$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft File: limscQ0-IdWZGSjVmk22VBGpa_8.mft (raw, json) Hash identifier: 5X5ma3BGnfmnVsIlRwFxe2h0InSV5epnfiBLp1xSGns= Subject key identifier: AA:86:E9:1D:49:33:98:27:5B:E1:9E:78:74:AF:D2:DB:F0:04:6E:32 Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft Manifest number: 0C7E Signing time: Sun 02 Nov 2025 18:25:51 +0000 Manifest this update: Sun 02 Nov 2025 18:25:51 +0000 Manifest next update: Sun 09 Nov 2025 18:25:51 +0000 Files and hashes: 1: limscQ0-IdWZGSjVmk22VBGpa_8.crl (hash: mx/LXb/UBOp1OlsqrnM3uXGOinIUGqbm64YiXQlSBPo=) 2: 9CDAADC2091E11EAB375615BC4F9AE02.roa (hash: cTVFkw9EC/7+0AhzRm+1VoJiYeWjlXwK0sbhIidN0dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8, serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: Nov 2 18:25:51 2025 GMT Not After : Nov 9 18:25:51 2025 GMT Subject: CN=6907a22f-818b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:93:88:ec:a9:6f:5b:e0:80:ba:d5:17:a1: f7:26:04:f6:06:7f:b5:3c:4a:a6:3a:d8:ec:57:36: 3c:25:1a:95:dd:96:44:3d:24:3e:34:de:55:80:52: eb:cb:5d:85:85:b5:ed:4b:a4:0b:f4:b1:22:69:94: a2:f6:43:c5:84:ac:fa:cc:56:82:17:43:d6:b5:4f: 95:5c:fe:0c:36:c8:e8:8b:f3:70:93:dc:89:a4:2a: 6f:f8:27:5f:3c:c3:f1:3b:3f:51:c6:68:a6:d3:64: 75:ff:20:19:d0:38:9c:09:01:70:b1:40:4c:6c:9d: de:62:2b:00:13:b0:e1:3b:64:87:72:a6:8c:29:72: 16:53:d7:07:76:64:04:03:b1:f5:5c:c1:d7:ec:f8: 22:51:2d:28:d6:95:33:28:69:64:65:30:8d:49:84: 3c:3d:2b:d4:ae:1f:98:1d:ac:e8:36:63:49:a5:fc: 34:6a:e0:32:09:ef:c9:0e:9c:93:05:3a:f3:df:3a: a0:aa:1a:83:be:76:61:08:02:bb:7b:3b:ca:07:9c: 6e:c0:66:71:ea:e0:33:ff:f2:5b:5e:53:34:03:e9: e4:f1:4e:d8:93:0f:6f:8c:9b:79:13:17:ea:5c:bd: a8:c2:17:72:06:c7:7a:78:f5:8b:d8:42:94:3c:18: 80:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:86:E9:1D:49:33:98:27:5B:E1:9E:78:74:AF:D2:DB:F0:04:6E:32 X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:76:92:c2:e9:82:fb:3d:ec:2e:40:f4:7f:0d:55:ec:84:e9: 55:ae:5c:9c:01:f4:34:4f:d8:71:88:40:1c:45:44:5f:22:ed: 3b:75:f5:8d:a3:eb:d4:a4:f3:5b:92:7c:10:ed:49:b3:12:8e: 09:1d:ed:7b:e9:cb:28:57:32:65:c5:e5:1f:99:14:8b:c8:e5: 57:ef:ef:aa:a9:63:03:00:68:cb:6f:47:c9:d7:a4:21:23:a0: e3:e0:2c:83:06:31:e6:a2:45:95:36:b7:06:4d:06:25:d7:e1: 44:0a:b9:0e:71:c6:cb:83:ae:97:c3:87:0e:71:1b:66:02:73: d2:2c:6c:bb:18:da:0a:7f:6f:e3:a1:de:ad:bf:26:25:9a:6d: f3:1d:26:66:33:d3:9d:7d:33:bd:f5:ce:18:7c:b6:95:66:16: 62:78:3c:22:45:69:5b:aa:98:17:68:63:e8:a1:b5:d6:79:ea: 5a:7d:fe:87:af:64:e5:2b:5c:58:20:63:99:fd:09:4b:3e:e1: 1d:9d:23:43:45:c1:3c:4c:fc:7a:1e:d5:f7:a3:53:20:28:97: 82:5e:e3:76:81:25:a8:9f:bf:b8:0a:ee:08:ec:3b:c8:1c:a9: 06:f6:ae:3d:0f:b9:73:21:82:94:37:b6:94:0e:2a:da:a0:6a: 51:b0:1b:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjUxMTAyMTgyNTUxWhcNMjUxMTA5MTgyNTUxWjAYMRYwFAYD VQQDEw02OTA3YTIyZi04MThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAiTiOypb1vggLrVF6H3JgT2Bn+1PEqmOtjsVzY8JRqV3ZZEPSQ+NN5VgFLr y12FhbXtS6QL9LEiaZSi9kPFhKz6zFaCF0PWtU+VXP4MNsjoi/Nwk9yJpCpv+Cdf PMPxOz9Rxmim02R1/yAZ0DicCQFwsUBMbJ3eYisAE7DhO2SHcqaMKXIWU9cHdmQE A7H1XMHX7PgiUS0o1pUzKGlkZTCNSYQ8PSvUrh+YHazoNmNJpfw0auAyCe/JDpyT BTrz3zqgqhqDvnZhCAK7ezvKB5xuwGZx6uAz//JbXlM0A+nk8U7Ykw9vjJt5Exfq XL2owhdyBsd6ePWL2EKUPBiABQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqG6R1J M5gnW+GeeHSv0tvwBG4yMB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTZFOC83QkNBRkYwMjA5MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlk V1pHU2pWbWsyMlZCR3BhXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKdpLC6YL7PewuQPR/DVXshOlVrlycAfQ0T9hxiEAcRURfIu07dfWN o+vUpPNbknwQ7UmzEo4JHe176csoVzJlxeUfmRSLyOVX7++qqWMDAGjLb0fJ16Qh I6Dj4CyDBjHmokWVNrcGTQYl1+FECrkOccbLg66Xw4cOcRtmAnPSLGy7GNoKf2/j od6tvyYlmm3zHSZmM9OdfTO99c4YfLaVZhZieDwiRWlbqpgXaGPoobXWeepaff6H r2TlK1xYIGOZ/QlLPuEdnSNDRcE8TPx6HtX3o1MgKJeCXuN2gSWon7+4Cu4I7DvI HKkG9q49D7lzIYKUN7aUDiraoGpRsBvC -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:51 2025 by rpki-client