$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: 4ok3VMxysr16IVGrcBK2Bq2c9m6kaEQdXdKOEqnzyNc= Subject key identifier: 6B:68:35:F4:A3:04:BB:4D:5D:A9:9C:CA:E9:9A:D2:96:88:EB:EE:64 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0654 Signing time: Tue 04 Nov 2025 22:46:43 +0000 Manifest this update: Tue 04 Nov 2025 22:46:43 +0000 Manifest next update: Tue 11 Nov 2025 22:46:43 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: d8ijjhHDRXEbGzjq7Xi49ntEwAr4DyYgciaIGcvxO58=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Nov 4 22:46:43 2025 GMT Not After : Nov 11 22:46:43 2025 GMT Subject: CN=690a8253-c952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:40:75:62:07:bb:ba:6c:e2:3a:f2:12:16: 45:35:be:91:a0:81:eb:b1:04:0e:98:9b:da:26:7d: 09:46:62:f2:b1:40:31:bc:7e:98:a5:b3:a6:2e:fc: 31:bf:87:35:5f:92:48:1d:7d:80:ad:01:b2:70:04: 75:a5:1e:7c:1b:b7:78:4b:8d:f5:c8:98:7b:3b:15: ba:75:b9:b4:7e:e2:f3:71:30:0b:6a:a3:42:4f:19: 0f:50:ba:f7:4a:90:22:86:56:77:59:e5:89:65:aa: 48:ac:f2:e9:a1:57:20:2f:c1:a0:12:0f:11:b7:c4: ca:a7:c8:45:99:bf:fe:99:a9:74:44:c0:1f:c3:f5: 7d:8f:05:32:6c:17:4a:80:bf:fd:c8:76:8c:d9:dc: b0:b3:84:59:39:5b:79:b8:b1:84:28:68:53:7a:d8: ee:dc:e4:59:20:74:63:c0:9a:44:e6:08:bf:4d:bf: ad:f3:71:13:b4:cb:dd:e3:d5:97:42:42:71:67:84: c3:5f:5e:97:bb:f1:ca:6a:32:f2:04:11:c4:5c:e9: b1:53:7b:43:af:91:16:17:91:62:bf:e4:7a:28:30: 9a:1b:10:37:ab:e9:95:eb:ae:53:51:02:3d:6a:8c: 50:36:38:51:80:13:69:00:e1:26:16:98:c7:3f:1e: 8c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:68:35:F4:A3:04:BB:4D:5D:A9:9C:CA:E9:9A:D2:96:88:EB:EE:64 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:36:57:fe:f0:ab:fb:92:ca:f2:a6:02:99:b5:d3:50:d3:19: a0:56:03:f7:de:d7:5c:d8:7b:42:d5:ba:ca:45:ee:70:d3:6c: a5:40:91:e7:aa:74:84:1d:28:80:f9:7f:1e:07:07:58:17:58: 02:dd:0f:c9:00:ca:14:87:37:34:fc:a7:8e:84:13:14:b4:47: c8:52:b3:19:f4:88:4f:22:a4:73:ae:bd:3c:ca:eb:5d:a4:4d: ab:59:a6:a6:4d:42:f1:b4:88:0e:2c:5e:74:91:b0:88:2b:c3: 9f:ac:90:a3:11:2e:1b:cd:1a:d1:c3:1c:6a:7a:32:c0:12:cf: fe:20:e9:82:55:b4:a0:f7:f2:4e:60:f6:b3:8a:d0:b6:6f:f5: 29:19:9c:e0:f9:38:b3:d8:5a:68:b9:39:ff:d6:33:10:85:39: 1b:f0:16:01:d2:63:13:41:20:41:25:c2:5e:44:08:5e:01:8d: f1:eb:49:3a:03:ad:f7:58:86:3d:f5:a2:c2:d9:9a:49:df:d8: 00:05:34:a2:5e:51:f9:44:20:a8:96:85:66:d0:bc:9e:07:2f: 16:40:b7:ac:01:13:3f:72:b1:ae:d9:e5:96:1b:0b:1e:27:6d: d9:a6:9c:10:70:f9:92:a9:86:1a:b1:6e:a8:d3:de:26:20:c0: ed:7c:34:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUxMTA0MjI0NjQzWhcNMjUxMTExMjI0NjQzWjAYMRYwFAYD VQQDEw02OTBhODI1My1jOTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoFAdWIHu7ps4jryEhZFNb6RoIHrsQQOmJvaJn0JRmLysUAxvH6YpbOmLvwx v4c1X5JIHX2ArQGycAR1pR58G7d4S431yJh7OxW6dbm0fuLzcTALaqNCTxkPULr3 SpAihlZ3WeWJZapIrPLpoVcgL8GgEg8Rt8TKp8hFmb/+mal0RMAfw/V9jwUybBdK gL/9yHaM2dyws4RZOVt5uLGEKGhTetju3ORZIHRjwJpE5gi/Tb+t83ETtMvd49WX QkJxZ4TDX16Xu/HKajLyBBHEXOmxU3tDr5EWF5Fiv+R6KDCaGxA3q+mV665TUQI9 aoxQNjhRgBNpAOEmFpjHPx6MYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtoNfSj BLtNXamcyuma0paI6+5kMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxNlf+8Kv7ksrypgKZtdNQ0xmgVgP33tdc2HtC1brKRe5w02ylQJHn qnSEHSiA+X8eBwdYF1gC3Q/JAMoUhzc0/KeOhBMUtEfIUrMZ9IhPIqRzrr08yutd pE2rWaamTULxtIgOLF50kbCIK8OfrJCjES4bzRrRwxxqejLAEs/+IOmCVbSg9/JO YPazitC2b/UpGZzg+Tiz2FpouTn/1jMQhTkb8BYB0mMTQSBBJcJeRAheAY3x60k6 A633WIY99aLC2ZpJ39gABTSiXlH5RCColoVm0LyeBy8WQLesARM/crGu2eWWGwse J23ZppwQcPmSqYYasW6o094mIMDtfDR0 -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:29 2025 by rpki-client