$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: oX5tLZ/6ereflp3Jj0bbwHpD0Ap9L3SzDc4bSiWv2q4= Subject key identifier: 58:F8:B8:F4:AF:6F:C8:02:8B:FC:13:BE:2E:60:96:C1:41:4C:E6:8B Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: CF Signing time: Mon 03 Nov 2025 05:43:06 +0000 Manifest this update: Mon 03 Nov 2025 05:43:06 +0000 Manifest next update: Mon 10 Nov 2025 05:43:06 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: Y8K+RaHKfixjK2lmPQt7C/UQxV4p/gmojyGzma/0FD4=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: ItObitSQLkGH+talVc8PNR7Z2o8Aby5tjfREkgGvzVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Nov 3 05:43:06 2025 GMT Not After : Nov 10 05:43:06 2025 GMT Subject: CN=690840ea-9960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:57:a6:4a:99:6b:98:86:9e:36:42:83:5d:09: dd:fb:c2:12:c9:08:01:3e:a6:a3:19:ba:a3:df:8f: 53:a0:19:61:da:ee:ae:79:b1:23:4d:ea:0b:b3:83: a6:5d:ca:a3:cf:c7:99:c3:57:b0:76:9c:6c:bc:86: 3a:dc:a4:b2:6c:05:7f:0d:df:39:8b:35:2d:3b:37: 97:b8:b4:13:23:fd:cf:32:c3:96:2a:17:f1:1e:59: 63:6c:b0:c6:4b:af:66:b4:c2:10:53:c2:ee:6c:cd: ec:4e:a1:86:78:fe:fa:5a:38:42:02:65:21:bf:50: 8b:ea:ba:3f:e7:9d:3f:d3:27:43:36:91:b8:21:06: 70:c4:02:c5:7c:68:ac:32:b4:d2:5a:49:43:a2:56: 52:9b:a3:3c:5e:71:91:48:6b:99:1f:0c:fa:d4:e8: 05:9a:06:a1:a8:e1:57:22:74:ed:08:e1:55:38:51: be:e2:26:0a:ba:ec:64:59:1a:8a:76:7e:03:f1:2e: ee:d4:e1:cf:e7:00:3d:ea:f1:dc:75:63:14:17:3b: a0:c4:9a:70:c5:6d:39:d6:a7:34:7f:33:4b:d6:55: d3:61:2c:8d:8b:50:e8:a7:86:2c:3a:0f:c8:d7:f9: 1b:51:bf:32:cc:d5:bb:e7:4e:ef:f3:22:de:22:9b: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F8:B8:F4:AF:6F:C8:02:8B:FC:13:BE:2E:60:96:C1:41:4C:E6:8B X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f3:98:98:f7:a0:95:22:49:72:04:4e:06:69:a2:35:ed:fb: 67:96:83:c8:b1:23:0d:a9:a4:84:8e:95:4e:92:60:c7:89:74: 4f:3e:9b:df:4d:dd:9d:c7:3b:25:00:65:9c:ea:c5:68:75:ec: 21:68:80:67:11:b1:6c:25:8a:fd:12:0b:01:26:b5:0a:a8:ac: 8c:6e:21:80:e8:bd:5b:2e:c0:41:84:b5:95:d8:31:ed:d6:21: 09:cc:54:bf:db:c9:90:ea:7a:a5:e3:e5:07:2c:69:65:55:70: 1b:2c:a1:29:0a:9e:8c:da:77:2e:01:9e:8e:3b:93:2c:80:04: bf:9b:9d:36:17:63:e2:5a:00:06:dc:92:f3:7c:07:90:51:ad: 64:4d:ff:b5:74:39:75:a9:88:1a:a4:3e:ed:3f:fd:5b:e2:9f: ab:db:1c:58:3b:b8:e7:43:1d:a8:2f:5a:f4:70:23:16:19:46: 17:d8:bc:6f:14:3b:03:cc:58:d9:1e:d6:89:a8:ac:b5:39:f3: be:1c:0f:ed:65:af:0f:63:59:24:93:68:03:01:f2:05:59:3a: 76:9b:29:4b:e5:39:0f:43:08:49:5b:b7:ec:27:74:61:81:6e: 89:e5:b5:83:37:0d:d4:50:d0:c1:18:48:cd:3a:ad:a9:4b:7b: 88:83:ae:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUxMTAzMDU0MzA2WhcNMjUxMTEwMDU0MzA2WjAYMRYwFAYD VQQDEw02OTA4NDBlYS05OTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFemSplrmIaeNkKDXQnd+8ISyQgBPqajGbqj349ToBlh2u6uebEjTeoLs4Om Xcqjz8eZw1ewdpxsvIY63KSybAV/Dd85izUtOzeXuLQTI/3PMsOWKhfxHlljbLDG S69mtMIQU8LubM3sTqGGeP76WjhCAmUhv1CL6ro/550/0ydDNpG4IQZwxALFfGis MrTSWklDolZSm6M8XnGRSGuZHwz61OgFmgahqOFXInTtCOFVOFG+4iYKuuxkWRqK dn4D8S7u1OHP5wA96vHcdWMUFzugxJpwxW051qc0fzNL1lXTYSyNi1Dop4YsOg/I 1/kbUb8yzNW7507v8yLeIpuJmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj4uPSv b8gCi/wTvi5glsFBTOaLMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB85iY96CVIklyBE4GaaI17ftnloPIsSMNqaSEjpVOkmDHiXRPPpvf Td2dxzslAGWc6sVodewhaIBnEbFsJYr9EgsBJrUKqKyMbiGA6L1bLsBBhLWV2DHt 1iEJzFS/28mQ6nql4+UHLGllVXAbLKEpCp6M2ncuAZ6OO5MsgAS/m502F2PiWgAG 3JLzfAeQUa1kTf+1dDl1qYgapD7tP/1b4p+r2xxYO7jnQx2oL1r0cCMWGUYX2Lxv FDsDzFjZHtaJqKy1OfO+HA/tZa8PY1kkk2gDAfIFWTp2mylL5TkPQwhJW7fsJ3Rh gW6J5bWDNw3UUNDBGEjNOq2pS3uIg65Z -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:05 2025 by rpki-client