$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: RH5sHDuLQb8pLUyKPvnwsDcLFdQE9CqvP+dKN58pnTw= Subject key identifier: 4F:E2:D4:C1:6D:17:1E:A8:A0:25:5C:EE:E8:5B:18:95:48:94:31:20 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 037D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 02F4 Signing time: Sat 25 Oct 2025 05:36:14 +0000 Manifest this update: Sat 25 Oct 2025 05:36:13 +0000 Manifest next update: Sat 01 Nov 2025 05:36:13 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: PZo3nmQwx6UtwS+wh2tRzWtgh5cBrTDgpxFv3NYVTTo=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: AmuwqsBSe7hIWLuijSaz8cznV1ExxkSwedidAfhqBys=) 3: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: rRStCv6LwOYU9m23O/Ra+02r0H7+4ZuKu4MCypTDG7U=) 4: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: pHPkNw6sk+jwMGQiwSPICHgSAbGU9rT4WcKSGwmaJf8=) 5: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: gDHotda1hxuaNQN7h9M6AxxJGfzXAR/0C3RpbJSgmtE=) 6: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: dnj6MgMu2bT8eksz/sRKoRkxxyYLeHmRQBIr9G3sHfI=) 7: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: LLSWtZdvzPT4rXQVRRto3DLsyoR671syCJPRSB+ppjE=) 8: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: eOBcL+ti86qxxG4GZER5GjPBmSZhgS6o++eTvbnH834=) 9: E879EE7C144111EFB247B936C4F9AE02.roa (hash: kWS/r/1uvE2uh33BQhnK7TE/fxU21h0Qyka9IpjmAOo=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: 2BRZTVSl8BpcjXe5d2W/ue5qmKPhQHNXNMprHWOL7Cw=) 11: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: VtJthTtz/+ABAcSwhrIYrg5dkmdk8ZYvZhD7Gwr5Rag=) 12: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: l/w2LsKQqDZ2CCn5jWgOIAF0bJGTxkpNnwUlAl6Xl+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 05:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Oct 25 05:36:13 2025 GMT Not After : Nov 1 05:36:13 2025 GMT Subject: CN=68fc61cd-617d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:9a:f0:d0:3d:ad:2b:48:23:8e:5e:ee:a5: ae:30:d4:32:44:ae:35:19:53:74:9e:71:f4:8b:88: b8:0d:d3:3e:a3:60:24:03:76:cc:76:32:36:57:0e: 8c:ca:c2:aa:d6:db:bc:ab:f8:e4:c7:f5:8c:54:40: e7:4f:4c:11:ee:ef:bf:c6:b7:7c:b1:75:89:57:43: 44:b8:7b:69:ed:f2:81:aa:f6:dd:c5:21:b2:7b:b8: 1b:a0:be:ac:c1:24:01:aa:0e:43:af:e7:c7:b3:26: 68:3e:30:db:0c:31:22:93:fd:02:f3:ce:29:96:19: 8d:ea:fd:33:11:8d:f8:e6:aa:7f:ec:f3:f5:0a:14: 9a:dd:a9:f4:eb:df:9e:71:bc:60:58:f3:b2:75:3a: 0c:33:0f:91:8d:09:e1:d8:e7:43:a3:35:76:3e:f7: 5e:0e:9f:b4:e4:6d:cf:9f:de:01:86:3a:fc:1c:d0: d5:22:c7:a6:b9:91:0c:f6:7b:6b:24:93:b3:7e:c1: c9:74:c3:e5:27:6c:48:7b:cf:08:3b:c1:d4:aa:36: d6:88:53:51:62:96:b8:10:54:7c:65:4c:ff:69:cc: 88:07:ff:89:0a:0e:b4:0f:ac:94:af:19:75:94:c9: 86:02:72:c9:d3:e0:4a:3c:aa:dc:67:c3:05:ba:61: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E2:D4:C1:6D:17:1E:A8:A0:25:5C:EE:E8:5B:18:95:48:94:31:20 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3a:3c:cc:3f:58:5b:29:f7:05:60:ba:34:6a:49:d7:ab:aa: 91:b1:13:c1:33:33:e1:63:a6:3c:16:39:b7:ce:e5:ab:a0:b7: 4d:51:f3:f4:07:22:05:77:5c:b0:d0:2b:32:0c:3f:71:f0:55: b8:4c:49:fc:31:38:b2:df:91:a6:bf:23:2d:d9:cf:31:20:fb: df:e9:74:11:05:61:39:a2:91:f6:76:18:30:85:19:e2:a2:bf: 4f:7f:ec:a2:14:dc:5e:14:ca:71:7e:61:9f:b4:ea:09:ae:87: b4:27:cc:73:58:34:9c:3b:0c:68:1c:b9:8a:99:8d:53:4d:db: 07:70:5d:4e:df:bc:dc:17:bc:09:72:f4:28:39:19:f2:b2:4c: 12:ca:9d:17:b9:74:89:f2:69:c0:02:31:2c:2e:ca:d1:ef:5d: fb:94:52:ab:0f:23:ed:9a:4e:23:22:dd:0c:f5:ed:32:a5:46: e1:29:d8:aa:5f:85:1a:c6:f4:12:ab:45:48:50:46:bd:73:fe: 0c:96:e4:90:5a:58:f0:6d:0c:27:03:f5:25:e2:5d:5b:b4:fc: c6:a5:ba:7b:ea:b7:47:36:be:d2:7f:b3:6d:c0:60:75:b0:49: f7:31:4c:27:fb:da:35:56:5e:62:ab:5f:11:20:57:18:24:20: 61:29:a6:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUxMDI1MDUzNjEzWhcNMjUxMTAxMDUzNjEzWjAYMRYwFAYD VQQDEw02OGZjNjFjZC02MTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgWa8NA9rStII45e7qWuMNQyRK41GVN0nnH0i4i4DdM+o2AkA3bMdjI2Vw6M ysKq1tu8q/jkx/WMVEDnT0wR7u+/xrd8sXWJV0NEuHtp7fKBqvbdxSGye7gboL6s wSQBqg5Dr+fHsyZoPjDbDDEik/0C884plhmN6v0zEY345qp/7PP1ChSa3an069+e cbxgWPOydToMMw+RjQnh2OdDozV2PvdeDp+05G3Pn94Bhjr8HNDVIsemuZEM9ntr JJOzfsHJdMPlJ2xIe88IO8HUqjbWiFNRYpa4EFR8ZUz/acyIB/+JCg60D6yUrxl1 lMmGAnLJ0+BKPKrcZ8MFumGNEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/i1MFt Fx6ooCVc7uhbGJVIlDEgMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHOjzMP1hbKfcFYLo0aknXq6qRsRPBMzPhY6Y8Fjm3zuWroLdNUfP0 ByIFd1yw0CsyDD9x8FW4TEn8MTiy35GmvyMt2c8xIPvf6XQRBWE5opH2dhgwhRni or9Pf+yiFNxeFMpxfmGftOoJroe0J8xzWDScOwxoHLmKmY1TTdsHcF1O37zcF7wJ cvQoORnyskwSyp0XuXSJ8mnAAjEsLsrR7137lFKrDyPtmk4jIt0M9e0ypUbhKdiq X4UaxvQSq0VIUEa9c/4MluSQWljwbQwnA/Ul4l1btPzGpbp76rdHNr7Sf7NtwGB1 sEn3MUwn+9o1Vl5iq18RIFcYJCBhKabK -----END CERTIFICATE-----Generated at Sat Oct 25 14:32:10 2025 by rpki-client