$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: mGmGNuOqHWQS6U0dG0Za0bWKZexJ3AxHV1RG5gPgPFo= Subject key identifier: C5:FC:7F:ED:6E:3E:84:C0:07:85:9F:9F:FF:17:75:A6:08:A5:32:09 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 1077 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 1074 Signing time: Tue 04 Nov 2025 17:28:04 +0000 Manifest this update: Tue 04 Nov 2025 17:28:04 +0000 Manifest next update: Tue 11 Nov 2025 17:28:04 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: x5kiYeyFiQBAwOPkpZjZKFW9/4wtZVCzGNMjcwTrHzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4215 (0x1077) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Nov 4 17:28:04 2025 GMT Not After : Nov 11 17:28:04 2025 GMT Subject: CN=690a37a4-08cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:55:e8:d9:26:e3:f0:ed:5f:f0:f1:77:c8: e8:51:2a:6d:b8:1b:7a:f7:3d:a3:19:86:35:c3:4b: 35:0d:2c:d7:66:73:9f:33:6a:f8:55:3a:7b:5b:c4: df:91:69:b0:91:68:a9:db:08:50:9f:18:8e:c0:04: 6c:bc:09:51:ba:ca:45:71:6e:e9:50:33:1c:20:09: f0:6f:1d:81:1c:22:84:2a:b9:11:31:17:8c:c2:a5: 9d:e5:43:70:6b:1e:7a:1b:63:1c:0a:d5:8a:68:5c: 1c:97:82:ae:2a:6d:85:e0:09:33:72:d1:de:d0:96: 69:c6:b8:fa:67:25:4f:c8:f1:de:00:ac:a4:5f:19: f3:b8:22:f4:42:dd:91:92:4f:55:dc:04:d2:b4:7a: 45:0f:36:96:70:bc:b5:17:ca:ef:94:5c:92:40:0a: 72:fa:c6:02:24:f8:c7:0e:2e:81:e7:3c:89:b8:08: 7b:c7:9a:cb:22:76:64:b2:18:50:31:4c:97:29:ad: f7:e7:65:85:fa:98:cc:85:4d:c6:e9:44:3f:48:11: c6:f1:2b:b3:fb:64:1d:fe:dd:cb:a5:f7:13:21:d5: b6:45:2f:86:17:1d:28:de:d4:a8:57:4f:4a:ae:45: 2b:ba:4a:b0:05:3a:14:83:69:7b:f5:a0:50:c7:7a: fc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FC:7F:ED:6E:3E:84:C0:07:85:9F:9F:FF:17:75:A6:08:A5:32:09 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:69:a2:7e:90:70:35:0d:74:8b:ce:a6:23:61:3f:9a:03:06: 90:87:12:d7:1a:c2:93:17:1e:3e:a6:fc:c1:e3:ab:75:00:4a: a9:6a:01:9b:12:19:c9:50:db:f7:12:6f:9d:de:25:fa:89:6b: 3a:40:6b:46:ab:a0:82:de:aa:fe:69:58:fa:ae:ae:99:ef:3d: 96:6f:ce:0c:f4:e3:e1:e3:7c:33:a6:ff:ac:e3:b9:50:cf:95: dd:f3:c5:ef:47:85:e4:f4:d2:22:ad:67:30:ac:00:93:f9:ec: f5:cf:07:38:fc:ac:8b:35:58:a4:27:73:ae:36:d3:d7:5c:96: c2:2e:b5:bd:b8:bd:89:22:56:98:48:36:5b:a0:da:43:19:dc: 4e:4d:2a:37:c0:73:7f:d4:f5:cf:3a:ae:33:a7:bd:32:1d:b6: ea:5e:3d:48:4d:6c:81:1e:6e:f9:83:3d:04:dc:f0:53:18:36: 00:a6:62:62:cb:92:ce:8a:29:ba:21:c6:81:15:50:73:d4:2e: d8:a0:50:7d:f5:1e:ee:e6:05:11:bc:6f:55:72:bd:c1:c5:22: 84:d6:90:7d:93:e9:7a:3d:6b:2a:d7:c4:9d:da:e8:01:ef:75: 85:e0:23:01:68:55:a0:18:a1:3f:32:b1:9f:ae:64:a1:33:6e: d8:55:79:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUxMTA0MTcyODA0WhcNMjUxMTExMTcyODA0WjAYMRYwFAYD VQQDEw02OTBhMzdhNC0wOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqhV6Nkm4/DtX/Dxd8joUSptuBt69z2jGYY1w0s1DSzXZnOfM2r4VTp7W8Tf kWmwkWip2whQnxiOwARsvAlRuspFcW7pUDMcIAnwbx2BHCKEKrkRMReMwqWd5UNw ax56G2McCtWKaFwcl4KuKm2F4AkzctHe0JZpxrj6ZyVPyPHeAKykXxnzuCL0Qt2R kk9V3ATStHpFDzaWcLy1F8rvlFySQApy+sYCJPjHDi6B5zyJuAh7x5rLInZkshhQ MUyXKa3352WF+pjMhU3G6UQ/SBHG8Suz+2Qd/t3LpfcTIdW2RS+GFx0o3tSoV09K rkUrukqwBToUg2l79aBQx3r82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMX8f+1u PoTAB4Wfn/8XdaYIpTIJMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7aaJ+kHA1DXSLzqYjYT+aAwaQhxLXGsKTFx4+pvzB46t1AEqpagGb EhnJUNv3Em+d3iX6iWs6QGtGq6CC3qr+aVj6rq6Z7z2Wb84M9OPh43wzpv+s47lQ z5Xd88XvR4Xk9NIirWcwrACT+ez1zwc4/KyLNVikJ3OuNtPXXJbCLrW9uL2JIlaY SDZboNpDGdxOTSo3wHN/1PXPOq4zp70yHbbqXj1ITWyBHm75gz0E3PBTGDYApmJi y5LOiim6IcaBFVBz1C7YoFB99R7u5gURvG9Vcr3BxSKE1pB9k+l6PWsq18Sd2ugB 73WF4CMBaFWgGKE/MrGfrmShM27YVXmd -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:17 2025 by rpki-client