$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: QUQ7R16hKu6nUqwdpsrdOB8dMPQJJ+cGXmLmq/+mGaI= Subject key identifier: 80:73:12:07:F9:C2:62:EC:E6:CB:90:3D:A1:F5:44:81:DB:6E:8B:FC Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E85 Signing time: Sun 02 Nov 2025 17:43:47 +0000 Manifest this update: Sun 02 Nov 2025 17:43:47 +0000 Manifest next update: Sun 09 Nov 2025 17:43:47 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: SHgc7c6WPQ8ut0sSMHKqL7vqgHGllVbc4fnWSBA1YCE=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Nov 2 17:43:47 2025 GMT Not After : Nov 9 17:43:47 2025 GMT Subject: CN=69079853-101b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:06:39:86:01:7b:e1:a1:ef:d2:21:7f:dd:60: ad:97:b1:0f:37:d3:72:bc:1a:22:ad:73:f1:60:6a: 25:ce:a7:7c:c4:6c:57:8c:32:33:15:fc:9a:fc:f7: 0d:69:41:c6:35:f8:c7:a6:f6:4f:03:0b:ee:db:da: 26:8a:ee:83:3d:5c:57:78:5f:17:63:f6:0d:b9:46: 7b:a9:db:e6:b5:de:f1:35:fd:93:58:53:4c:0c:a9: c7:1a:8d:a8:1b:31:8d:8e:46:05:1f:67:ae:92:6f: 8f:90:a4:84:91:f2:f6:3b:b8:e2:6e:f7:87:e0:c2: 5a:4e:cb:0a:4c:9a:c1:27:02:d6:b2:e3:e5:ae:66: 1c:df:0e:f9:3d:19:d2:b9:ec:7c:91:f8:3f:4f:62: 4a:14:50:cc:99:cd:9e:74:f9:e9:34:99:79:7b:e5: 03:50:84:5b:ef:61:58:36:7f:4a:bd:ea:50:ef:d2: 23:48:4b:ed:1a:69:c3:06:e4:89:5e:f0:74:1e:ea: 16:7a:35:16:2d:aa:37:8d:3d:51:25:17:be:8c:4b: 70:85:41:10:25:6a:a6:45:2c:a3:2c:c1:0a:60:b8: 26:70:9a:7a:a9:d2:45:df:d7:f8:23:05:69:eb:33: d5:0f:39:5a:d4:c2:68:08:3c:34:66:0f:24:da:51: b7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:73:12:07:F9:C2:62:EC:E6:CB:90:3D:A1:F5:44:81:DB:6E:8B:FC X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:5c:a6:24:f3:2a:45:58:8b:14:2e:22:bf:fa:05:25:f7:df: a5:73:10:82:a4:08:c4:f6:32:4f:cc:64:27:18:73:9a:3d:8d: ca:dd:a1:01:bc:75:ba:d7:a4:d6:e4:8f:8d:9c:ef:ff:a0:95: 80:b9:35:70:6c:0e:1e:1b:aa:43:b7:ca:cb:3a:6f:2e:b1:37: 48:4c:f0:3e:98:13:49:9c:33:6b:25:06:bf:6e:ea:3f:d2:71: 63:31:18:51:10:f1:53:86:2e:0e:bf:74:bf:02:17:d2:41:6d: 7c:ea:fb:53:0e:f8:fe:7f:9a:7f:8b:c2:be:d3:80:15:45:d0: b4:cb:71:7e:af:20:5e:b7:3f:e8:4e:9b:e2:6b:fd:07:ac:c2: e0:ca:1a:48:0b:4b:f3:4a:61:01:35:ad:6e:d2:ac:91:19:da: c4:3e:47:1d:c6:1d:80:e2:bc:84:44:6c:71:d2:91:50:7a:c6: d8:c8:f3:3c:ee:ec:47:9d:1c:b8:51:8e:22:3c:7c:15:7b:50: ea:72:cc:65:b8:8c:16:43:9c:77:b8:2c:73:56:b5:68:1f:0e: b0:b4:1c:69:7e:ab:fd:19:66:8d:13:d7:81:9f:99:eb:b4:b4: 9f:b3:43:0a:cf:e6:64:ce:52:1d:7e:de:b8:00:74:27:1d:83: 9c:08:59:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUxMTAyMTc0MzQ3WhcNMjUxMTA5MTc0MzQ3WjAYMRYwFAYD VQQDEw02OTA3OTg1My0xMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wY5hgF74aHv0iF/3WCtl7EPN9NyvBoirXPxYGolzqd8xGxXjDIzFfya/PcN aUHGNfjHpvZPAwvu29omiu6DPVxXeF8XY/YNuUZ7qdvmtd7xNf2TWFNMDKnHGo2o GzGNjkYFH2eukm+PkKSEkfL2O7jibveH4MJaTssKTJrBJwLWsuPlrmYc3w75PRnS uex8kfg/T2JKFFDMmc2edPnpNJl5e+UDUIRb72FYNn9KvepQ79IjSEvtGmnDBuSJ XvB0HuoWejUWLao3jT1RJRe+jEtwhUEQJWqmRSyjLMEKYLgmcJp6qdJF39f4IwVp 6zPVDzla1MJoCDw0Zg8k2lG3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBzEgf5 wmLs5suQPaH1RIHbbov8MB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYXKYk8ypFWIsULiK/+gUl99+lcxCCpAjE9jJPzGQnGHOaPY3K3aEB vHW616TW5I+NnO//oJWAuTVwbA4eG6pDt8rLOm8usTdITPA+mBNJnDNrJQa/buo/ 0nFjMRhREPFThi4Ov3S/AhfSQW186vtTDvj+f5p/i8K+04AVRdC0y3F+ryBetz/o Tpvia/0HrMLgyhpIC0vzSmEBNa1u0qyRGdrEPkcdxh2A4ryERGxx0pFQesbYyPM8 7uxHnRy4UY4iPHwVe1DqcsxluIwWQ5x3uCxzVrVoHw6wtBxpfqv9GWaNE9eBn5nr tLSfs0MKz+ZkzlIdft64AHQnHYOcCFnJ -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:18 2025 by rpki-client