$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: H0Fbh/bVy8A5ArO6YxcYvkCrWDdxSk7iCj4amp/MNZA= Subject key identifier: 6F:39:A4:E5:2A:CA:EF:D6:D5:F9:34:50:08:F9:B7:FE:D4:9C:E0:62 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0BA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0B8F Signing time: Fri 24 Oct 2025 19:40:12 +0000 Manifest this update: Fri 24 Oct 2025 19:40:11 +0000 Manifest next update: Fri 31 Oct 2025 19:40:11 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: 3nT2xbDt6RfYM1LhqJUo3/lLOo1nkw8OdXSJIsaL/Go=) 2: 83407C26744C11F0B13EF277C4F9AE02.roa (hash: 5vDMHEqxZbdIA4ss4l4IIZRuHWQzVA0rRAeBvXbSbaI=) 3: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: eX92U/H+ZCVecCeGgTVqWhOCqzFSaTsYmsLKYsy4M8s=) 4: 843804BE744C11F0B13EF277C4F9AE02.roa (hash: KVcRx1AIexKUEoEWUnnAhnjFkWCaA/g6jhGPzAyzQQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Oct 24 19:40:11 2025 GMT Not After : Oct 31 19:40:11 2025 GMT Subject: CN=68fbd61b-f604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:90:76:19:fc:ce:1d:7e:4e:0b:5b:c2:21:87: 25:e0:8e:c8:7b:86:3c:8e:33:eb:87:c6:89:19:59: b3:a0:6d:2c:5f:5b:9d:bb:fa:f8:dd:1f:54:31:c8: 61:ea:a8:c2:d1:dc:e7:d2:34:a9:ff:29:5f:40:ed: 3e:17:91:e1:b4:e8:94:fe:ca:86:d6:7a:85:ce:c1: bb:71:55:ec:fd:89:72:dc:f1:1e:6d:bb:3d:27:af: 5f:97:2b:d9:a4:bf:5a:a1:3d:21:ae:92:72:63:de: 0b:f0:9b:90:1b:05:cb:fc:64:6b:3f:ce:51:e4:65: 59:d3:bb:cf:f4:38:7d:60:81:1c:0f:fe:0f:eb:59: dd:94:99:0f:c9:7d:cb:b9:32:7d:eb:f4:cf:ef:a2: fc:74:22:2c:41:10:a3:c5:64:0d:90:f4:ff:71:06: d9:cf:0f:d3:5f:da:77:78:e7:06:d9:fa:1b:44:cb: 1a:87:26:5f:ea:4c:98:18:bb:1a:64:73:f6:fc:a4: c9:11:52:76:1f:2b:df:ba:10:e7:f8:2d:1f:e2:52: a2:83:6f:4f:78:7b:36:6e:c6:f0:92:85:6a:1a:8c: 06:3b:44:b8:c8:1d:44:19:b3:65:68:b0:5c:05:5e: 00:db:f9:08:41:9b:24:13:4b:1c:dc:a4:e6:92:6a: bb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:39:A4:E5:2A:CA:EF:D6:D5:F9:34:50:08:F9:B7:FE:D4:9C:E0:62 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:ec:49:f0:74:7a:30:11:4f:e7:41:96:72:35:fa:f1:2f:ce: fd:a3:5f:33:40:a3:58:5d:c7:e3:bf:e1:0d:88:f6:47:2e:fc: 5a:88:a6:cc:36:e3:70:4d:44:7c:55:f7:0d:af:7d:37:37:33: 24:3a:16:90:83:f8:8a:d5:f9:a1:b4:c3:5a:c6:cf:76:cc:3f: 63:ac:d1:dd:4f:1a:00:9f:74:31:a3:c4:9d:10:8e:df:fd:c4: 9e:56:c3:14:5a:5b:9f:59:fa:57:f7:ac:22:a9:e5:fb:1d:13: e1:5e:7b:fd:48:35:82:c5:6b:f5:4f:5d:99:77:5b:dd:71:eb: e5:d1:25:38:81:49:65:55:eb:f5:db:25:a9:3c:ab:64:c9:c8: 0d:ee:0b:e2:f7:6f:17:e0:2c:47:0c:b4:20:12:62:5e:be:40: 4a:15:5d:25:77:b1:9f:38:d7:80:95:8d:06:26:46:dd:d8:3c: 18:61:0c:9d:ae:fb:80:02:a5:1c:71:6e:66:25:1e:b3:af:b0: 23:9f:9a:5a:38:75:84:91:67:13:58:c6:63:01:9f:a6:4d:86: 3b:8c:21:c1:ae:68:b9:04:c8:fb:ed:9e:ef:ab:fa:d7:53:11: 42:da:29:19:8f:b1:bd:e9:0d:d1:c2:60:49:0c:7b:9f:72:4d: fe:8d:a2:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUxMDI0MTk0MDExWhcNMjUxMDMxMTk0MDExWjAYMRYwFAYD VQQDEw02OGZiZDYxYi1mNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJB2GfzOHX5OC1vCIYcl4I7Ie4Y8jjPrh8aJGVmzoG0sX1udu/r43R9UMchh 6qjC0dzn0jSp/ylfQO0+F5HhtOiU/sqG1nqFzsG7cVXs/Yly3PEebbs9J69flyvZ pL9aoT0hrpJyY94L8JuQGwXL/GRrP85R5GVZ07vP9Dh9YIEcD/4P61ndlJkPyX3L uTJ96/TP76L8dCIsQRCjxWQNkPT/cQbZzw/TX9p3eOcG2fobRMsahyZf6kyYGLsa ZHP2/KTJEVJ2HyvfuhDn+C0f4lKig29PeHs2bsbwkoVqGowGO0S4yB1EGbNlaLBc BV4A2/kIQZskE0sc3KTmkmq7TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG85pOUq yu/W1fk0UAj5t/7UnOBiMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH7EnwdHowEU/nQZZyNfrxL879o18zQKNYXcfjv+ENiPZHLvxaiKbM NuNwTUR8VfcNr303NzMkOhaQg/iK1fmhtMNaxs92zD9jrNHdTxoAn3Qxo8SdEI7f /cSeVsMUWlufWfpX96wiqeX7HRPhXnv9SDWCxWv1T12Zd1vdcevl0SU4gUllVev1 2yWpPKtkycgN7gvi928X4CxHDLQgEmJevkBKFV0ld7GfONeAlY0GJkbd2DwYYQyd rvuAAqUccW5mJR6zr7Ajn5paOHWEkWcTWMZjAZ+mTYY7jCHBrmi5BMj77Z7vq/rX UxFC2ikZj7G96Q3RwmBJDHufck3+jaKX -----END CERTIFICATE-----Generated at Sat Oct 25 23:42:51 2025 by rpki-client