$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: ajZVflSGAYehFsVLKauuqAMzc9PLBd8pOUmMzFrk1Lg= Subject key identifier: AA:32:4C:3B:F5:AD:16:1A:24:FC:C0:43:30:C9:0D:6B:B5:80:AA:0E Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 08DD Signing time: Sun 02 Nov 2025 20:23:08 +0000 Manifest this update: Sun 02 Nov 2025 20:23:08 +0000 Manifest next update: Sun 09 Nov 2025 20:23:08 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: ClKtgXBs4AwELzC90k6rbVXmGHodHBBcB8saymKRP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Nov 2 20:23:08 2025 GMT Not After : Nov 9 20:23:08 2025 GMT Subject: CN=6907bdac-8495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:6b:86:b0:67:56:19:85:93:80:53:17:2e: 65:d2:b1:a4:cc:59:8b:f7:c7:02:6c:b5:65:35:76: 40:73:c6:7e:4e:a5:15:89:83:d9:d2:7c:f1:34:1b: 24:56:2b:8c:62:10:9e:0a:47:a6:22:ad:51:a6:45: d8:01:0e:78:52:93:61:38:b8:61:1d:46:c2:2f:6a: 9e:11:42:62:1d:49:c6:97:bf:2a:b7:ae:b5:f8:5b: d7:26:77:3f:75:02:80:68:cd:82:e1:c6:71:25:33: 77:28:61:40:7a:c5:69:3a:e5:e0:41:89:79:3a:25: 8b:cb:a0:c8:d0:47:12:27:c4:b6:05:a2:2a:e2:4c: 07:a8:1d:4a:b8:09:3e:4f:e6:ea:8f:4f:5d:4b:19: 7f:db:98:8f:e5:9c:fc:98:b9:c1:bb:99:a2:cf:77: 26:9b:42:e5:cd:d3:75:93:25:91:65:48:f8:11:99: 9f:5a:a8:e7:03:54:43:9b:47:1d:70:5a:c2:43:b3: 8e:5a:d4:b5:03:32:86:0a:57:26:5f:20:c2:33:28: bb:40:e9:ad:d5:c6:a5:25:17:b3:85:77:43:5d:71: aa:e3:a6:15:0d:80:2c:f6:25:ba:e8:d0:49:05:16: 6b:70:80:80:a1:27:50:88:d2:b4:a7:52:8e:79:24: 92:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:32:4C:3B:F5:AD:16:1A:24:FC:C0:43:30:C9:0D:6B:B5:80:AA:0E X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f9:5f:33:b6:23:58:58:74:6f:b8:21:4f:13:1c:3d:d5:f6: be:31:2e:a1:9b:7e:21:ea:01:9f:b5:58:13:5d:c2:1c:c2:a0: e7:0e:43:63:71:bf:80:e0:34:dd:3a:e4:76:14:05:5a:12:25: 76:68:6a:8c:f4:64:d8:94:60:a8:f6:68:c0:ed:9e:4b:21:bb: 84:6d:d7:03:d5:cb:4c:7e:39:89:91:2f:03:3c:8f:66:d9:2e: 39:d9:4a:e4:d6:8f:9f:46:5e:c2:75:04:81:f1:3b:9b:40:74: 8b:98:6d:06:c6:93:14:ce:07:df:29:16:89:08:91:4b:97:c3: 34:91:e2:e3:8e:a4:84:d5:23:1e:cd:66:bb:95:98:75:07:da: 0d:cc:b9:f3:e0:8d:d1:ae:7f:1e:ce:52:46:8a:14:19:e3:44: 4d:bf:a9:61:3c:6b:07:58:a7:a4:35:75:4f:a4:bc:39:b6:ba: 1b:93:2c:54:40:ef:53:07:7f:b8:b6:3e:46:b3:b1:18:9b:95: cf:9a:88:a4:a4:63:83:b9:38:3b:ea:fc:9e:55:48:c7:3b:9d: b5:e5:bd:8a:62:f9:60:d1:31:64:cd:10:10:fb:d5:4c:db:41: 14:93:49:f5:f1:03:2b:76:4c:4b:eb:8a:aa:ad:dd:1d:61:38: 1e:d1:c7:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUxMTAyMjAyMzA4WhcNMjUxMTA5MjAyMzA4WjAYMRYwFAYD VQQDEw02OTA3YmRhYy04NDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjFrhrBnVhmFk4BTFy5l0rGkzFmL98cCbLVlNXZAc8Z+TqUViYPZ0nzxNBsk ViuMYhCeCkemIq1RpkXYAQ54UpNhOLhhHUbCL2qeEUJiHUnGl78qt661+FvXJnc/ dQKAaM2C4cZxJTN3KGFAesVpOuXgQYl5OiWLy6DI0EcSJ8S2BaIq4kwHqB1KuAk+ T+bqj09dSxl/25iP5Zz8mLnBu5miz3cmm0LlzdN1kyWRZUj4EZmfWqjnA1RDm0cd cFrCQ7OOWtS1AzKGClcmXyDCMyi7QOmt1calJRezhXdDXXGq46YVDYAs9iW66NBJ BRZrcICAoSdQiNK0p1KOeSSSfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoyTDv1 rRYaJPzAQzDJDWu1gKoOMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY+V8ztiNYWHRvuCFPExw91fa+MS6hm34h6gGftVgTXcIcwqDnDkNj cb+A4DTdOuR2FAVaEiV2aGqM9GTYlGCo9mjA7Z5LIbuEbdcD1ctMfjmJkS8DPI9m 2S452Urk1o+fRl7CdQSB8TubQHSLmG0GxpMUzgffKRaJCJFLl8M0keLjjqSE1SMe zWa7lZh1B9oNzLnz4I3Rrn8ezlJGihQZ40RNv6lhPGsHWKekNXVPpLw5trobkyxU QO9TB3+4tj5Gs7EYm5XPmoikpGODuTg76vyeVUjHO5215b2KYvlg0TFkzRAQ+9VM 20EUk0n18QMrdkxL64qqrd0dYTge0cee -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:40 2025 by rpki-client