$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: XM6A1n44Im5z3vOTMui35LuKx4rv1lxcqiKY886Ozx8= Subject key identifier: 88:08:87:0F:1E:38:30:E7:82:4D:12:21:B2:EE:AA:93:70:34:BC:3B Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: F7 Signing time: Wed 05 Nov 2025 05:22:08 +0000 Manifest this update: Wed 05 Nov 2025 05:22:08 +0000 Manifest next update: Wed 12 Nov 2025 05:22:08 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: WraJX2TK/ikduJuUAxXzFJbBN3SLTY8cpZGGj3PPmRs=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 6fHZUduLlppKNeQyv7MyGz7d2EPeIy77Os8/ALcrrKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Nov 5 05:22:08 2025 GMT Not After : Nov 12 05:22:08 2025 GMT Subject: CN=690adf00-4a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:be:d2:f2:e9:36:a4:48:d0:3d:07:25:95:6d: b0:d9:95:28:cb:69:5c:ab:b7:1e:8a:9a:3f:bf:9b: b4:93:8e:6a:16:bc:40:bf:72:25:d5:26:f8:07:78: 65:a6:d5:d6:d8:98:70:51:9b:da:9b:de:82:98:da: 5c:56:bb:14:8b:35:ba:d6:87:43:7b:04:5d:eb:37: 16:84:f0:6d:5d:05:b4:a7:80:30:5c:53:1e:da:f1: 4b:97:af:6a:2b:2a:f9:c0:ef:f4:a6:81:86:37:9a: 79:a4:c3:1f:4a:96:c1:bb:1f:97:5e:94:3f:d8:e1: fd:4f:3d:0c:de:44:b7:62:46:79:57:7d:10:6b:58: b2:12:5c:40:52:e3:7c:ae:6a:e0:81:4b:c2:cf:5e: 92:0b:12:3d:af:cf:48:49:c2:82:ed:46:15:1a:b6: f5:89:c2:b6:ad:20:7b:63:96:a1:70:bb:55:90:fa: 57:fb:88:4f:0d:9e:83:22:ec:1f:30:69:5b:d3:ba: 7c:9b:b0:34:2a:79:27:aa:9d:7f:61:1f:72:2d:da: b7:86:b3:94:2e:7f:cb:34:59:f8:ad:86:92:99:46: 5a:a3:6f:3d:e5:da:76:a4:fe:64:af:c2:f3:bf:25: 4d:8c:20:54:b1:4b:ae:17:6f:87:46:fa:d2:49:f9: 8a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:08:87:0F:1E:38:30:E7:82:4D:12:21:B2:EE:AA:93:70:34:BC:3B X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b9:62:77:6b:49:2b:b1:49:e5:31:d5:2a:3f:8f:84:22:83: d3:d3:0a:1f:62:c7:ae:66:89:09:81:0d:65:c6:f3:45:22:28: 50:b4:e8:e4:42:59:90:38:ab:45:ee:9e:74:4d:5a:ac:b8:b2: 16:f5:d1:b3:92:38:75:de:7e:d8:b8:2c:a3:16:a1:b8:c0:57: 08:45:34:ad:af:8d:b1:f3:67:f3:be:bc:9d:6a:42:b3:fb:e3: e5:03:63:70:35:fa:1d:89:f0:40:22:d5:71:91:c5:8a:71:cc: c6:24:d5:74:f4:b8:31:78:b1:43:73:df:c9:61:6b:fc:df:23: 4e:b4:13:4b:af:fa:36:9f:d4:fb:ff:55:76:10:c7:d9:22:63: 4d:c9:3a:2e:55:6b:8b:78:54:83:c4:cc:01:4d:d4:8f:6c:f8: 10:25:79:83:0e:2b:ce:66:63:a4:57:44:19:ea:6c:15:7c:4a: 67:64:55:73:fe:58:cb:33:c2:d7:e3:af:5d:f5:43:97:11:5f: 75:3a:c5:2e:e9:1c:33:a9:50:1e:0d:e9:a1:fc:4a:56:b5:f3: 75:14:4d:91:a6:cb:d4:4f:df:95:34:bf:d8:cf:6d:24:ca:b9: ac:fb:9b:6b:a6:bc:82:85:23:73:3c:bf:f2:be:d3:81:45:01: 91:47:4d:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUxMTA1MDUyMjA4WhcNMjUxMTEyMDUyMjA4WjAYMRYwFAYD VQQDEw02OTBhZGYwMC00YTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqr7S8uk2pEjQPQcllW2w2ZUoy2lcq7ceipo/v5u0k45qFrxAv3Il1Sb4B3hl ptXW2JhwUZvam96CmNpcVrsUizW61odDewRd6zcWhPBtXQW0p4AwXFMe2vFLl69q Kyr5wO/0poGGN5p5pMMfSpbBux+XXpQ/2OH9Tz0M3kS3YkZ5V30Qa1iyElxAUuN8 rmrggUvCz16SCxI9r89IScKC7UYVGrb1icK2rSB7Y5ahcLtVkPpX+4hPDZ6DIuwf MGlb07p8m7A0Knknqp1/YR9yLdq3hrOULn/LNFn4rYaSmUZao2895dp2pP5kr8Lz vyVNjCBUsUuuF2+HRvrSSfmK3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgIhw8e ODDngk0SIbLuqpNwNLw7MB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeuWJ3a0krsUnlMdUqP4+EIoPT0wofYseuZokJgQ1lxvNFIihQtOjk QlmQOKtF7p50TVqsuLIW9dGzkjh13n7YuCyjFqG4wFcIRTStr42x82fzvrydakKz ++PlA2NwNfodifBAItVxkcWKcczGJNV09LgxeLFDc9/JYWv83yNOtBNLr/o2n9T7 /1V2EMfZImNNyTouVWuLeFSDxMwBTdSPbPgQJXmDDivOZmOkV0QZ6mwVfEpnZFVz /ljLM8LX469d9UOXEV91OsUu6RwzqVAeDemh/EpWtfN1FE2RpsvUT9+VNL/Yz20k yrms+5trpryChSNzPL/yvtOBRQGRR02+ -----END CERTIFICATE-----Generated at Wed Nov 5 18:49:47 2025 by rpki-client