$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft File: L1nO2mFIFfRjLznVoxwqUUjGtPo.mft (raw, json) Hash identifier: M71MidElekno8dz6yXOA3GUT8fs/HBRF4g2QenCqf+w= Subject key identifier: DE:15:75:6A:48:75:1A:30:F1:0D:82:3B:E9:81:F1:12:74:B9:70:FC Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 25B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft Manifest number: 2547 Signing time: Tue 04 Nov 2025 15:47:15 +0000 Manifest this update: Tue 04 Nov 2025 15:47:14 +0000 Manifest next update: Tue 11 Nov 2025 15:47:14 +0000 Files and hashes: 1: L1nO2mFIFfRjLznVoxwqUUjGtPo.crl (hash: 7kUUSQzL+rBC16sy8wfhVM3y5jkXxtfxF4jvbR/gBRY=) 2: 6A4C0AE89B1111EEADD68539C4F9AE02.roa (hash: 2DQNtDG5SlXbYPNKHWvlCf1LoqXbXRDiCCKULGtJnHM=) 3: 7135F534A05E11EDAC005F21C4F9AE02.roa (hash: BPqGgTO/FXgmhll9acyqoVIwbgNH2EbF72C/59rTKAs=) 4: 6CD99EF455C911E78F401587C4F9AE02.roa (hash: W5BOpPvdDaVJRiPCvQRJeUEXAu9OuHFa28A+g1a29VM=) 5: 407F0056629711EEB706DD75C4F9AE02.roa (hash: PPHYcuwo/hi+gWIj/jwhtP8TpkDUisIVIpssgpxO+Uk=) 6: 50A7914A5B9011EE82A2243AC4F9AE02.roa (hash: ssVkoQGU9abtVaOJ8QQiFzJ2u/KxDVyiUSGDeDLOq7k=) 7: 260428EC312211EEAF54935BC4F9AE02.roa (hash: rs1BLbvYE3DjY31zt5pMsjMWm6NZ1lEGyNnSPudZWnw=) 8: B6B65E76852411EFA67F8144C4F9AE02.roa (hash: 62+I0JCsjnrf/+FC3fWOyVd0FAIFAMqGALGtyUh/ptw=) 9: B77A93FE852411EFA67F8144C4F9AE02.roa (hash: UsIOkhaB3Ku4WNkmAUrHYHwGz8u8rCny1doDJQc+IzY=) 10: 8659FCFEB12811EE98786F82C4F9AE02.roa (hash: uTcSN/s3jafNB4/D11q5q+/m0pypV3YLg7hL+NBlIuc=) 11: AE5BAB8CA05B11ED9406DE26C4F9AE02.roa (hash: bI6DNZ+SMQoiH31SjdXczk0YB7z1qgZ9bG+qqRhYG1Q=) 12: EAF1B720D85A11E9B476E954C4F9AE02.roa (hash: tGAr+6Zn60awTp8cl05laafAibPgTaCeJzxGTywN05I=) 13: E0CD5510BE6111ED88CAF164C4F9AE02.roa (hash: DZxtCrPx9nVC06xsT0giYHAu0uYg4D08gJHGXJpz69w=) 14: 71D21A40A05E11EDAC005F21C4F9AE02.roa (hash: wWAuh5kIJNSIRZFUI/17Ka/eUztNPx+QrG0g1L0q+HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9648 (0x25b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: Nov 4 15:47:14 2025 GMT Not After : Nov 11 15:47:14 2025 GMT Subject: CN=690a2002-03c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f5:2f:5e:aa:75:60:24:b8:f7:9c:e2:82:b2: 82:c5:78:de:86:5b:3c:fc:83:58:25:6c:5e:ae:1f: 4f:94:6a:e9:b4:7d:c5:bb:e7:98:a5:00:c9:d9:81: be:bb:8e:21:b0:90:ef:c3:8c:30:19:64:da:d4:4b: e0:c0:be:13:b7:3f:2a:65:a3:de:3e:78:0d:fd:18: d5:05:9c:38:46:6a:5e:7c:4f:86:2c:d2:06:6b:28: 66:77:0e:43:54:cf:70:fa:f4:25:54:96:03:cb:8c: 4b:19:1b:65:a7:0d:3e:1b:fd:a0:ea:81:ac:4c:ca: d5:a9:46:ab:6a:63:a9:b7:10:04:ed:17:20:85:c7: c2:d5:95:c6:f6:f0:1c:da:3d:c8:46:d2:1c:1c:54: 6f:94:27:7f:60:e0:f5:73:38:da:9d:d1:95:12:2b: cb:54:7b:5d:c1:01:fa:e0:5e:8b:2c:d0:fb:67:23: 36:44:3f:b0:92:7e:68:ef:81:7c:78:52:a3:c3:8e: ef:45:22:b1:25:98:c3:9b:1f:52:9a:b3:a3:0f:93: 18:0b:06:b2:d6:f0:b1:2e:fa:29:34:94:1a:1f:58: 51:38:b3:dd:2b:44:2b:41:dd:c7:12:ef:ca:2b:fe: 33:1f:82:95:f7:41:e3:8e:87:9f:77:66:43:b6:bd: b8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:15:75:6A:48:75:1A:30:F1:0D:82:3B:E9:81:F1:12:74:B9:70:FC X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:42:db:57:ba:03:87:b5:25:68:4a:09:9a:b5:1f:9c:fc:22: 20:9f:17:20:a1:8c:6a:9c:49:9b:fe:1a:0e:9f:54:21:c6:b0: 78:6b:a2:eb:ed:a6:53:eb:2e:a0:0a:a6:68:e3:8e:c7:26:9b: 1b:01:4a:3a:1a:c3:92:c3:9f:b5:13:9a:fe:4f:21:41:2d:1d: d2:69:ad:af:92:9d:ef:58:12:2c:a0:d9:65:50:0a:5b:4e:ae: 74:ed:71:a4:7c:96:17:5e:a3:e7:01:2c:a0:3f:dc:69:11:e8: d2:cb:91:97:20:b4:f7:52:d1:3d:3e:66:5b:26:ea:38:df:42: b8:cd:b2:a9:46:db:d3:dc:d9:8a:b5:f6:14:39:21:95:7e:5b: f9:24:5f:ed:58:bf:c7:ac:16:ea:c7:65:58:61:51:a1:a5:6e: b4:72:cc:fb:ba:01:cf:c9:91:8c:a2:84:20:1a:27:33:93:74: 6d:3b:d1:96:1d:46:51:0b:f9:81:8f:1f:4d:92:c0:59:ba:86: a8:3e:24:6b:f7:bb:4b:0c:dd:ee:e2:93:cd:56:d7:bb:02:90: 37:8f:3f:07:16:f0:5e:d2:88:1c:f3:f7:3c:ec:fd:78:43:77: 6c:82:7b:e5:45:7e:dd:d5:f1:44:c0:8c:5c:c7:89:f4:6c:a2: e3:c2:32:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjUxMTA0MTU0NzE0WhcNMjUxMTExMTU0NzE0WjAYMRYwFAYD VQQDEw02OTBhMjAwMi0wM2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/UvXqp1YCS495zigrKCxXjehls8/INYJWxerh9PlGrptH3Fu+eYpQDJ2YG+ u44hsJDvw4wwGWTa1EvgwL4Ttz8qZaPePngN/RjVBZw4RmpefE+GLNIGayhmdw5D VM9w+vQlVJYDy4xLGRtlpw0+G/2g6oGsTMrVqUaramOptxAE7RcghcfC1ZXG9vAc 2j3IRtIcHFRvlCd/YOD1czjandGVEivLVHtdwQH64F6LLND7ZyM2RD+wkn5o74F8 eFKjw47vRSKxJZjDmx9SmrOjD5MYCway1vCxLvopNJQaH1hROLPdK0QrQd3HEu/K K/4zH4KV90Hjjoefd2ZDtr24cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4VdWpI dRow8Q2CO+mB8RJ0uXD8MB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkQ1NC9EOTAxMTI4NDNGNEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZm UmpMem5Wb3h3cVVVakd0UG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFQttXugOHtSVoSgmatR+c/CIgnxcgoYxqnEmb/hoOn1QhxrB4a6Lr 7aZT6y6gCqZo447HJpsbAUo6GsOSw5+1E5r+TyFBLR3Saa2vkp3vWBIsoNllUApb Tq507XGkfJYXXqPnASygP9xpEejSy5GXILT3UtE9PmZbJuo430K4zbKpRtvT3NmK tfYUOSGVflv5JF/tWL/HrBbqx2VYYVGhpW60csz7ugHPyZGMooQgGiczk3RtO9GW HUZRC/mBjx9NksBZuoaoPiRr97tLDN3u4pPNVte7ApA3jz8HFvBe0ogc8/c87P14 Q3dsgnvlRX7d1fFEwIxcx4n0bKLjwjLU -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:47 2025 by rpki-client