$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft File: lbEEDPO_7AXOhB2vqalQi3CZfxw.mft (raw, json) Hash identifier: gOQwioeMnBPp5qd26/YgUxiw5VKvgL4sdS+aYnMMf58= Subject key identifier: 64:57:30:2F:3C:8B:BD:BF:F9:C5:7B:D6:84:B1:5C:CF:83:AE:41:31 Authority key identifier: 95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C Certificate issuer: /CN=A91EB96C/serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft Manifest number: 6B Signing time: Wed 05 Nov 2025 07:08:31 +0000 Manifest this update: Wed 05 Nov 2025 07:08:31 +0000 Manifest next update: Wed 12 Nov 2025 07:08:31 +0000 Files and hashes: 1: lbEEDPO_7AXOhB2vqalQi3CZfxw.crl (hash: ycLx9KWYX4wIqA9W57exn+QQpE24sYj7wLHrO+8Qeg8=) 2: 9EDE26C813A211F095A2D46DC4F9AE02.roa (hash: 9+x+gO7VZZ27bFoPVKXDoWm28PjRwAiv38lgAILmn1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB96C, serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Validity Not Before: Nov 5 07:08:31 2025 GMT Not After : Nov 12 07:08:31 2025 GMT Subject: CN=690af7ef-5dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:4e:f0:46:eb:9a:f1:40:ce:bf:9f:cc:31: fa:a9:6f:09:2d:28:05:03:0a:7b:1b:c1:b0:a9:f9: c9:4d:d3:2f:43:33:2d:d0:bb:61:9d:76:b7:db:c3: 66:8e:f6:9a:2d:77:48:92:5c:1d:2b:1c:dd:ba:90: a4:29:2a:fc:8e:e0:34:3b:d3:e3:d2:c1:9e:cd:ff: 42:fd:23:f8:0b:a5:f5:49:8a:fc:3e:1b:30:80:c9: 25:b1:13:bb:4a:a1:ab:2c:5f:68:f5:1e:75:b2:70: 95:d0:51:7b:4b:70:dd:d4:4f:46:24:88:9a:e9:03: f6:36:49:8c:f0:8c:1a:40:10:e1:d2:97:fe:0b:10: c6:b3:4b:54:8f:e0:a6:e8:23:5a:3c:68:d8:42:2f: 9c:f0:4e:63:29:ea:42:30:ae:78:35:d8:e4:0f:a0: b9:d2:a2:d7:55:2f:3d:57:d0:56:c2:79:62:14:b1: 7d:01:50:d3:01:6a:12:e5:b7:76:0b:6d:18:9d:54: 42:14:00:24:51:2a:8d:b0:57:f0:64:7d:6c:e0:cd: ba:05:8e:1c:01:92:7f:0e:2a:04:14:c0:2d:50:a0: ab:82:8f:c5:d2:b8:61:4d:f8:8f:65:40:ca:16:99: 65:f6:df:fa:53:28:2c:29:0d:cc:8e:f4:c5:67:61: e9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:57:30:2F:3C:8B:BD:BF:F9:C5:7B:D6:84:B1:5C:CF:83:AE:41:31 X509v3 Authority Key Identifier: keyid:95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:4d:62:65:34:4f:53:14:40:71:d0:23:74:6b:06:d1:4d:f3: af:61:0b:5d:e6:3d:08:b1:2c:e0:79:e9:89:7e:1e:0f:fb:9b: ac:9f:49:0c:d3:c4:39:dd:61:55:40:8e:0a:36:cd:69:ac:91: ed:dc:f8:05:ee:c5:9d:3b:09:6e:cf:ab:4e:ab:ce:80:34:37: 5b:71:42:6e:07:8a:82:4c:23:39:f0:d9:3c:e5:4a:af:11:33: 9f:73:27:94:ba:08:19:51:bc:2a:cc:83:7c:9d:18:db:9a:da: be:e7:f0:a9:13:39:9a:c5:d5:58:4f:5e:c0:9f:00:e1:7a:06: e7:83:aa:20:2c:d7:f5:f7:4d:90:d2:6a:fd:dd:2d:96:0d:80: bb:66:60:89:0c:e6:87:58:71:af:25:8e:36:4f:94:13:94:02: ae:8b:30:bd:39:c0:0f:53:9c:1e:fd:45:b1:c8:37:5d:8e:6a: 2f:dd:51:82:58:cb:ce:e0:f1:d5:9b:00:3b:8a:f7:f1:ea:55: ec:b6:96:11:6b:1c:67:e1:b1:20:13:15:8b:1f:26:47:d5:4f: 42:9f:91:eb:63:0d:21:6b:74:5b:f5:64:7f:e0:f6:a9:14:4d: 49:53:af:53:fc:de:2b:50:f3:35:7a:21:4c:97:f4:28:72:b4: ea:cb:e8:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Qjk2QzExMC8GA1UEBRMoOTVCMTA0MENGM0JGRUMwNUNFODQxREFGQTlBOTUwOEI3 MDk5N0YxQzAeFw0yNTExMDUwNzA4MzFaFw0yNTExMTIwNzA4MzFaMBgxFjAUBgNV BAMTDTY5MGFmN2VmLTVkYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4007wRuua8UDOv5/MMfqpbwktKAUDCnsbwbCp+clN0y9DMy3Qu2Gddrfbw2aO 9potd0iSXB0rHN26kKQpKvyO4DQ70+PSwZ7N/0L9I/gLpfVJivw+GzCAySWxE7tK oassX2j1HnWycJXQUXtLcN3UT0YkiJrpA/Y2SYzwjBpAEOHSl/4LEMazS1SP4Kbo I1o8aNhCL5zwTmMp6kIwrng12OQPoLnSotdVLz1X0FbCeWIUsX0BUNMBahLlt3YL bRidVEIUACRRKo2wV/BkfWzgzboFjhwBkn8OKgQUwC1QoKuCj8XSuGFN+I9lQMoW mWX23/pTKCwpDcyO9MVnYelTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZFcwLzyL vb/5xXvWhLFcz4OuQTEwHwYDVR0jBBgwFoAUlbEEDPO/7AXOhB2vqalQi3CZfxww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCOTZDLzREMkJBOEEwMTNB MjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FYT2hCMnZxYWxRaTNDWmZ4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGJFRURQT183QVhPaEIydnFhbFFpM0NaZnh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC OTZDLzREMkJBOEEwMTNBMjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FY T2hCMnZxYWxRaTNDWmZ4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAdNYmU0T1MUQHHQI3RrBtFN869hC13mPQixLOB56Yl+Hg/7m6yfSQzT xDndYVVAjgo2zWmske3c+AXuxZ07CW7Pq06rzoA0N1txQm4HioJMIznw2TzlSq8R M59zJ5S6CBlRvCrMg3ydGNua2r7n8KkTOZrF1VhPXsCfAOF6BueDqiAs1/X3TZDS av3dLZYNgLtmYIkM5odYca8ljjZPlBOUAq6LML05wA9TnB79RbHIN12Oai/dUYJY y87g8dWbADuK9/HqVey2lhFrHGfhsSATFYsfJkfVT0KfketjDSFrdFv1ZH/g9qkU TUlTr1P83itQ8zV6IUyX9ChytOrL6Pk= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:26 2025 by rpki-client