$ rpki-client -vvf rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft File: lRaRgJV2AETnT6qlSX0GcwraXzI.mft (raw, json) Hash identifier: wtljcN1qEUOeunwA8KYraS9yNPFWpytq7aBrmtZvZ+Y= Subject key identifier: 33:94:38:D3:27:BE:DD:DE:6A:D4:BD:DE:99:59:25:7E:DB:C3:CE:56 Authority key identifier: 95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 Certificate issuer: /CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft Manifest number: 06A8 Signing time: Tue 04 Nov 2025 22:21:33 +0000 Manifest this update: Tue 04 Nov 2025 22:21:33 +0000 Manifest next update: Tue 11 Nov 2025 22:21:33 +0000 Files and hashes: 1: lRaRgJV2AETnT6qlSX0GcwraXzI.crl (hash: CaAGmBOc5nl1t2X+h1IW6c9ODMsLAZkyN+c9DBxQq6k=) 2: 589FBEDC860311EBAFE18309C4F9AE02.roa (hash: QPlmMaSOgFDznMyc1xMqSWCG5G0RLk70r7GmVWThnas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B334D, serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Validity Not Before: Nov 4 22:21:33 2025 GMT Not After : Nov 11 22:21:33 2025 GMT Subject: CN=690a7c6d-0a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c2:fb:1a:b6:58:cf:a6:88:52:21:96:d6:72: e1:04:05:1b:7e:4c:36:84:91:44:41:bb:3d:98:b6: c5:d8:10:15:6e:47:62:42:ff:13:4d:61:f7:c8:97: 74:4d:0d:c9:45:30:64:40:ea:26:34:55:00:1a:42: 50:52:eb:25:74:aa:c4:1c:41:7d:be:86:40:be:31: 22:25:39:19:1f:d6:a2:63:e5:a5:0d:7d:ca:a0:67: 3c:a9:89:59:6e:c9:c9:dc:71:32:3f:cf:fb:63:85: 9a:1d:bb:16:56:f9:01:17:64:56:e8:7a:bb:d4:a7: 4e:da:88:44:7b:ed:c9:bc:2b:92:1f:26:73:d2:f2: 26:6f:f4:ad:e2:c6:46:30:f2:d9:52:f5:db:99:23: 04:b3:e1:a5:48:ec:8c:a0:59:07:ab:00:e0:7a:bf: 2e:b2:37:2b:23:d1:41:d8:6d:d3:e4:80:3a:9d:06: 99:b8:6a:99:f3:60:4c:e8:1e:41:49:6e:af:df:a3: b1:0b:72:16:99:92:c4:18:10:fb:6c:98:c6:35:1a: 03:37:4f:c0:ab:38:93:57:33:48:0d:c1:e3:f9:78: d3:fc:82:75:e3:62:67:88:73:eb:fc:29:0d:db:54: 35:1a:51:0d:2b:1b:af:4b:2c:03:51:2f:b6:91:ad: 00:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:94:38:D3:27:BE:DD:DE:6A:D4:BD:DE:99:59:25:7E:DB:C3:CE:56 X509v3 Authority Key Identifier: keyid:95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:f3:7b:30:46:51:07:06:10:ae:9b:2f:f2:74:80:86:40:61: f2:5d:9b:9b:81:81:c9:50:a0:ef:e0:0f:08:f5:fa:43:19:bd: 28:2e:4c:70:30:fc:dc:89:0b:18:6c:b2:bb:72:b8:d7:2e:97: 60:a4:b1:86:12:50:8f:e0:d6:eb:3d:16:9a:fe:dc:9a:b8:62: 24:76:10:30:6d:c5:b4:a6:08:42:34:37:d4:d9:ec:84:e2:c5: ad:bb:3f:9b:45:f9:52:52:df:eb:a1:7b:3b:51:09:96:0e:f3: e4:69:07:7f:10:b5:71:fe:16:11:85:e5:50:06:bd:ea:64:df: c5:f2:3e:ed:90:dc:09:04:67:92:2d:d1:61:21:9f:92:17:f2: 7e:1b:03:19:87:4a:f3:32:c2:64:60:55:15:66:9c:89:90:98: 93:cc:9f:d8:a8:17:34:5b:0c:52:e6:cd:68:6d:b3:cc:4e:e1: 60:47:9e:b2:65:ad:75:60:a8:36:be:ce:07:63:3d:86:97:8f: 5f:04:60:0e:aa:0a:bd:a9:1b:66:11:00:df:a8:4c:34:2f:8f: 1c:01:30:01:1c:4f:4d:4f:5c:5a:58:1b:ae:2d:91:d1:aa:67: cd:4a:5c:aa:b8:15:75:59:80:5b:73:4d:b1:11:80:64:92:52: b3:ab:03:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMzNEQxMTAvBgNVBAUTKDk1MTY5MTgwOTU3NjAwNDRFNzRGQUFBNTQ5N0QwNjcz MEFEQTVGMzIwHhcNMjUxMTA0MjIyMTMzWhcNMjUxMTExMjIyMTMzWjAYMRYwFAYD VQQDEw02OTBhN2M2ZC0wYTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sL7GrZYz6aIUiGW1nLhBAUbfkw2hJFEQbs9mLbF2BAVbkdiQv8TTWH3yJd0 TQ3JRTBkQOomNFUAGkJQUusldKrEHEF9voZAvjEiJTkZH9aiY+WlDX3KoGc8qYlZ bsnJ3HEyP8/7Y4WaHbsWVvkBF2RW6Hq71KdO2ohEe+3JvCuSHyZz0vImb/St4sZG MPLZUvXbmSMEs+GlSOyMoFkHqwDger8usjcrI9FB2G3T5IA6nQaZuGqZ82BM6B5B SW6v36OxC3IWmZLEGBD7bJjGNRoDN0/AqziTVzNIDcHj+XjT/IJ142JniHPr/CkN 21Q1GlENKxuvSywDUS+2ka0A7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOUONMn vt3eatS93plZJX7bw85WMB8GA1UdIwQYMBaAFJUWkYCVdgBE50+qpUl9BnMK2l8y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzM0RC8yN0U4NjFEODg1 RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFFVG5UNnFsU1gwR2N3cmFY ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSYVJnSlYyQUVUblQ2cWxTWDBHY3dyYVh6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzM0RC8yN0U4NjFEODg1RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFF VG5UNnFsU1gwR2N3cmFYekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy83swRlEHBhCumy/ydICGQGHyXZubgYHJUKDv4A8I9fpDGb0oLkxw MPzciQsYbLK7crjXLpdgpLGGElCP4NbrPRaa/tyauGIkdhAwbcW0pghCNDfU2eyE 4sWtuz+bRflSUt/roXs7UQmWDvPkaQd/ELVx/hYRheVQBr3qZN/F8j7tkNwJBGeS LdFhIZ+SF/J+GwMZh0rzMsJkYFUVZpyJkJiTzJ/YqBc0WwxS5s1obbPMTuFgR56y Za11YKg2vs4HYz2Gl49fBGAOqgq9qRtmEQDfqEw0L48cATABHE9NT1xaWBuuLZHR qmfNSlyquBV1WYBbc02xEYBkklKzqwNs -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:30 2025 by rpki-client