$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: RAaxhidG819fqqys3K2K2Fn32KLx13qSozZTQDdOAyU= Subject key identifier: 05:98:40:A8:EF:E0:0C:8C:A6:1A:1C:C7:EA:DC:7C:60:95:05:BC:4B Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: 48 Signing time: Mon 03 Nov 2025 07:20:54 +0000 Manifest this update: Mon 03 Nov 2025 07:20:53 +0000 Manifest next update: Mon 10 Nov 2025 07:20:53 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: ol2QsPg9iYu/Q5djdUYhMwGxz3WpaVm3sVLk65CQvM4=) 2: 1E008B864B7411F09B3DF33BC4F9AE02.roa (hash: ev5mDZ6XFmJ+ji01cNK3sq1eGbo1TIpqJN2vMLDyQBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Nov 3 07:20:53 2025 GMT Not After : Nov 10 07:20:53 2025 GMT Subject: CN=690857d5-a03b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:d8:2e:52:9f:db:01:38:65:59:63:b6:85: 87:95:25:15:6c:e8:5f:41:49:3c:74:34:b6:05:46: 08:84:b8:04:3b:82:52:4e:68:db:8e:1f:ea:20:e1: b1:cd:16:48:44:bb:3a:8b:2a:9a:27:09:ac:48:c4: 15:0e:a7:ca:9d:0a:fa:8b:57:0a:75:5b:1e:04:ff: cc:3e:14:9f:df:10:da:1d:33:cc:74:b8:63:5c:eb: 67:ed:eb:57:cb:ef:99:8b:16:50:b3:f2:9e:2d:45: 43:2a:8a:62:4c:26:40:5b:b5:d5:cb:83:ef:1a:d5: 7c:c5:fa:30:f0:5c:19:2d:81:c7:27:1a:44:8c:2f: 3d:cb:81:0a:7f:59:b4:04:d6:20:f2:92:c3:e8:bf: d8:78:75:2b:cf:65:50:70:0c:99:68:af:c5:11:12: 4b:9b:db:a0:e3:cf:5e:5a:be:f8:0a:7b:56:70:fc: 29:8d:f9:4c:54:4d:4d:e7:dc:25:68:c6:9b:81:ce: 65:9c:1a:d5:80:9b:3a:72:e9:8b:72:12:85:d1:25: 26:61:8c:8d:5c:4b:2a:be:42:36:a1:aa:77:05:57: 54:40:71:4b:61:b4:16:34:c6:64:00:07:b5:84:6d: aa:fc:b8:6e:d6:05:8b:d0:72:1d:6b:e5:28:59:8d: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:98:40:A8:EF:E0:0C:8C:A6:1A:1C:C7:EA:DC:7C:60:95:05:BC:4B X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:24:8c:97:90:33:f9:fd:c8:a1:10:a0:7d:fe:ff:56:4c:df: c5:1e:63:3a:c0:9c:d5:39:4a:e7:04:ad:8f:db:f5:45:2a:d8: 94:cd:64:72:5c:9e:17:07:46:e3:fb:7c:32:44:36:40:f6:83: 0c:00:05:a6:5f:76:b2:4f:01:c5:bd:32:90:76:95:6e:29:57: 37:4f:29:2d:cf:52:f6:77:d9:7a:1e:3c:01:93:b0:09:e7:0b: 79:ea:f9:9d:50:2e:1f:57:9e:07:93:37:8b:e1:18:d4:41:0f: 50:99:71:d5:56:fc:d7:76:8b:b3:f3:9f:72:f7:cb:ea:6f:57: 2d:3a:68:98:98:9b:41:d8:cc:a6:de:d8:ff:f3:e9:d4:16:ba: e8:6d:50:e0:d5:a9:db:51:91:aa:df:5c:1c:ca:67:c6:fb:1d: 5c:f1:93:e2:80:f6:89:3f:d5:e8:79:21:39:c2:c1:ce:79:64: 3b:e7:91:aa:1f:1e:ea:80:6b:51:94:a0:31:19:f5:1a:2f:ee: 43:5b:67:87:14:4e:a4:09:84:1a:e0:f4:7b:3b:86:f8:b4:cc: e4:95:a0:2f:c1:df:41:89:17:aa:4d:b3:aa:f8:ba:8a:b5:79: 07:d5:4f:71:c3:97:9a:8e:a0:52:7d:0c:f1:d0:5e:44:aa:05: c1:f7:da:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoOUE1ODdFNEVDRjY4RUM3NzI5RDhERTQzNUZGREFBRENF QTVCNDkzOTAeFw0yNTExMDMwNzIwNTNaFw0yNTExMTAwNzIwNTNaMBgxFjAUBgNV BAMTDTY5MDg1N2Q1LWEwM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxWtguUp/bAThlWWO2hYeVJRVs6F9BSTx0NLYFRgiEuAQ7glJOaNuOH+og4bHN FkhEuzqLKponCaxIxBUOp8qdCvqLVwp1Wx4E/8w+FJ/fENodM8x0uGNc62ft61fL 75mLFlCz8p4tRUMqimJMJkBbtdXLg+8a1XzF+jDwXBktgccnGkSMLz3LgQp/WbQE 1iDyksPov9h4dSvPZVBwDJlor8UREkub26Djz15avvgKe1Zw/CmN+UxUTU3n3CVo xpuBzmWcGtWAmzpy6YtyEoXRJSZhjI1cSyq+QjahqncFV1RAcUthtBY0xmQAB7WE bar8uG7WBYvQch1r5ShZjZuDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBZhAqO/g DIymGhzH6tx8YJUFvEswHwYDVR0jBBgwFoAUmlh+Ts9o7Hcp2N5DX/2q3OpbSTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzM1NDMzRjIyNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNU ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbWxoLVRzOW83SGNwMk41RFhfMnEzT3BiU1RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzM1NDMzRjIyNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hj cDJONURYXzJxM09wYlNUay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUkjJeQM/n9yKEQoH3+/1ZM38UeYzrAnNU5SucErY/b9UUq2JTNZHJc nhcHRuP7fDJENkD2gwwABaZfdrJPAcW9MpB2lW4pVzdPKS3PUvZ32XoePAGTsAnn C3nq+Z1QLh9XngeTN4vhGNRBD1CZcdVW/Nd2i7Pzn3L3y+pvVy06aJiYm0HYzKbe 2P/z6dQWuuhtUODVqdtRkarfXBzKZ8b7HVzxk+KA9ok/1eh5ITnCwc55ZDvnkaof HuqAa1GUoDEZ9Rov7kNbZ4cUTqQJhBrg9Hs7hvi0zOSVoC/B30GJF6pNs6r4uoq1 eQfVT3HDl5qOoFJ9DPHQXkSqBcH32k0= -----END CERTIFICATE-----Generated at Wed Nov 5 00:48:46 2025 by rpki-client