$ rpki-client -vvf rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft File: L0yMSsxFXG1aSQxAkLOjUqivHLU.mft (raw, json) Hash identifier: cpZzHmrPmB/63jeXeODe1Gs7qOZgzqOKnaWSPeQHi+A= Subject key identifier: 62:BF:1B:BB:03:07:D4:BC:9F:92:30:C3:71:FC:AC:69:90:98:E5:19 Authority key identifier: 2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 Certificate issuer: /CN=A9130128/serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft Manifest number: 046D Signing time: Wed 05 Nov 2025 00:15:24 +0000 Manifest this update: Wed 05 Nov 2025 00:15:24 +0000 Manifest next update: Wed 12 Nov 2025 00:15:24 +0000 Files and hashes: 1: L0yMSsxFXG1aSQxAkLOjUqivHLU.crl (hash: vq4mmXXMG/RoQkTiCEn86sahsymMv0BbJcr/6CTZWx0=) 2: BD6C86326AEC11ECB61ECF30C4F9AE02.roa (hash: ycvRnCz+W4ba8DDROuCngyAKLqsVfBGFpl90bOtHXMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130128, serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Validity Not Before: Nov 5 00:15:24 2025 GMT Not After : Nov 12 00:15:24 2025 GMT Subject: CN=690a971c-427d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:c3:5c:2a:71:24:b7:13:13:9d:e3:61:29: 2e:d6:b1:a1:c2:01:99:9b:f3:65:fc:75:9c:8b:d8: e0:86:98:26:45:15:b8:4c:c6:88:fc:64:9c:cf:8b: cd:52:0f:3d:65:ab:eb:67:cd:83:dd:21:de:af:a5: 1d:ff:79:8c:18:a3:1a:d0:f2:c2:79:29:f4:0b:de: 27:d9:67:f3:f4:8e:b9:94:f2:3a:bb:2f:ae:d4:b3: bd:f6:58:1f:dd:fb:71:52:a4:6c:1c:2b:d6:51:14: 20:16:2e:55:b9:a3:70:08:4c:86:ee:49:59:61:92: 96:5a:cc:ff:76:52:55:1f:ef:ba:1a:1c:bf:c8:56: 90:cb:43:93:64:c3:dc:c6:b2:52:92:45:6b:e3:80: 39:bc:38:ef:10:79:3e:d7:ac:75:33:0e:72:62:41: 54:fc:1c:51:0b:a8:b0:a5:75:ff:86:34:d5:f5:2c: 84:0c:3d:fa:c5:b1:df:51:0c:6e:b5:34:6d:41:a3: de:d2:dd:ac:6e:ac:3e:5a:f9:21:f8:e0:8f:1d:70: 23:48:d6:67:4b:20:11:98:87:9b:97:13:72:bc:78: 66:3c:a3:98:99:3b:a1:3b:4e:3b:61:55:f0:4f:41: 90:fa:00:7d:40:81:10:9b:ac:67:b4:a3:76:45:29: 72:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BF:1B:BB:03:07:D4:BC:9F:92:30:C3:71:FC:AC:69:90:98:E5:19 X509v3 Authority Key Identifier: keyid:2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:83:39:62:ab:58:4d:7c:67:4e:8f:bd:df:4f:8f:71:48:94: 92:a2:67:70:53:0e:ce:a1:21:71:f7:84:da:a8:31:ed:03:97: 52:f1:d8:43:07:6d:35:91:3c:12:1a:6a:9e:d4:74:8e:ff:d7: a1:98:cc:c7:72:5c:3b:93:e8:db:ff:f3:07:e5:25:b7:fb:5f: 63:ef:f5:8f:f5:f6:ab:00:11:7b:36:5f:42:60:96:a3:68:2e: c1:20:9e:ef:60:4b:ea:31:57:26:ea:f8:ef:20:16:5e:f2:6a: 3d:e1:5f:6b:80:1c:55:f5:7e:86:07:b8:7b:0f:d7:53:3a:26: f8:31:17:ef:22:21:ad:8f:fa:41:4e:3e:2a:e8:b8:0c:1a:45: 4b:2b:49:44:ca:b9:8f:61:93:ad:5f:80:a5:d1:ea:c1:fe:68: 6c:55:0a:3b:89:54:0f:c5:a6:62:f7:d9:71:37:a0:a0:22:2f: 6b:3f:30:e3:df:e9:67:7e:86:c3:aa:92:79:c4:bd:97:c0:b0: cd:84:0a:37:1f:bf:b8:92:dc:a3:e9:7f:9e:e0:3a:46:4b:6b: 55:22:9a:41:be:da:11:02:5b:1c:17:b3:60:dd:d3:e2:04:00: ff:93:a6:4e:5d:4e:ae:4b:fe:7b:a1:90:d3:2c:09:b6:69:cb: e3:60:3b:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMjgxMTAvBgNVBAUTKDJGNEM4QzRBQ0M0NTVDNkQ1QTQ5MEM0MDkwQjNBMzUy QThBRjFDQjUwHhcNMjUxMTA1MDAxNTI0WhcNMjUxMTEyMDAxNTI0WjAYMRYwFAYD VQQDEw02OTBhOTcxYy00MjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqvDXCpxJLcTE53jYSku1rGhwgGZm/Nl/HWci9jghpgmRRW4TMaI/GScz4vN Ug89ZavrZ82D3SHer6Ud/3mMGKMa0PLCeSn0C94n2Wfz9I65lPI6uy+u1LO99lgf 3ftxUqRsHCvWURQgFi5VuaNwCEyG7klZYZKWWsz/dlJVH++6Ghy/yFaQy0OTZMPc xrJSkkVr44A5vDjvEHk+16x1Mw5yYkFU/BxRC6iwpXX/hjTV9SyEDD36xbHfUQxu tTRtQaPe0t2sbqw+Wvkh+OCPHXAjSNZnSyARmIeblxNyvHhmPKOYmTuhO047YVXw T0GQ+gB9QIEQm6xntKN2RSlyOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGK/G7sD B9S8n5Iww3H8rGmQmOUZMB8GA1UdIwQYMBaAFC9MjErMRVxtWkkMQJCzo1Korxy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEyOC85MUJDMzc1MjZB RTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhHMWFTUXhBa0xPalVxaXZI TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wweU1Tc3hGWEcxYVNReEFrTE9qVXFpdkhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEyOC85MUJDMzc1MjZBRTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhH MWFTUXhBa0xPalVxaXZITFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBogzliq1hNfGdOj73fT49xSJSSomdwUw7OoSFx94TaqDHtA5dS8dhD B201kTwSGmqe1HSO/9ehmMzHclw7k+jb//MH5SW3+19j7/WP9farABF7Nl9CYJaj aC7BIJ7vYEvqMVcm6vjvIBZe8mo94V9rgBxV9X6GB7h7D9dTOib4MRfvIiGtj/pB Tj4q6LgMGkVLK0lEyrmPYZOtX4Cl0erB/mhsVQo7iVQPxaZi99lxN6CgIi9rPzDj 3+lnfobDqpJ5xL2XwLDNhAo3H7+4ktyj6X+e4DpGS2tVIppBvtoRAlscF7Ng3dPi BAD/k6ZOXU6uS/57oZDTLAm2acvjYDuL -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:56 2025 by rpki-client