$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: jzyzPywX3xkagub937ou8FxgLfBF9zEk5NgHdqiyRGg= Subject key identifier: 73:52:D2:9D:03:83:2E:CE:9E:0E:17:A8:D8:6F:12:C6:07:5A:5A:3B Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 0824 Signing time: Sun 02 Nov 2025 20:47:27 +0000 Manifest this update: Sun 02 Nov 2025 20:47:26 +0000 Manifest next update: Sun 09 Nov 2025 20:47:26 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: DpdUxA5p/kDJZSbhNxV+hIwdpnxD7u70h9RmAMrPT+0=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: FrUF8k+q0iQX/Bos2myD8zLROjp2eOpyug9lyw9AGzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Nov 2 20:47:26 2025 GMT Not After : Nov 9 20:47:26 2025 GMT Subject: CN=6907c35e-594b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:67:5f:db:c8:6e:4b:f4:43:10:66:e3:35:a9: c2:04:cc:73:15:46:1e:db:c3:01:e6:b6:fc:ea:9e: d7:f4:f3:bd:dc:76:81:4e:ea:70:bc:e0:0d:f3:8d: 71:26:39:e4:44:f2:22:87:eb:d4:cb:24:74:ee:21: 81:b3:9e:dd:77:e9:49:97:b8:14:78:ba:4b:70:2e: c4:4a:e2:2c:e0:81:89:9b:f4:53:e9:e9:d2:3c:f2: 65:9b:dc:23:6b:bf:b6:0e:c4:b5:65:7f:af:3b:2d: e1:56:cd:89:b4:62:e4:71:ea:61:9f:02:85:b9:11: eb:20:e4:bd:ce:71:7e:f7:15:77:82:a9:10:83:c8: 03:5f:3a:55:9d:52:30:1c:d9:22:05:7f:0c:73:d3: ae:41:96:da:c1:90:75:55:4f:b1:4b:f7:74:15:b9: 2c:d8:6d:2a:a2:c3:77:88:21:aa:dd:8f:03:8c:87: 9c:45:f5:82:41:38:48:9e:22:30:6d:a2:08:c6:5a: 09:cc:2b:7b:c3:77:17:ce:0a:2c:e5:85:a5:ec:32: 73:69:89:81:58:5e:72:a0:24:bb:e9:78:cd:a8:28: da:db:12:48:33:2c:9c:3c:65:fc:33:2d:3b:53:7d: b4:15:0e:fb:0e:9a:be:7d:34:60:e4:0c:67:49:cb: ac:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:52:D2:9D:03:83:2E:CE:9E:0E:17:A8:D8:6F:12:C6:07:5A:5A:3B X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:e2:91:fc:4d:df:70:21:55:25:ff:4b:3e:61:84:1e:ed:55: e8:37:f9:95:cc:2a:9c:a2:90:0a:d0:d1:f3:68:f2:0c:29:1b: 13:7e:b5:22:ef:8b:ee:72:e3:e0:c8:0a:fe:f6:18:87:40:05: 6d:6f:56:06:ce:f0:48:d0:bc:86:91:a1:8f:99:76:65:65:35: 25:53:69:46:11:6b:5d:41:b4:2a:75:f6:62:40:ac:57:9e:c2: c5:5b:a1:1d:5f:26:fc:7c:ca:19:4e:b9:f8:34:97:a7:7e:1a: 93:7a:d2:a5:3e:2c:20:95:5d:85:f5:11:a0:c3:52:fc:6b:57: f8:2d:ea:60:c2:1e:9d:83:da:6f:16:7a:a5:3e:6f:df:5f:f7: a1:63:05:55:2b:7d:4d:ff:5a:bb:e3:b5:31:ad:74:a3:0f:02: 7b:6f:c4:90:c1:c0:4c:ec:2f:86:58:8c:e0:e8:73:1e:bf:86: 2c:4c:64:6a:e9:68:c5:d8:a5:65:98:3e:9e:4c:49:d8:a4:f1: c3:d6:f5:77:f4:bd:c5:6e:0f:58:b1:b9:f9:37:51:17:33:e6: 11:ea:e2:27:76:f4:37:22:fe:d5:68:34:df:7b:07:72:b1:7b: 16:17:90:1e:33:31:4f:e7:70:6d:d0:69:25:c9:2b:0b:43:a2: d0:d7:7a:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUxMTAyMjA0NzI2WhcNMjUxMTA5MjA0NzI2WjAYMRYwFAYD VQQDEw02OTA3YzM1ZS01OTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mdf28huS/RDEGbjNanCBMxzFUYe28MB5rb86p7X9PO93HaBTupwvOAN841x JjnkRPIih+vUyyR07iGBs57dd+lJl7gUeLpLcC7ESuIs4IGJm/RT6enSPPJlm9wj a7+2DsS1ZX+vOy3hVs2JtGLkcephnwKFuRHrIOS9znF+9xV3gqkQg8gDXzpVnVIw HNkiBX8Mc9OuQZbawZB1VU+xS/d0Fbks2G0qosN3iCGq3Y8DjIecRfWCQThIniIw baIIxloJzCt7w3cXzgos5YWl7DJzaYmBWF5yoCS76XjNqCja2xJIMyycPGX8My07 U320FQ77Dpq+fTRg5AxnScusYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNS0p0D gy7Ong4XqNhvEsYHWlo7MB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV4pH8Td9wIVUl/0s+YYQe7VXoN/mVzCqcopAK0NHzaPIMKRsTfrUi 74vucuPgyAr+9hiHQAVtb1YGzvBI0LyGkaGPmXZlZTUlU2lGEWtdQbQqdfZiQKxX nsLFW6EdXyb8fMoZTrn4NJenfhqTetKlPiwglV2F9RGgw1L8a1f4Lepgwh6dg9pv FnqlPm/fX/ehYwVVK31N/1q747UxrXSjDwJ7b8SQwcBM7C+GWIzg6HMev4YsTGRq 6WjF2KVlmD6eTEnYpPHD1vV39L3Fbg9Ysbn5N1EXM+YR6uIndvQ3Iv7VaDTfewdy sXsWF5AeMzFP53Bt0GklySsLQ6LQ13rN -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:58 2025 by rpki-client