$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: r6Iu4hk6ZnoX54BHiA82mhH/d5rgsF0i/1bcbzrtgGo= Subject key identifier: 99:0D:19:95:40:67:93:AB:00:29:67:D0:81:43:A8:E4:A8:7C:50:62 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B7E Signing time: Tue 04 Nov 2025 19:10:12 +0000 Manifest this update: Tue 04 Nov 2025 19:10:12 +0000 Manifest next update: Tue 11 Nov 2025 19:10:11 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: uCkNZOxzuv8zSnaxoqXA1wsSIXH4EYNgWKie7/8wxUE=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: eQjSLvcTPm64WJsuRzl8viIdz6G/ld4B/GelvP5rP4g=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1f6aFvhkVa/N7iAPf2YxVBmmTzpTWpZU9hllszfOpEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2964 (0xb94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Nov 4 19:10:12 2025 GMT Not After : Nov 11 19:10:11 2025 GMT Subject: CN=690a4f94-dbfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6e:ce:4b:c6:4a:c7:42:68:db:e8:76:46:84: ec:2e:57:6d:31:2b:2b:a7:a7:82:e3:ae:b5:99:27: b7:3a:22:f3:fd:c0:c2:29:46:a7:dd:07:4f:e9:1f: 58:d2:b0:c6:10:47:b3:07:71:29:de:bd:d8:84:e0: a3:4e:ae:93:c9:e0:f6:9f:55:b1:ac:d6:4c:56:15: 6a:ff:0b:86:90:05:17:72:87:df:36:57:ec:e8:74: 25:99:6c:f7:77:b1:a2:c6:19:57:35:34:e6:27:1a: 26:a5:b3:25:1f:81:a2:b7:2d:ce:46:28:a3:0b:e7: f1:71:3b:57:35:8a:d7:61:ee:0f:29:ee:56:e5:8a: aa:4c:8c:d8:d7:73:75:34:bc:6d:e5:ea:52:be:68: f6:e4:15:5f:0d:ea:94:c0:ce:0e:45:16:16:84:47: dd:66:2a:2a:17:88:d8:a6:b5:dd:bb:46:47:d0:7c: b9:b3:78:f6:e1:36:51:c2:28:a7:34:24:55:48:48: df:7f:35:88:4a:a0:b1:89:0f:ac:a7:13:13:8a:9d: 2b:c4:e7:f0:54:95:97:df:3e:56:17:2e:8a:99:f9: e7:2d:a0:e7:37:b1:99:b9:51:4f:d8:e6:cf:dc:7a: ae:bc:dd:b6:f9:4c:08:cb:cd:84:3e:7f:8c:68:a4: 89:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0D:19:95:40:67:93:AB:00:29:67:D0:81:43:A8:E4:A8:7C:50:62 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:5a:47:19:39:97:33:3e:19:e5:4e:5d:80:76:b6:1f:c6:42: d5:7a:b2:eb:fa:a2:2e:3c:33:6f:bb:17:e5:a5:ef:25:39:6d: 4e:42:6d:68:e8:d4:14:ae:b5:c8:55:e0:d8:e4:44:9c:14:70: d4:30:e8:80:37:b4:bc:d4:da:c2:23:85:97:24:a9:c1:66:12: d1:d3:3e:af:70:62:51:c9:a6:1d:c6:4f:8e:ec:4f:09:10:29: 5e:59:8f:15:62:4c:ef:65:78:e0:05:fc:f4:14:aa:5f:1c:5a: 41:1b:1c:2e:a0:c9:ac:94:3f:b7:7f:56:6e:75:30:4c:66:89: 5b:71:e8:2f:f7:88:c7:ed:66:34:ca:6d:05:59:8f:05:e3:51: bc:7a:63:4a:d7:c8:dc:9b:0b:f3:5b:b1:b1:af:a8:10:29:01: cc:06:17:63:b0:56:11:d6:b5:91:7c:e5:7a:c5:46:f3:a6:a1: c3:73:d2:22:1c:50:11:cd:c8:e9:dc:03:2a:e6:94:e7:87:5b: 52:6f:ce:e8:e5:85:f9:f0:3f:45:03:2e:3e:59:91:dc:f8:34: bf:cc:cc:d0:15:12:95:6a:63:89:89:13:3e:27:3a:c3:49:c0: 08:5e:97:e2:81:16:f1:2a:d4:b3:80:2a:db:08:e9:68:e6:31: 27:05:d1:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUxMTA0MTkxMDEyWhcNMjUxMTExMTkxMDExWjAYMRYwFAYD VQQDEw02OTBhNGY5NC1kYmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA327OS8ZKx0Jo2+h2RoTsLldtMSsrp6eC4661mSe3OiLz/cDCKUan3QdP6R9Y 0rDGEEezB3Ep3r3YhOCjTq6TyeD2n1WxrNZMVhVq/wuGkAUXcoffNlfs6HQlmWz3 d7GixhlXNTTmJxompbMlH4Gity3ORiijC+fxcTtXNYrXYe4PKe5W5YqqTIzY13N1 NLxt5epSvmj25BVfDeqUwM4ORRYWhEfdZioqF4jYprXdu0ZH0Hy5s3j24TZRwiin NCRVSEjffzWISqCxiQ+spxMTip0rxOfwVJWX3z5WFy6KmfnnLaDnN7GZuVFP2ObP 3HquvN22+UwIy82EPn+MaKSJuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkNGZVA Z5OrACln0IFDqOSofFBiMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2WkcZOZczPhnlTl2AdrYfxkLVerLr+qIuPDNvuxflpe8lOW1OQm1o 6NQUrrXIVeDY5EScFHDUMOiAN7S81NrCI4WXJKnBZhLR0z6vcGJRyaYdxk+O7E8J ECleWY8VYkzvZXjgBfz0FKpfHFpBGxwuoMmslD+3f1ZudTBMZolbcegv94jH7WY0 ym0FWY8F41G8emNK18jcmwvzW7Gxr6gQKQHMBhdjsFYR1rWRfOV6xUbzpqHDc9Ii HFARzcjp3AMq5pTnh1tSb87o5YX58D9FAy4+WZHc+DS/zMzQFRKVamOJiRM+JzrD ScAIXpfigRbxKtSzgCrbCOlo5jEnBdEv -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:39 2025 by rpki-client