$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: AszV7eXhOe/rDkx+b1E7fjxk5HBIqpxAs2HbdgtdbZI= Subject key identifier: 03:B5:53:A5:E4:FC:CA:B8:A7:2A:15:F9:71:5D:87:EC:19:25:42:5E Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: E0 Signing time: Sat 25 Oct 2025 09:19:16 +0000 Manifest this update: Sat 25 Oct 2025 09:19:16 +0000 Manifest next update: Sat 01 Nov 2025 09:19:16 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: 1zi8kY17BiV3ydlc0u6gnO4z6U3yyR25Mx2qeht+3pI=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: 5VNZ8rNXbQQKdKelf/v7rMupqWLx2zXfYFtsUljtzac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Oct 25 09:19:16 2025 GMT Not After : Nov 1 09:19:16 2025 GMT Subject: CN=68fc9614-5502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:74:dd:a7:ac:dc:57:91:fd:84:03:b0:92:5b: 11:36:cc:b3:2f:30:0c:e1:e4:9d:7f:6b:56:20:80: 8a:c8:be:cf:40:66:d0:be:11:b5:79:b2:7f:05:f8: a2:ba:53:c1:d1:38:3f:ad:1a:2c:be:1d:34:5c:71: ce:92:71:6e:2d:38:c3:44:00:dd:c5:20:3c:5e:70: db:96:8c:30:d4:b8:2e:20:b6:4b:3d:40:9a:ff:7c: 6c:93:4e:00:e6:7f:f9:27:e5:64:87:17:5a:f4:10: e9:23:5e:66:4c:04:15:18:47:cf:03:92:ef:9a:a2: 1e:1a:8a:82:85:b0:74:c7:9a:37:dc:ab:29:14:d0: 92:97:ab:5a:eb:e1:d7:07:f3:0b:81:58:14:1a:7f: 72:13:dc:7b:e9:df:c1:59:9a:15:07:10:29:c9:42: 14:fa:91:44:fd:13:a0:6e:ef:3d:5d:af:d6:5f:59: cd:d2:cf:24:f3:31:4c:61:72:d5:1a:48:d5:be:6c: 02:e8:af:84:c2:6b:57:bf:1e:10:de:dd:a0:07:04: c5:72:d1:b3:68:fd:92:60:ec:69:8f:2c:01:bf:45: d7:e9:3e:6b:7b:d8:bb:2c:9d:1e:f2:21:c8:26:21: 28:84:5d:ee:4d:4b:8c:7b:1a:26:b3:21:e9:58:5a: 72:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B5:53:A5:E4:FC:CA:B8:A7:2A:15:F9:71:5D:87:EC:19:25:42:5E X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:bb:49:6e:3d:1d:40:b0:ae:35:dd:bf:e5:4d:8d:5d:0e:3b: 52:2d:63:00:5f:cb:ee:1d:5a:ae:7c:4d:61:92:4b:70:76:79: fe:95:6c:3d:f3:ab:96:82:b2:20:b4:c3:6b:54:71:ac:46:4f: c5:26:20:0b:81:2c:a7:ee:43:6a:08:0b:17:14:72:d1:fe:44: 0e:64:c5:6e:bf:6a:72:43:d9:5f:b4:28:af:8d:7e:7a:cf:e3: c9:8c:1c:c7:d9:7d:f7:44:2e:33:71:c2:9c:7b:3e:64:48:47: f2:53:8b:92:d2:69:b9:19:da:87:68:e9:cc:fc:cc:d2:7a:ac: d3:cc:40:14:ab:d9:9f:e3:dd:ef:01:d0:c2:15:44:96:b7:ed: e1:dc:72:52:22:5f:13:ec:11:33:3e:0f:5f:e7:e1:1a:a4:38: 8c:2e:48:f2:a3:cd:be:04:10:27:ee:cd:b6:53:3f:9d:f7:bc: fc:d7:39:d1:38:d8:83:48:e2:4e:dc:d3:1d:5a:d1:82:ef:e2: e6:81:11:cd:d9:53:e0:f8:c8:4f:9d:cd:bf:ce:9c:c2:f5:89: 86:cf:61:6e:26:cc:88:bc:13:4a:dc:a4:1b:0c:00:68:83:2c: 08:7c:53:e9:e9:e1:3b:12:6e:20:b4:c9:62:1a:05:ff:b4:c6: 92:8d:72:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUxMDI1MDkxOTE2WhcNMjUxMTAxMDkxOTE2WjAYMRYwFAYD VQQDEw02OGZjOTYxNC01NTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXTdp6zcV5H9hAOwklsRNsyzLzAM4eSdf2tWIICKyL7PQGbQvhG1ebJ/Bfii ulPB0Tg/rRosvh00XHHOknFuLTjDRADdxSA8XnDbloww1LguILZLPUCa/3xsk04A 5n/5J+Vkhxda9BDpI15mTAQVGEfPA5LvmqIeGoqChbB0x5o33KspFNCSl6ta6+HX B/MLgVgUGn9yE9x76d/BWZoVBxApyUIU+pFE/ROgbu89Xa/WX1nN0s8k8zFMYXLV GkjVvmwC6K+EwmtXvx4Q3t2gBwTFctGzaP2SYOxpjywBv0XX6T5re9i7LJ0e8iHI JiEohF3uTUuMexomsyHpWFpydwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAO1U6Xk /Mq4pyoV+XFdh+wZJUJeMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBku0luPR1AsK413b/lTY1dDjtSLWMAX8vuHVqufE1hkktwdnn+lWw9 86uWgrIgtMNrVHGsRk/FJiALgSyn7kNqCAsXFHLR/kQOZMVuv2pyQ9lftCivjX56 z+PJjBzH2X33RC4zccKcez5kSEfyU4uS0mm5GdqHaOnM/MzSeqzTzEAUq9mf493v AdDCFUSWt+3h3HJSIl8T7BEzPg9f5+EapDiMLkjyo82+BBAn7s22Uz+d97z81znR ONiDSOJO3NMdWtGC7+LmgRHN2VPg+MhPnc2/zpzC9YmGz2FuJsyIvBNK3KQbDABo gywIfFPp6eE7Em4gtMliGgX/tMaSjXIF -----END CERTIFICATE-----Generated at Sat Oct 25 20:14:22 2025 by rpki-client