXGI4hcQvnNwayb2tPRla1TzI /AMwjFJC6GPAliHYKy5CUWWQkm/5uUt5fc0Htv0BHtBjKloxv9VOMtp41UwII6n8 woZcvNl08UPGQ8Ka9EAHdf1v6b5/aIWDYqN4VedXevBLmSm3x2f5xzcMer75SWsD 2GLFgoUQ2TybmsUtuqNLFN5KAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHeJVdY z7G0CaA1Fc3CVGu1DNh8MB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqxddftsQCYQ8GeXO+yegtTBYWso5M+Em5N8PuiloozaOoyronzdhn De80VulVir4Ae0fToK1ZdAvRBcY3sBH1z60vVejp5YvNiRaKTHGskC5R9hy5B20/ qruLvAG7sG6pdBwWKRSEck61Rt+8mGUEyo7y9/za3I5qM7dsF3F2w5I8j5sZcddl G0q0a6h6Yb4sZYdI83Z32+aR/ccpMevCBZMhbkCIROckZYaZb8QNbfmEuq+BeEVT 1kDdQ6EeJwS9LR1zFkItuoZ1p73AZU80U+CwKvVLje2EpG3cu58TtpjNSvJCe0I7 SjShDBu32o+c/ww0zKZckSeaQIV/TVZa -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:29 2025 by rpki-client