$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft File: l9pBnzurP2V6paXATgV8StlhvFs.mft (raw, json) Hash identifier: yniLFB/2Vc2iMiXqt5v0JbvIqa+qWQqjQLiOHvZjPZo= Subject key identifier: 0A:63:90:3F:EA:EE:A2:CE:23:78:B0:D2:52:DE:00:10:A2:12:3F:13 Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft Manifest number: 0228 Signing time: Wed 05 Nov 2025 02:07:43 +0000 Manifest this update: Wed 05 Nov 2025 02:07:42 +0000 Manifest next update: Wed 12 Nov 2025 02:07:42 +0000 Files and hashes: 1: l9pBnzurP2V6paXATgV8StlhvFs.crl (hash: du756rRMTtl9r3FqUUush5tBw35IL4WzAeMmGkI4Pfo=) 2: B2F017A26BE311ED8B83B484C4F9AE02.roa (hash: 6uCw/qXIdZiC4cEobpHAa9i3YEi9P+DFX8n151x7wcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C, serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: Nov 5 02:07:42 2025 GMT Not After : Nov 12 02:07:42 2025 GMT Subject: CN=690ab16e-9aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:c5:65:9c:24:f4:59:79:56:b2:b5:a4:72: 43:90:11:a3:5b:47:25:fd:65:d5:70:20:1c:37:54: a2:d7:83:04:71:79:a5:9a:98:e9:1e:63:5e:c4:ce: 5a:94:4c:d8:f9:22:79:f1:ef:0c:d5:a9:df:6b:17: c3:67:e9:73:c9:b7:6c:a5:c4:43:43:a7:7f:43:ca: ff:ef:d3:4a:c6:e9:c8:22:08:f9:09:e0:83:d6:64: 0d:ac:11:1a:87:dc:08:de:84:06:e9:1b:a6:06:03: ae:50:65:98:55:c5:0f:6a:6f:1f:18:2a:31:d4:2c: c1:5e:44:74:99:0f:b1:51:52:fd:dc:40:01:be:2a: 49:05:d3:13:07:cc:e7:b0:11:af:86:76:1d:15:32: dd:ce:52:31:a1:fd:49:88:b5:fb:90:08:d7:ab:0f: 2e:03:90:2b:fa:62:f2:5c:15:6d:6e:66:67:dd:9e: c3:89:39:e6:e4:df:af:0a:51:e1:8c:02:27:04:70: bc:a1:6f:4a:88:05:c9:c6:36:90:ea:cf:6d:3e:41: ac:05:10:2b:44:14:13:c6:32:ba:b7:0d:b4:01:78: 57:ac:da:24:dc:1b:5e:99:a2:9c:e2:68:8d:47:5a: fd:49:9c:d7:49:72:27:46:e1:31:2f:a0:40:5d:3c: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:63:90:3F:EA:EE:A2:CE:23:78:B0:D2:52:DE:00:10:A2:12:3F:13 X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:28:f4:45:d5:31:35:e7:62:cc:be:96:c5:fb:f8:73:54:ed: 1a:87:92:d1:40:ab:a4:29:95:ec:35:33:58:90:c9:0f:fb:04: 83:ec:88:fb:39:bf:ef:b4:ac:c7:05:08:c0:bd:01:28:b9:c1: 7d:2d:18:63:0f:b9:11:ff:31:22:83:43:b3:37:32:b0:4b:8c: a0:21:72:23:8d:da:a9:b1:e0:b4:da:51:58:c3:6a:dd:a5:a1: af:c9:7f:8d:a3:7e:0b:b3:56:d6:c8:ce:0b:e8:92:d6:21:14: 48:f4:f4:68:68:4f:34:f4:45:aa:09:96:c1:25:fd:a4:28:de: 33:50:9b:01:82:09:64:48:f3:f1:4b:69:18:c7:ab:0b:30:50: ce:5f:8e:bc:e2:e9:cc:3c:85:d7:67:48:6d:37:a3:0d:07:d4: 3f:a5:9d:91:63:a1:85:1f:3a:fa:d5:23:84:50:bc:8d:dd:b7: dc:95:50:b8:ec:4c:cc:20:96:92:cd:1d:3f:48:cb:d7:da:19: 87:63:04:2a:f9:de:b5:48:33:b8:c2:50:b9:79:7c:8d:f6:67: ca:0d:89:1f:7a:b0:eb:63:a2:60:40:6d:d4:28:c8:4b:a3:1a: 45:ba:81:43:7b:e3:29:e0:56:00:f5:4e:6d:e2:74:f7:89:e0: 7a:9e:31:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjUxMTA1MDIwNzQyWhcNMjUxMTEyMDIwNzQyWjAYMRYwFAYD VQQDEw02OTBhYjE2ZS05YWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GHFZZwk9Fl5VrK1pHJDkBGjW0cl/WXVcCAcN1Si14MEcXmlmpjpHmNexM5a lEzY+SJ58e8M1anfaxfDZ+lzybdspcRDQ6d/Q8r/79NKxunIIgj5CeCD1mQNrBEa h9wI3oQG6RumBgOuUGWYVcUPam8fGCox1CzBXkR0mQ+xUVL93EABvipJBdMTB8zn sBGvhnYdFTLdzlIxof1JiLX7kAjXqw8uA5Ar+mLyXBVtbmZn3Z7DiTnm5N+vClHh jAInBHC8oW9KiAXJxjaQ6s9tPkGsBRArRBQTxjK6tw20AXhXrNok3BtemaKc4miN R1r9SZzXSXInRuExL6BAXTyyPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApjkD/q 7qLOI3iw0lLeABCiEj8TMB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjUxQy9GOEY3RTI1MDZCRTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAy VjZwYVhBVGdWOFN0bGh2RnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABKPRF1TE152LMvpbF+/hzVO0ah5LRQKukKZXsNTNYkMkP+wSD7Ij7 Ob/vtKzHBQjAvQEoucF9LRhjD7kR/zEig0OzNzKwS4ygIXIjjdqpseC02lFYw2rd paGvyX+No34Ls1bWyM4L6JLWIRRI9PRoaE809EWqCZbBJf2kKN4zUJsBgglkSPPx S2kYx6sLMFDOX4684unMPIXXZ0htN6MNB9Q/pZ2RY6GFHzr61SOEULyN3bfclVC4 7EzMIJaSzR0/SMvX2hmHYwQq+d61SDO4wlC5eXyN9mfKDYkferDrY6JgQG3UKMhL oxpFuoFDe+Mp4FYA9U5t4nT3ieB6njFW -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:26 2025 by rpki-client