$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: uJGc2/ghFTsq06ZcVNSwgwoRtaz8tZl6r4v/0Sgo2p4= Subject key identifier: 13:76:42:76:DF:D6:7F:AF:9D:A6:A2:DE:1E:0C:45:B7:19:17:B6:C1 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0324 Signing time: Fri 19 Sep 2025 02:47:00 +0000 Manifest this update: Fri 19 Sep 2025 02:46:59 +0000 Manifest next update: Fri 26 Sep 2025 02:46:59 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: TcdmCtd4ntd/ovT6Y4BQn2U/NgziItg6JAFmtPZPfTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Sep 19 02:46:59 2025 GMT Not After : Sep 26 02:46:59 2025 GMT Subject: CN=68ccc424-93cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:b2:2d:fb:fe:6f:6a:68:f0:4c:4d:ec:b1: 37:e9:c4:c6:d8:4f:a8:3e:8f:90:37:69:b4:d3:31: 55:b8:c4:22:05:df:de:80:fe:5b:d0:0d:16:95:21: 8b:50:0a:42:05:8d:3c:dd:7a:5d:b9:a0:2d:33:1b: 4f:a9:7b:d7:0c:d7:0f:97:d2:dd:86:7f:c4:58:e3: 32:34:d2:d5:66:7e:5a:d2:73:27:13:7c:a6:f4:bf: 71:8b:5d:56:73:a7:42:5d:52:87:c1:e8:56:b5:a0: 6d:a6:00:0f:8f:74:e4:dc:18:e4:62:11:60:cd:31: f8:c0:0c:76:b7:15:10:4c:b8:3e:ed:64:d2:c4:00: ad:27:26:be:b3:c4:bf:e0:17:a6:ad:6b:3f:ba:8c: 64:b6:3b:80:f6:b1:9a:72:6e:fc:b0:2f:4e:5d:e6: 67:a3:06:41:0a:83:c7:e2:b7:66:fb:5f:fa:ea:31: 6c:6a:fc:78:06:d2:ca:ab:13:82:60:69:d7:b9:9a: 5c:06:6b:79:7c:b5:c9:1c:f2:14:61:2b:c3:70:f1: 3d:bc:4f:cd:0b:7e:03:db:b1:01:fe:fc:92:03:7b: a9:c0:78:e0:72:fc:c8:27:68:10:5e:cf:fb:b6:69: 13:c5:ad:64:37:cc:d3:84:c8:4c:25:2f:57:2c:1e: dc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:76:42:76:DF:D6:7F:AF:9D:A6:A2:DE:1E:0C:45:B7:19:17:B6:C1 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d0:89:3f:db:81:2d:11:73:6f:52:a3:3c:bc:c3:56:2d:ce: 4d:77:f3:a3:86:88:05:60:de:d2:7a:2b:52:60:ac:32:a6:ad: 4a:0b:fc:e9:28:f3:34:28:d1:2f:87:ea:14:15:d1:57:bf:e0: 13:15:5d:4c:05:bb:2d:47:d8:51:b6:d4:ac:0f:e8:25:dc:e0: 10:29:4d:0d:0b:28:2c:f3:35:90:dd:ac:48:7b:7a:78:c3:59: 6e:86:7c:cd:b8:a9:a4:6f:a4:92:7e:a6:f8:89:e1:d0:c1:e9: 2e:bf:ea:ad:e0:2a:00:0b:d5:a9:b6:a6:0c:84:bd:6e:3e:82: ac:ef:ff:11:81:3e:a5:4e:ff:26:61:16:34:82:ca:2f:d4:e9: 6f:38:7b:34:fc:b2:aa:32:12:f6:8f:85:8c:b2:f0:0d:54:1c: 01:c2:dd:34:7f:97:70:c9:61:ff:a6:71:2c:64:dc:58:20:ca: 25:c3:bb:21:ae:7c:31:19:0b:17:d2:30:b4:24:06:74:92:c7: 6b:18:74:a2:2d:53:d7:f8:91:7c:02:9b:83:f3:eb:1a:44:b3: a0:a3:90:7b:4f:3f:2a:04:66:55:44:86:6b:b2:99:2f:6f:45: 11:88:47:ab:3d:f4:6e:0b:a6:c4:bd:eb:22:77:43:88:f0:8d: 0e:c3:0e:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwOTE5MDI0NjU5WhcNMjUwOTI2MDI0NjU5WjAYMRYwFAYD VQQDEw02OGNjYzQyNC05M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ+yLfv+b2po8ExN7LE36cTG2E+oPo+QN2m00zFVuMQiBd/egP5b0A0WlSGL UApCBY083XpduaAtMxtPqXvXDNcPl9Ldhn/EWOMyNNLVZn5a0nMnE3ym9L9xi11W c6dCXVKHwehWtaBtpgAPj3Tk3BjkYhFgzTH4wAx2txUQTLg+7WTSxACtJya+s8S/ 4BemrWs/uoxktjuA9rGacm78sC9OXeZnowZBCoPH4rdm+1/66jFsavx4BtLKqxOC YGnXuZpcBmt5fLXJHPIUYSvDcPE9vE/NC34D27EB/vySA3upwHjgcvzIJ2gQXs/7 tmkTxa1kN8zThMhMJS9XLB7cYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN2Qnbf 1n+vnaai3h4MRbcZF7bBMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD0Ik/24EtEXNvUqM8vMNWLc5Nd/OjhogFYN7SeitSYKwypq1KC/zp KPM0KNEvh+oUFdFXv+ATFV1MBbstR9hRttSsD+gl3OAQKU0NCygs8zWQ3axIe3p4 w1luhnzNuKmkb6SSfqb4ieHQwekuv+qt4CoAC9WptqYMhL1uPoKs7/8RgT6lTv8m YRY0gsov1OlvOHs0/LKqMhL2j4WMsvANVBwBwt00f5dwyWH/pnEsZNxYIMolw7sh rnwxGQsX0jC0JAZ0ksdrGHSiLVPX+JF8ApuD8+saRLOgo5B7Tz8qBGZVRIZrspkv b0URiEerPfRuC6bEvesid0OI8I0Oww4e -----END CERTIFICATE-----Generated at Fri Sep 19 08:31:40 2025 by rpki-client