$ rpki-client -vvf rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft File: lAjp17bOuDTKkJAeRXhgEMBpwys.mft (raw, json) Hash identifier: 23+KCRvPtfgwwACTlp4ME25KmVVG3Qs+ks1dQtG7Nps= Subject key identifier: 6E:EB:14:4B:88:11:2C:D3:14:9C:37:16:E1:AC:ED:8E:D2:0F:90:B7 Authority key identifier: 94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B Certificate issuer: /CN=A91A394B/serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft Manifest number: 0188 Signing time: Mon 03 Nov 2025 03:34:17 +0000 Manifest this update: Mon 03 Nov 2025 03:34:17 +0000 Manifest next update: Mon 10 Nov 2025 03:34:17 +0000 Files and hashes: 1: lAjp17bOuDTKkJAeRXhgEMBpwys.crl (hash: iCLls3HcAg0VWFMLvwSunAc1dAGYMrgbQpDRpAmLjCE=) 2: 6015E82861B411EEBAA6AD59C4F9AE02.roa (hash: LwGVKFP/xTdHf/wYi8eVp6yJDAuRI5jefu1jxHK93RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A394B, serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Validity Not Before: Nov 3 03:34:17 2025 GMT Not After : Nov 10 03:34:17 2025 GMT Subject: CN=690822b9-3176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bc:42:eb:f3:0f:56:ca:c4:f0:ef:de:bc:8a: 42:80:0f:b6:87:e2:2b:49:27:66:a2:95:b4:c3:e7: fe:ad:9f:43:ad:68:e1:d6:20:11:3f:89:ab:1b:90: 14:df:a9:28:c3:ac:97:c0:b6:4c:a0:e2:01:6f:80: 3d:ff:c8:17:b2:f7:a2:6b:62:cf:4b:a7:71:43:5f: 8c:b9:b5:fd:91:64:86:49:24:41:ea:d2:fe:e6:c4: 15:22:2c:a4:ba:ce:a3:20:0b:bc:12:33:68:d2:84: be:1c:87:7e:a1:28:39:9b:13:19:6c:b5:8e:06:1a: a6:34:eb:88:75:68:4e:9e:3d:b3:ea:02:c5:eb:58: 69:5d:2f:84:65:d0:ea:bd:a5:f0:2d:91:f1:aa:e9: fb:11:b4:e6:de:c8:b8:db:ec:f6:11:ea:9d:4b:8e: 58:b4:40:e3:06:42:43:1b:a1:51:e9:ae:65:4f:2d: 5c:52:7d:9f:2c:93:37:b1:78:d5:7d:39:06:f8:47: d2:45:60:6d:43:c9:12:c8:71:5a:9e:d6:1e:68:d5: 54:0d:f7:42:aa:5c:43:47:c2:a6:9d:f0:80:2f:9a: a7:32:64:5a:64:af:9d:37:da:e7:ef:b6:71:f7:5c: 82:c7:1d:37:d4:e7:e0:f1:8d:16:cc:a0:1a:ef:a0: 11:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:EB:14:4B:88:11:2C:D3:14:9C:37:16:E1:AC:ED:8E:D2:0F:90:B7 X509v3 Authority Key Identifier: keyid:94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f0:f9:13:89:3e:ec:55:16:ee:be:84:3c:2b:e2:f2:7e:48: ae:9b:2d:75:26:9f:c3:d0:1d:5d:3f:ae:84:42:b3:97:b2:21: e3:2b:3c:47:67:3a:23:a7:12:1e:cd:9f:d4:48:5b:35:0b:a7: cc:79:6f:0e:3e:d6:3c:31:18:9e:d8:aa:c8:71:8d:3e:bc:01: ab:1d:23:df:aa:a9:a2:74:c3:42:fa:09:a6:8a:5b:89:10:97: bc:d6:51:d1:f8:bf:f8:27:1f:90:2a:71:e7:57:f6:69:2d:fb: 44:1f:3e:06:00:9a:b9:ce:20:40:ae:f9:5b:9e:ba:85:55:96: e8:b6:79:da:29:64:48:f2:78:f5:04:fb:57:cf:41:34:c5:0b: 25:8d:9c:00:3e:29:90:53:69:d7:ba:a8:88:6f:f6:cc:fb:fd: 4f:fd:51:70:62:cd:26:e1:bf:c2:60:6b:83:72:1a:eb:b6:18: 9a:2d:1a:8f:82:41:e1:db:d8:7e:b5:f4:28:55:89:68:1f:61: 97:92:a4:4e:29:a4:a0:67:6d:ac:97:86:1f:7f:79:11:84:6b: b3:70:f5:df:fa:bc:9c:3b:59:de:65:60:f6:b8:f3:ea:80:d7: d3:fc:68:ff:1b:79:7c:4e:12:38:7f:c3:02:58:53:02:33:d5: ee:7f:3d:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NEIxMTAvBgNVBAUTKDk0MDhFOUQ3QjZDRUI4MzRDQTkwOTAxRTQ1Nzg2MDEw QzA2OUMzMkIwHhcNMjUxMTAzMDMzNDE3WhcNMjUxMTEwMDMzNDE3WjAYMRYwFAYD VQQDEw02OTA4MjJiOS0zMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LxC6/MPVsrE8O/evIpCgA+2h+IrSSdmopW0w+f+rZ9DrWjh1iARP4mrG5AU 36kow6yXwLZMoOIBb4A9/8gXsveia2LPS6dxQ1+MubX9kWSGSSRB6tL+5sQVIiyk us6jIAu8EjNo0oS+HId+oSg5mxMZbLWOBhqmNOuIdWhOnj2z6gLF61hpXS+EZdDq vaXwLZHxqun7EbTm3si42+z2EeqdS45YtEDjBkJDG6FR6a5lTy1cUn2fLJM3sXjV fTkG+EfSRWBtQ8kSyHFantYeaNVUDfdCqlxDR8KmnfCAL5qnMmRaZK+dN9rn77Zx 91yCxx031Ofg8Y0WzKAa76AR7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7rFEuI ESzTFJw3FuGs7Y7SD5C3MB8GA1UdIwQYMBaAFJQI6de2zrg0ypCQHkV4YBDAacMr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk0Qi8xMEFDQUIwQTYx QjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VEVEtrSkFlUlhoZ0VNQnB3 eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBanAxN2JPdURUS2tKQWVSWGhnRU1CcHd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk0Qi8xMEFDQUIwQTYxQjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VE VEtrSkFlUlhoZ0VNQnB3eXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF8PkTiT7sVRbuvoQ8K+Lyfkiumy11Jp/D0B1dP66EQrOXsiHjKzxH ZzojpxIezZ/USFs1C6fMeW8OPtY8MRie2KrIcY0+vAGrHSPfqqmidMNC+gmmiluJ EJe81lHR+L/4Jx+QKnHnV/ZpLftEHz4GAJq5ziBArvlbnrqFVZbotnnaKWRI8nj1 BPtXz0E0xQsljZwAPimQU2nXuqiIb/bM+/1P/VFwYs0m4b/CYGuDchrrthiaLRqP gkHh29h+tfQoVYloH2GXkqROKaSgZ22sl4Yff3kRhGuzcPXf+rycO1neZWD2uPPq gNfT/Gj/G3l8ThI4f8MCWFMCM9Xufz1X -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:44 2025 by rpki-client