$ rpki-client -vvf rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft File: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft (raw, json) Hash identifier: OT8J8WQCCDYe5Ce9nwpT1UtTrlvrKwGy3UC8CmFW6fk= Subject key identifier: 20:C7:27:68:0D:01:37:38:2D:EB:AD:35:BA:3F:37:C6:24:4A:47:D8 Authority key identifier: FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC Certificate issuer: /CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Certificate serial: 1538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft Manifest number: 152F Signing time: Tue 04 Nov 2025 16:53:50 +0000 Manifest this update: Tue 04 Nov 2025 16:53:50 +0000 Manifest next update: Tue 11 Nov 2025 16:53:50 +0000 Files and hashes: 1: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl (hash: wIlsOeUM3XeQpC5as+AeUYzsEm9C5/loK/BP2WTUcqw=) 2: 1BFCE1E0554F11E8A5C82D57C4F9AE02.roa (hash: ZrttKe2gUPdi3/NYLhVsPF2RlqfjZO1IxCJ4ZBHDkLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5432 (0x1538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D599B, serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Validity Not Before: Nov 4 16:53:50 2025 GMT Not After : Nov 11 16:53:50 2025 GMT Subject: CN=690a2f9e-e94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f8:ea:c8:59:ad:ae:f7:8c:bf:4f:95:da:9e: 2e:c8:e1:20:13:36:bc:e7:2b:8e:0d:8a:5f:81:4e: cb:93:11:0b:a3:5c:44:cc:d3:98:e2:d9:73:23:fe: ed:08:e7:47:6b:b7:73:61:0e:53:5b:cd:30:3f:07: fe:f1:4a:ac:8f:90:aa:5c:2b:a1:97:67:f3:02:fd: 64:bd:90:d2:de:e5:98:7f:19:07:68:39:12:c5:fb: b8:7d:ab:f1:6a:bc:bc:a6:93:04:06:cc:45:11:d8: 55:d8:ba:fc:c9:00:5b:d7:93:67:64:8b:e5:53:ed: 33:79:b1:fb:5c:68:10:06:da:dc:3f:d2:3b:d5:c5: 1c:8a:d2:eb:40:8d:88:e0:bb:38:a0:9e:7b:5c:8f: 4a:64:96:8e:08:2c:6e:47:44:3a:c1:12:d2:da:4e: 41:79:d0:fc:09:b2:31:74:26:a6:2d:70:6f:c1:12: bb:ad:ee:6f:6d:68:12:2c:55:4d:03:6a:09:80:af: 24:2f:a9:3f:7e:21:17:8e:bc:cc:22:dc:ca:18:37: 63:f3:8d:5d:aa:6e:91:6b:fa:5e:d2:5e:19:3a:3e: 4f:37:a8:d4:9b:b7:1a:ad:ad:ff:05:1f:48:a4:e5: ca:73:98:74:92:8e:9e:04:4b:72:ce:cd:1d:33:98: 28:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C7:27:68:0D:01:37:38:2D:EB:AD:35:BA:3F:37:C6:24:4A:47:D8 X509v3 Authority Key Identifier: keyid:FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d8:fb:34:30:af:e1:d6:c8:9f:46:a4:1f:78:b0:8e:e7:f4: 71:01:44:37:fe:fa:a8:f8:38:b1:b2:9a:ca:a6:52:55:dd:24: be:3f:59:68:ac:6e:6f:a5:19:18:df:60:a1:e1:cb:22:b3:1c: 58:b0:73:22:92:fe:98:63:b4:09:c5:dc:f7:e0:63:e1:29:e1: 3f:ff:a4:1f:23:e1:ad:a2:f5:21:43:7d:9c:84:a5:19:30:e7: 39:5e:a4:0b:e2:a6:3e:d4:8f:98:6c:c0:1c:2a:d7:fd:24:46: 1a:bf:ab:80:a5:00:a0:82:63:d9:69:fb:54:94:23:72:e4:07: 6e:c1:90:66:8d:f6:57:b6:80:f4:b5:20:41:7c:59:57:45:97: f7:f0:5b:6d:0a:c4:c7:f8:a4:b1:11:a3:51:35:e7:33:ea:cd: 47:f4:d6:b7:4f:99:f4:30:29:2e:2c:60:af:23:c7:bb:13:18: fe:3b:df:fd:c2:a2:aa:dc:38:13:41:84:53:60:41:1f:7d:07: b2:9c:98:d2:db:23:c4:46:43:6a:53:fc:34:1a:fb:40:38:c5: ba:83:74:37:c9:3a:13:56:67:63:7d:9f:1f:df:f9:6f:37:c0: c9:dc:c3:85:4c:fc:33:0b:64:63:62:f0:b6:3b:72:12:84:e2: f9:0e:42:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU5OUIxMTAvBgNVBAUTKEZDQjIzQzdCRjVGMTkzNTYyNzVCQUNGNTdDREI1NUJG RDYwRTA0QUMwHhcNMjUxMTA0MTY1MzUwWhcNMjUxMTExMTY1MzUwWjAYMRYwFAYD VQQDEw02OTBhMmY5ZS1lOTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/jqyFmtrveMv0+V2p4uyOEgEza85yuODYpfgU7LkxELo1xEzNOY4tlzI/7t COdHa7dzYQ5TW80wPwf+8Uqsj5CqXCuhl2fzAv1kvZDS3uWYfxkHaDkSxfu4favx ary8ppMEBsxFEdhV2Lr8yQBb15NnZIvlU+0zebH7XGgQBtrcP9I71cUcitLrQI2I 4Ls4oJ57XI9KZJaOCCxuR0Q6wRLS2k5BedD8CbIxdCamLXBvwRK7re5vbWgSLFVN A2oJgK8kL6k/fiEXjrzMItzKGDdj841dqm6Ra/pe0l4ZOj5PN6jUm7cara3/BR9I pOXKc5h0ko6eBEtyzs0dM5goYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDHJ2gN ATc4LeutNbo/N8YkSkfYMB8GA1UdIwQYMBaAFPyyPHv18ZNWJ1us9XzbVb/WDgSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTk5Qi9ENzIyNEZGMjU0 QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsxWW5XNnoxZk50VnY5WU9C S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19MSThlX1h4azFZblc2ejFmTnRWdjlZT0JLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTk5Qi9ENzIyNEZGMjU0QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsx WW5XNnoxZk50VnY5WU9CS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw2Ps0MK/h1sifRqQfeLCO5/RxAUQ3/vqo+DixsprKplJV3SS+P1lo rG5vpRkY32Ch4csisxxYsHMikv6YY7QJxdz34GPhKeE//6QfI+GtovUhQ32chKUZ MOc5XqQL4qY+1I+YbMAcKtf9JEYav6uApQCggmPZaftUlCNy5AduwZBmjfZXtoD0 tSBBfFlXRZf38FttCsTH+KSxEaNRNecz6s1H9Na3T5n0MCkuLGCvI8e7Exj+O9/9 wqKq3DgTQYRTYEEffQeynJjS2yPERkNqU/w0GvtAOMW6g3Q3yToTVmdjfZ8f3/lv N8DJ3MOFTPwzC2RjYvC2O3IShOL5DkI2 -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:40 2025 by rpki-client