$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: L/MnHlX4cjFBnNpfpHtg7jki/ke5EBN/ujIBhBQ9eCE= Subject key identifier: FB:26:96:6A:4F:7F:FD:86:A0:8A:8B:16:A9:C2:C1:39:5A:75:6B:BF Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 01D4 Signing time: Wed 05 Nov 2025 03:04:53 +0000 Manifest this update: Wed 05 Nov 2025 03:04:52 +0000 Manifest next update: Wed 12 Nov 2025 03:04:52 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: LhQx53WZKyJ7pk5oz/VXN7z1whyk4coArAGM+wdQYPQ=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: ROkkzatt5V9Pz+AtU25/WOuwZ/bxAOBTVtr/gp1mTRQ=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: gvjJNiO9vqYIhsYjJBaQQlt1G1Z/kYCgfliXikgsWHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Nov 5 03:04:52 2025 GMT Not After : Nov 12 03:04:52 2025 GMT Subject: CN=690abed5-055a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:46:59:a5:81:79:16:27:b9:40:1f:8e:5b:1a: 01:64:a0:2a:8e:82:f2:b8:a2:8c:6c:56:74:d0:e0: ce:45:f4:b3:fe:05:f1:ab:1a:cf:8f:f8:c3:ca:c7: 3f:df:c2:28:f6:d4:0e:15:16:3c:69:43:46:d5:c7: d3:9c:48:5a:43:a0:52:12:b4:1f:e3:68:fe:06:25: f0:3b:ed:75:1a:51:3f:f7:13:0b:95:4e:c6:aa:7e: c4:2a:96:3f:ce:f0:1d:8d:13:61:8c:1e:4d:3a:25: 50:ce:4f:0f:56:04:0c:c6:f6:b3:99:52:75:64:a4: ec:53:11:a1:20:00:92:36:2c:12:b5:64:65:8e:47: e0:df:10:44:18:5d:71:83:53:62:27:90:f2:96:6a: 42:ae:46:66:45:8a:26:50:ec:dd:ee:b3:5c:60:33: 29:a9:a4:e8:95:ea:5f:84:34:d4:5e:04:55:ae:ab: f3:83:a7:20:48:f7:a2:32:ca:23:59:ea:42:9a:b9: fd:26:d7:b8:33:e2:36:bb:ae:b3:9d:4c:83:de:79: aa:e4:ef:0a:36:53:45:1b:e2:7f:c7:20:b2:af:f1: 10:46:07:46:91:20:95:5f:84:bb:15:7e:98:87:c3: fe:04:e9:ab:f3:79:56:95:53:64:32:9a:75:ca:3d: f6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:26:96:6A:4F:7F:FD:86:A0:8A:8B:16:A9:C2:C1:39:5A:75:6B:BF X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:97:1f:58:49:51:1f:a7:b4:06:28:0f:21:2c:8c:82:5b:b6: 65:47:e4:32:f6:b5:77:42:08:22:2a:6c:41:ff:49:32:11:59: 40:2b:ae:06:d9:d4:7a:f0:64:29:aa:70:f6:b2:a8:4e:d6:7d: 95:b5:ee:db:60:6e:d2:e6:32:6f:25:dc:0b:e8:96:50:29:e2: da:8b:01:dd:12:c0:9f:94:3e:ed:76:9f:23:52:f4:33:d0:94: 52:11:94:4d:b2:34:77:4a:41:a9:78:d9:1d:00:06:06:d6:00: f9:90:de:ac:13:69:f0:2b:87:d1:ce:95:f6:b9:3b:1f:96:d8: ce:01:f7:c8:a3:a3:0f:59:75:aa:d2:75:d8:95:fb:1c:24:3c: 98:68:41:82:7e:21:f5:de:e1:3e:38:6d:4b:c1:9e:b0:4d:ba: 42:1d:00:0d:da:95:71:c0:3b:32:dd:96:b6:ed:a8:13:da:3b: e1:50:75:ea:ac:48:d6:49:a7:46:40:59:ed:c0:a0:b6:ce:d4: c0:cd:6f:cc:c5:1e:fa:28:5f:52:cc:07:80:50:d2:55:09:ca: 4d:4e:fe:56:98:e8:4a:a6:e8:4b:b3:86:78:09:f9:13:d1:c1: be:3f:d0:02:38:66:f5:da:c5:e0:9f:a7:00:0f:0d:77:67:1c: 25:34:4c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjUxMTA1MDMwNDUyWhcNMjUxMTEyMDMwNDUyWjAYMRYwFAYD VQQDEw02OTBhYmVkNS0wNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkZZpYF5Fie5QB+OWxoBZKAqjoLyuKKMbFZ00ODORfSz/gXxqxrPj/jDysc/ 38Io9tQOFRY8aUNG1cfTnEhaQ6BSErQf42j+BiXwO+11GlE/9xMLlU7Gqn7EKpY/ zvAdjRNhjB5NOiVQzk8PVgQMxvazmVJ1ZKTsUxGhIACSNiwStWRljkfg3xBEGF1x g1NiJ5DylmpCrkZmRYomUOzd7rNcYDMpqaTolepfhDTUXgRVrqvzg6cgSPeiMsoj WepCmrn9Jte4M+I2u66znUyD3nmq5O8KNlNFG+J/xyCyr/EQRgdGkSCVX4S7FX6Y h8P+BOmr83lWlVNkMpp1yj32pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsmlmpP f/2GoIqLFqnCwTladWu/MB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqlx9YSVEfp7QGKA8hLIyCW7ZlR+Qy9rV3QggiKmxB/0kyEVlAK64G 2dR68GQpqnD2sqhO1n2Vte7bYG7S5jJvJdwL6JZQKeLaiwHdEsCflD7tdp8jUvQz 0JRSEZRNsjR3SkGpeNkdAAYG1gD5kN6sE2nwK4fRzpX2uTsfltjOAffIo6MPWXWq 0nXYlfscJDyYaEGCfiH13uE+OG1LwZ6wTbpCHQAN2pVxwDsy3Za27agT2jvhUHXq rEjWSadGQFntwKC2ztTAzW/MxR76KF9SzAeAUNJVCcpNTv5WmOhKpuhLs4Z4CfkT 0cG+P9ACOGb12sXgn6cADw13ZxwlNEyB -----END CERTIFICATE-----Generated at Wed Nov 5 10:02:02 2025 by rpki-client