$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: u0fnfUO3yupQZ9+gu/mrbap/49EIAhd4Hk5Yl1nfdWo= Subject key identifier: 9D:57:BC:12:9E:1B:76:55:20:81:84:F5:15:CF:42:77:EF:D4:C1:51 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 78 Signing time: Mon 27 Oct 2025 09:20:00 +0000 Manifest this update: Mon 27 Oct 2025 09:20:00 +0000 Manifest next update: Mon 03 Nov 2025 09:20:00 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: 0o4zqSFdJkcNS+RNaClOyFdZkADnZM64XqoSz/xICf4=) 2: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 2JnfU/Mgp4zZ19X7p0k0eCs4HoUbNZM1uROYF0brrz8=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Oct 27 09:20:00 2025 GMT Not After : Nov 3 09:20:00 2025 GMT Subject: CN=68ff3940-02b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:86:f1:03:15:8f:67:69:3b:a8:0e:06:e0:af: 87:b1:8a:2a:a4:8d:87:7a:c2:1a:31:dc:b7:07:a2: e7:4a:f8:0a:41:6f:9a:a2:3a:e3:ec:c0:ff:af:19: 16:17:3a:e4:cf:b3:d2:22:64:48:03:d4:65:66:31: fb:3b:c8:75:01:e7:25:db:04:30:d7:4a:41:bb:f1: 98:65:6c:a5:9c:c1:d5:d2:80:92:cd:8a:2b:c0:67: a6:28:8e:0a:d8:d5:44:b9:4a:02:c6:be:d3:cf:3d: 79:0d:65:60:a2:66:68:f3:25:ba:66:66:cc:93:a8: 0b:af:65:f7:3b:e2:2f:90:61:06:bf:f6:28:91:2a: ef:f7:3d:0d:59:47:0a:9c:e3:71:39:76:6c:ab:30: 9f:f7:dc:ed:ae:5b:60:b0:2f:f2:0c:05:db:e8:e6: 72:00:9a:69:88:74:2f:fd:12:94:b0:e4:de:c6:19: ff:76:92:17:6c:63:44:9f:4e:29:cd:8c:8a:cc:bb: 9c:5c:6d:83:5c:34:5b:8b:68:92:75:3e:d6:a8:a8: 2a:df:58:cd:93:2d:94:57:6e:2c:81:13:74:f7:41: 37:b4:4b:92:e8:d9:6a:f3:ce:a1:78:ed:6e:f2:ba: af:43:4e:68:a7:72:6a:ce:d9:cd:6c:72:ca:ee:c4: 7d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:57:BC:12:9E:1B:76:55:20:81:84:F5:15:CF:42:77:EF:D4:C1:51 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:4b:cf:f3:55:4c:a5:f4:18:de:94:50:2b:63:38:36:39:7c: c9:1d:a9:ed:94:d1:f6:d0:4c:f4:36:2c:17:3b:6c:47:55:be: a8:a1:98:ce:b1:92:4b:9f:0d:20:c7:63:12:85:2f:4c:10:ab: 14:b4:31:8d:bf:9f:fe:64:b2:39:2b:bf:1e:01:f8:1c:b0:c3: 27:de:f4:b2:56:d6:dd:cb:05:29:d4:01:87:b6:71:03:9d:f7: 5d:98:96:11:0b:4d:19:2c:44:24:25:a3:97:6c:4e:b4:63:62: 93:61:a0:17:fd:2e:47:e8:38:40:af:ed:17:d9:7e:9c:3d:d8: e3:c0:92:c8:7a:4b:7b:c2:e1:3e:b1:6e:64:b0:f6:ad:8e:9f: 37:6a:f7:b3:3a:fa:38:78:10:47:85:ff:ff:a8:0f:d1:25:01: 2d:17:26:af:7e:fb:7c:d2:95:a2:09:22:2b:38:2b:74:23:99: a9:ad:79:73:2b:20:fb:b4:2e:b1:d9:67:58:a9:02:ba:ae:e7: ad:1a:6b:bd:c0:48:7a:b7:70:f4:0e:e9:ea:a8:8f:2a:1d:d7: 12:9c:3a:45:49:b2:59:af:86:5b:1f:34:a0:dd:b2:1f:41:d1: e9:c9:e8:9d:33:f2:29:a5:f9:c0:17:f4:d1:01:16:3d:d3:eb: 51:da:6e:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjUxMDI3MDkyMDAwWhcNMjUxMTAzMDkyMDAwWjAYMRYwFAYD VQQDEw02OGZmMzk0MC0wMmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0obxAxWPZ2k7qA4G4K+HsYoqpI2HesIaMdy3B6LnSvgKQW+aojrj7MD/rxkW Fzrkz7PSImRIA9RlZjH7O8h1Aecl2wQw10pBu/GYZWylnMHV0oCSzYorwGemKI4K 2NVEuUoCxr7Tzz15DWVgomZo8yW6ZmbMk6gLr2X3O+IvkGEGv/YokSrv9z0NWUcK nONxOXZsqzCf99ztrltgsC/yDAXb6OZyAJppiHQv/RKUsOTexhn/dpIXbGNEn04p zYyKzLucXG2DXDRbi2iSdT7WqKgq31jNky2UV24sgRN090E3tEuS6Nlq886heO1u 8rqvQ05op3JqztnNbHLK7sR9BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1XvBKe G3ZVIIGE9RXPQnfv1MFRMB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjS8/zVUyl9BjelFArYzg2OXzJHantlNH20Ez0NiwXO2xHVb6ooZjO sZJLnw0gx2MShS9MEKsUtDGNv5/+ZLI5K78eAfgcsMMn3vSyVtbdywUp1AGHtnED nfddmJYRC00ZLEQkJaOXbE60Y2KTYaAX/S5H6DhAr+0X2X6cPdjjwJLIekt7wuE+ sW5ksPatjp83avezOvo4eBBHhf//qA/RJQEtFyavfvt80pWiCSIrOCt0I5mprXlz KyD7tC6x2WdYqQK6ruetGmu9wEh6t3D0DunqqI8qHdcSnDpFSbJZr4ZbHzSg3bIf QdHpyeidM/IppfnAF/TRARY90+tR2m6F -----END CERTIFICATE-----Generated at Tue Oct 28 18:44:52 2025 by rpki-client