$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: CY7LjPMf4rE5IikDpAiVtgZEKIIk7oYvduPtLJ0rzMA= Subject key identifier: 9B:EA:F3:15:15:33:58:DF:C3:83:5E:56:4C:62:17:3F:1B:66:F9:2D Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: A6 Signing time: Wed 05 Nov 2025 06:27:10 +0000 Manifest this update: Wed 05 Nov 2025 06:27:09 +0000 Manifest next update: Wed 12 Nov 2025 06:27:09 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: WRAUFwMQHiFOAMrX5qE3XtEDv+J1jsjOf2zFpyIz5qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B, serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Validity Not Before: Nov 5 06:27:09 2025 GMT Not After : Nov 12 06:27:09 2025 GMT Subject: CN=690aee3d-70ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:6a:ae:77:05:b0:7b:77:0c:ed:f4:f9:81: e1:6f:e7:a1:4d:60:17:12:ef:2c:b1:91:f5:61:6a: e0:aa:ee:d8:b1:4a:f7:1b:bb:9e:09:e1:a5:3d:dd: 5a:d6:45:4b:a6:57:7b:65:36:e6:8f:75:14:4b:7e: 22:1e:e8:3f:f7:21:7a:3b:0b:0c:82:22:fc:1b:05: 93:4c:e7:26:da:4c:17:c3:6a:1a:ca:d8:28:9b:f0: 8f:94:b2:12:d8:69:1a:c5:14:b0:0c:8f:1d:ec:12: 2b:87:48:d0:96:55:df:7c:e8:c1:4a:45:7f:1c:0d: 23:4a:4a:ff:58:0d:5e:e6:a3:c9:15:05:ab:22:1a: cd:8e:bf:c3:95:26:9b:6c:90:36:f6:96:97:22:8b: 8e:50:b0:72:c2:9d:cf:ea:57:8f:43:74:31:b2:11: 37:91:6d:b6:1b:00:35:ac:39:c6:24:32:89:cb:c6: 0b:06:5b:b5:57:52:55:60:98:21:89:e1:71:71:41: 30:19:01:b7:0b:1e:10:1b:b2:18:d0:57:42:05:99: 2e:51:a7:17:cf:60:5c:7b:f9:32:aa:00:46:41:ee: f2:04:cd:f6:ea:cd:03:be:9e:20:a8:35:80:2f:bd: 7f:d0:e0:ab:a7:91:80:53:8e:88:e2:99:db:91:79: 33:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EA:F3:15:15:33:58:DF:C3:83:5E:56:4C:62:17:3F:1B:66:F9:2D X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e1:1b:e3:19:b1:a2:eb:bf:dd:df:3b:36:ad:26:4a:bc:c8: 32:07:2b:34:f6:7a:ad:dc:20:40:a2:c1:3e:e3:4e:89:27:2a: 6f:45:7d:30:d2:65:00:73:33:e9:9b:7f:f7:11:ce:36:85:2a: bb:d7:38:1c:b4:e5:1d:88:c7:a8:d4:a1:9a:43:e2:84:fc:86: 05:19:a8:74:ac:34:44:f2:a1:5a:d2:56:b9:aa:b4:5d:db:fb: ab:cb:62:e9:f4:de:ea:ad:0a:1d:86:b2:fd:2a:aa:e4:33:58: 94:a6:01:a9:8f:89:3a:04:45:6e:05:7f:a9:f7:6e:df:6d:c9: 5c:b8:72:58:7d:6e:4f:eb:17:e1:d3:d6:2d:50:5a:58:dd:74: 90:3f:c5:f3:2c:56:23:3a:e3:e8:c5:e0:20:51:a4:b6:83:c9: 31:fb:0c:67:df:7a:58:cd:3c:27:9b:77:02:92:1e:05:ed:56: 64:c0:13:cc:97:84:66:f1:83:52:f7:e5:be:da:33:43:fa:e6: dd:20:e6:e1:80:b4:9d:42:ee:da:08:1c:f6:88:bd:34:fc:7b: 19:67:ee:0b:8b:ee:54:9a:0f:a3:d7:d2:9e:f3:7d:66:14:85: 27:6f:12:e8:20:6c:e9:7e:4b:a9:1f:45:c9:1a:c0:5e:4f:98: d2:38:ca:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzOEIxMTAvBgNVBAUTKDJGNkIxRTdFMTQwMURFMDBBQzhFRURCN0E4NTkwRDAz REM1NDBGNzgwHhcNMjUxMTA1MDYyNzA5WhcNMjUxMTEyMDYyNzA5WjAYMRYwFAYD VQQDEw02OTBhZWUzZC03MGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEdqrncFsHt3DO30+YHhb+ehTWAXEu8ssZH1YWrgqu7YsUr3G7ueCeGlPd1a 1kVLpld7ZTbmj3UUS34iHug/9yF6OwsMgiL8GwWTTOcm2kwXw2oaytgom/CPlLIS 2GkaxRSwDI8d7BIrh0jQllXffOjBSkV/HA0jSkr/WA1e5qPJFQWrIhrNjr/DlSab bJA29paXIouOULBywp3P6lePQ3QxshE3kW22GwA1rDnGJDKJy8YLBlu1V1JVYJgh ieFxcUEwGQG3Cx4QG7IY0FdCBZkuUacXz2Bce/kyqgBGQe7yBM326s0Dvp4gqDWA L71/0OCrp5GAU46I4pnbkXkzmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvq8xUV M1jfw4NeVkxiFz8bZvktMB8GA1UdIwQYMBaAFC9rHn4UAd4ArI7tt6hZDQPcVA94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDM4Qi9BMUFCMkFCQ0JB ODkxMUVGOUIzMzg1MTJDNEY5QUUwMi9MMnNlZmhRQjNnQ3NqdTIzcUZrTkE5eFVE M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDM4Qi9BMUFCMkFCQ0JBODkxMUVGOUIzMzg1MTJDNEY5QUUwMi9MMnNlZmhRQjNn Q3NqdTIzcUZrTkE5eFVEM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc4RvjGbGi67/d3zs2rSZKvMgyBys09nqt3CBAosE+406JJypvRX0w 0mUAczPpm3/3Ec42hSq71zgctOUdiMeo1KGaQ+KE/IYFGah0rDRE8qFa0la5qrRd 2/ury2Lp9N7qrQodhrL9KqrkM1iUpgGpj4k6BEVuBX+p927fbclcuHJYfW5P6xfh 09YtUFpY3XSQP8XzLFYjOuPoxeAgUaS2g8kx+wxn33pYzTwnm3cCkh4F7VZkwBPM l4Rm8YNS9+W+2jND+ubdIObhgLSdQu7aCBz2iL00/HsZZ+4Li+5Umg+j19Ke831m FIUnbxLoIGzpfkupH0XJGsBeT5jSOMoz -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:16 2025 by rpki-client