$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: KzJ+rdFSYZTDk9/xopm7BjzHs3yTtrQysYFmCJbEBFU= Subject key identifier: 6B:05:5F:2E:33:6D:96:5E:63:84:86:E6:15:A5:38:EB:ED:3E:F3:73 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0421 Signing time: Thu 23 Oct 2025 01:37:27 +0000 Manifest this update: Thu 23 Oct 2025 01:37:27 +0000 Manifest next update: Thu 30 Oct 2025 01:37:27 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: y8DUygcTqmkmp+t1oeO7sw9JP61eR+OpkvDJ+32ZlrA=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 01:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Oct 23 01:37:27 2025 GMT Not After : Oct 30 01:37:27 2025 GMT Subject: CN=68f986d7-e80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f4:ac:2b:0b:66:f9:54:a0:d9:52:fb:e7:66: c7:f1:be:3f:b1:cc:55:fb:68:7b:98:5e:bc:e8:fa: d5:2b:09:5a:ac:0d:42:17:21:df:30:6d:0c:21:b5: 04:be:21:7d:4d:21:c0:8f:08:4e:9e:ac:58:5c:95: 62:64:2d:4d:a3:c4:7c:f4:0b:af:6e:3a:cf:5a:9a: 98:43:b0:dc:79:82:32:03:63:1e:fe:83:f1:17:70: c5:7c:dc:af:77:29:2d:92:35:48:49:54:ff:20:64: 0b:45:5e:86:b9:ff:fd:fb:75:cc:c4:59:69:46:a4: bc:6d:e0:6b:cf:f2:0e:46:e6:85:f0:f6:8c:77:ed: b0:25:ca:7a:79:ce:a6:69:da:3b:6e:20:fe:59:5a: 3f:b6:03:57:20:61:99:10:6b:9b:08:10:06:6f:21: 54:33:57:ac:0a:d7:33:76:b1:11:cc:22:45:4f:c8: 8a:39:22:3d:d6:74:aa:f6:48:73:58:29:ef:ff:4e: 2c:99:e9:99:c0:97:50:a3:62:61:d3:06:3a:8c:4e: 20:da:11:58:50:b2:2a:4f:5d:a8:bd:fd:90:d3:e0: c8:c6:86:5e:68:3c:e0:ef:7e:a0:d6:b4:43:f0:c5: f9:9d:9d:23:53:f8:75:62:7e:8a:fe:36:6e:c9:fb: 40:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:05:5F:2E:33:6D:96:5E:63:84:86:E6:15:A5:38:EB:ED:3E:F3:73 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:da:1c:41:95:56:14:de:84:d0:1c:77:4b:13:91:86:5a:7c: 87:07:63:50:36:1e:0e:2a:cb:69:d2:2c:7b:8b:60:0a:08:90: 88:ba:dc:77:c9:5b:08:73:5d:cf:97:18:fb:85:1d:5c:d9:70: 52:05:6b:52:48:82:f4:8f:10:f7:3d:ac:53:cc:af:e3:34:d1: 6c:ee:c9:4b:63:d1:fe:39:8b:68:4a:60:36:4b:a8:bf:1c:48: 65:85:10:8d:72:cf:7f:d3:c8:a4:4a:09:29:d2:76:2f:a0:de: 72:57:cf:d2:32:d2:24:03:38:1e:14:f3:a6:ac:0f:12:00:86: 03:6b:c4:02:40:43:6a:e2:fd:30:d6:ac:b0:9f:57:b0:1a:16: 94:ec:be:21:d2:a2:ca:8a:f3:fc:e5:62:b1:6c:86:52:e0:52: 78:ef:1c:1f:39:33:47:17:5e:b5:1c:ad:a2:80:b2:51:39:3c: b5:ac:e1:d7:3c:0b:e3:3b:c3:62:e5:c6:d8:5e:f8:d9:6c:cf: 87:2e:02:be:77:58:c0:48:9d:5b:15:70:5e:e4:33:47:30:18: 7d:6d:ba:34:41:da:c1:71:50:4d:2b:87:48:21:52:d5:06:c5: 43:33:87:b0:16:5c:89:f5:f0:e8:ae:9b:49:6f:4d:67:fa:cb: f8:45:fc:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUxMDIzMDEzNzI3WhcNMjUxMDMwMDEzNzI3WjAYMRYwFAYD VQQDEw02OGY5ODZkNy1lODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/SsKwtm+VSg2VL752bH8b4/scxV+2h7mF686PrVKwlarA1CFyHfMG0MIbUE viF9TSHAjwhOnqxYXJViZC1No8R89AuvbjrPWpqYQ7DceYIyA2Me/oPxF3DFfNyv dyktkjVISVT/IGQLRV6Guf/9+3XMxFlpRqS8beBrz/IORuaF8PaMd+2wJcp6ec6m ado7biD+WVo/tgNXIGGZEGubCBAGbyFUM1esCtczdrERzCJFT8iKOSI91nSq9khz WCnv/04smemZwJdQo2Jh0wY6jE4g2hFYULIqT12ovf2Q0+DIxoZeaDzg736g1rRD 8MX5nZ0jU/h1Yn6K/jZuyftATQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsFXy4z bZZeY4SG5hWlOOvtPvNzMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL2hxBlVYU3oTQHHdLE5GGWnyHB2NQNh4OKstp0ix7i2AKCJCIutx3 yVsIc13Plxj7hR1c2XBSBWtSSIL0jxD3PaxTzK/jNNFs7slLY9H+OYtoSmA2S6i/ HEhlhRCNcs9/08ikSgkp0nYvoN5yV8/SMtIkAzgeFPOmrA8SAIYDa8QCQENq4v0w 1qywn1ewGhaU7L4h0qLKivP85WKxbIZS4FJ47xwfOTNHF161HK2igLJROTy1rOHX PAvjO8Ni5cbYXvjZbM+HLgK+d1jASJ1bFXBe5DNHMBh9bbo0QdrBcVBNK4dIIVLV BsVDM4ewFlyJ9fDorptJb01n+sv4Rfx2 -----END CERTIFICATE-----Generated at Fri Oct 24 21:42:13 2025 by rpki-client