$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: n3neZKvrLBP7Y9UgSPPpFC7LkcgsLMdvt6LiwGNKC+g= Subject key identifier: 88:25:58:1E:38:15:EC:D1:B7:50:6F:0C:05:BB:02:B8:CD:31:AF:3A Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 027B Signing time: Wed 05 Nov 2025 01:44:29 +0000 Manifest this update: Wed 05 Nov 2025 01:44:29 +0000 Manifest next update: Wed 12 Nov 2025 01:44:29 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: SsHAhJyvpvbm23sg+SsmpBz2XDH1rrbiIacl/85y98E=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: YiqHt1NmkyZeQGkCylb3t5kmyZBllHOZPJhWp7tXWTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Nov 5 01:44:29 2025 GMT Not After : Nov 12 01:44:29 2025 GMT Subject: CN=690aabfd-58c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:08:4c:cd:81:ae:f2:49:b6:fe:15:21:3c:44: 57:d3:05:31:36:7b:27:f7:83:b6:aa:4e:47:84:33: 43:a9:65:c4:4a:f6:70:f3:a2:e0:41:e2:43:ce:67: d0:9d:e7:38:26:39:8d:96:48:0d:81:f0:02:ba:8e: 52:64:92:99:9c:cc:40:96:17:f9:a8:fc:72:ea:b3: a4:67:0a:97:b7:e9:b5:e8:7e:ea:64:16:61:a7:ac: 55:9c:2e:d6:09:6e:53:3e:55:7f:4e:0c:f8:ef:70: 94:80:45:5a:c6:36:d7:76:02:21:5a:5d:8c:44:13: fa:0c:e1:3e:80:e0:b0:cc:03:74:4c:40:49:33:5a: 53:2e:da:ff:d1:96:e5:86:92:b1:c9:f8:65:45:96: bf:04:6b:b0:9d:bc:24:e2:f5:89:2c:1a:85:8c:27: 16:db:f4:e3:25:26:56:a5:89:27:12:24:9c:de:f5: 5d:2e:65:88:91:ec:1e:d3:bf:7d:58:9d:22:58:11: 03:73:ec:91:9d:23:15:52:3a:6f:68:8a:bc:bf:9a: 53:db:b4:49:4c:99:c2:ec:6f:eb:79:28:c1:81:ec: 10:12:f7:3a:d3:ff:e5:f6:72:86:a0:ff:e9:7d:51: ab:ef:39:1f:34:ab:65:12:56:42:e1:ce:d8:6d:2e: 12:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:25:58:1E:38:15:EC:D1:B7:50:6F:0C:05:BB:02:B8:CD:31:AF:3A X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:13:83:c1:d8:6e:a0:a4:59:66:aa:47:ce:a7:39:64:59:3a: 01:d9:c4:3f:d1:5d:33:6d:8b:cc:00:6a:95:5f:0f:36:dd:1c: ea:d3:4c:af:ab:79:1d:e8:af:1f:fd:d8:b3:3f:d2:28:ad:52: d4:e5:b2:cf:9d:60:56:0e:64:b8:11:2c:2b:f7:5c:c7:84:71: 58:ce:54:01:7d:e9:ba:39:2e:f9:b0:e3:88:ed:ec:01:dc:23: fe:c9:56:55:a8:d6:25:20:8c:6a:40:17:2d:b4:12:bb:99:e7: 8b:b4:af:8e:15:bc:80:ba:53:72:e4:76:1f:bf:6f:36:28:78: ba:df:e4:ab:54:e5:90:b4:e4:f4:ef:82:b2:5b:4b:06:1b:8b: 5a:8a:cd:e2:ce:2a:15:19:85:86:82:56:bf:1a:05:50:52:43: c1:58:ad:c4:74:95:b7:9f:c2:d6:5d:ba:1a:39:84:e5:57:30: 29:84:ea:55:d2:20:fc:3d:97:eb:87:3d:59:5c:41:8c:6a:65: 2c:3d:8c:c3:4a:99:28:9b:a3:8e:5c:fe:04:2c:c1:ab:71:31: 77:04:48:2c:a2:b5:2f:e1:27:d0:a8:e4:38:a0:27:22:43:81: a0:61:d1:06:33:7e:9e:06:3d:9b:7f:fe:ec:d1:89:21:cb:c4: 03:2b:de:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUxMTA1MDE0NDI5WhcNMjUxMTEyMDE0NDI5WjAYMRYwFAYD VQQDEw02OTBhYWJmZC01OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QhMzYGu8km2/hUhPERX0wUxNnsn94O2qk5HhDNDqWXESvZw86LgQeJDzmfQ nec4JjmNlkgNgfACuo5SZJKZnMxAlhf5qPxy6rOkZwqXt+m16H7qZBZhp6xVnC7W CW5TPlV/Tgz473CUgEVaxjbXdgIhWl2MRBP6DOE+gOCwzAN0TEBJM1pTLtr/0Zbl hpKxyfhlRZa/BGuwnbwk4vWJLBqFjCcW2/TjJSZWpYknEiSc3vVdLmWIkewe0799 WJ0iWBEDc+yRnSMVUjpvaIq8v5pT27RJTJnC7G/reSjBgewQEvc60//l9nKGoP/p fVGr7zkfNKtlElZC4c7YbS4SvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIglWB44 FezRt1BvDAW7ArjNMa86MB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSE4PB2G6gpFlmqkfOpzlkWToB2cQ/0V0zbYvMAGqVXw823Rzq00yv q3kd6K8f/dizP9IorVLU5bLPnWBWDmS4ESwr91zHhHFYzlQBfem6OS75sOOI7ewB 3CP+yVZVqNYlIIxqQBcttBK7meeLtK+OFbyAulNy5HYfv282KHi63+SrVOWQtOT0 74KyW0sGG4tais3izioVGYWGgla/GgVQUkPBWK3EdJW3n8LWXboaOYTlVzAphOpV 0iD8PZfrhz1ZXEGMamUsPYzDSpkom6OOXP4ELMGrcTF3BEgsorUv4SfQqOQ4oCci Q4GgYdEGM36eBj2bf/7s0Ykhy8QDK94e -----END CERTIFICATE-----Generated at Wed Nov 5 22:46:51 2025 by rpki-client