$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: vdC8j0S2guhAPbyXPIViGAYs/Mw31P8KRSPKUYJow4c= Subject key identifier: DD:B2:C5:73:F3:A8:49:90:F5:65:17:7E:28:FE:44:C6:DA:01:03:EB Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0A11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0A09 Signing time: Tue 04 Nov 2025 19:55:50 +0000 Manifest this update: Tue 04 Nov 2025 19:55:49 +0000 Manifest next update: Tue 11 Nov 2025 19:55:49 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: vMF5+xyhTqvXC8PNwYSKeVfTe9HC6jdlcwrNeXGyBYA=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2577 (0xa11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Nov 4 19:55:49 2025 GMT Not After : Nov 11 19:55:49 2025 GMT Subject: CN=690a5a45-9493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f2:13:a9:2e:fb:d8:42:38:0e:89:10:ea:d1: d8:10:7c:3c:60:c0:88:e9:66:83:ee:73:8b:95:20: 97:b6:e7:59:9c:46:2a:7c:1d:53:a1:7e:f6:be:60: 54:9c:91:8b:de:4e:f5:c7:25:5a:d6:bb:04:4c:ca: ab:99:79:57:16:a7:cd:20:9c:5e:b7:fd:f5:9d:c9: 9c:2e:3b:54:45:a1:4f:86:21:c0:e4:47:1d:92:37: fc:15:ca:11:ef:15:9c:3d:92:f8:0e:49:4f:d3:3d: 75:ab:9d:3b:92:6f:d7:e8:5b:de:7e:18:24:ac:89: 79:7f:cf:35:46:11:6b:bd:fc:a1:07:c1:ef:b8:a2: 2c:d8:35:45:db:81:d3:4b:8f:23:cc:8d:0f:a9:cd: c9:8b:83:c2:7a:c4:91:27:68:ff:1f:05:57:f1:c3: 92:44:1a:0b:aa:4c:af:bc:05:c6:e2:9b:0a:26:ce: 54:cc:22:1b:80:e1:a6:bb:ae:e3:c5:60:35:83:10: ba:27:00:56:e2:af:42:61:85:87:a6:1c:18:89:6b: 83:59:36:08:85:dc:b3:ca:d2:80:c6:55:77:e5:96: 4e:8d:f8:56:60:76:cd:52:9a:04:5a:e9:32:fa:70: 02:8b:dd:36:83:9a:27:ba:e4:4c:0d:12:6c:55:6d: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B2:C5:73:F3:A8:49:90:F5:65:17:7E:28:FE:44:C6:DA:01:03:EB X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9e:23:ac:b6:4b:8c:89:1f:cb:e4:f9:7f:4c:dc:9b:4f:7b: e6:55:ec:f2:dc:39:cf:60:2b:18:73:49:51:28:e5:4a:30:e4: 2b:12:7e:b1:04:64:8a:f4:be:e5:d5:39:f7:1a:5c:aa:91:89: 8a:d1:29:04:5a:87:b8:2e:62:20:5e:58:49:2a:1c:e8:ff:b4: 46:78:b8:cf:f0:9e:1d:db:4d:79:74:4a:44:ca:a9:0e:51:37: 9c:f0:ea:13:0f:3f:89:7d:a3:1a:da:0e:b7:98:88:93:c0:a5: f1:11:10:09:21:aa:c3:ef:1c:89:04:db:78:77:9e:82:5e:76: 90:e4:38:d6:6d:6e:dd:15:2c:a1:25:85:b3:ed:17:06:78:1a: 62:55:ea:a5:a9:43:d3:e7:89:16:11:6a:11:d9:92:e3:7f:6f: 12:11:2e:12:b8:0b:d7:33:35:cc:f0:eb:99:fd:d9:76:db:c3: 27:32:a2:7b:73:9b:dc:63:b0:af:e7:40:aa:d5:f1:7b:2c:4e: ec:43:eb:a1:b0:48:3a:d0:0d:2d:59:ba:d1:ab:ad:db:24:2c: 05:f9:70:f0:45:60:79:dd:0b:c0:49:89:c1:03:f1:b1:34:f2: c2:4b:ca:78:10:55:e8:72:54:1b:db:23:1a:5e:c7:25:22:77: cf:fe:da:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUxMTA0MTk1NTQ5WhcNMjUxMTExMTk1NTQ5WjAYMRYwFAYD VQQDEw02OTBhNWE0NS05NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/ITqS772EI4DokQ6tHYEHw8YMCI6WaD7nOLlSCXtudZnEYqfB1ToX72vmBU nJGL3k71xyVa1rsETMqrmXlXFqfNIJxet/31ncmcLjtURaFPhiHA5Ecdkjf8FcoR 7xWcPZL4DklP0z11q507km/X6FvefhgkrIl5f881RhFrvfyhB8HvuKIs2DVF24HT S48jzI0Pqc3Ji4PCesSRJ2j/HwVX8cOSRBoLqkyvvAXG4psKJs5UzCIbgOGmu67j xWA1gxC6JwBW4q9CYYWHphwYiWuDWTYIhdyzytKAxlV35ZZOjfhWYHbNUpoEWuky +nACi902g5onuuRMDRJsVW0CFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2yxXPz qEmQ9WUXfij+RMbaAQPrMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCniOstkuMiR/L5Pl/TNybT3vmVezy3DnPYCsYc0lRKOVKMOQrEn6x BGSK9L7l1Tn3GlyqkYmK0SkEWoe4LmIgXlhJKhzo/7RGeLjP8J4d2015dEpEyqkO UTec8OoTDz+JfaMa2g63mIiTwKXxERAJIarD7xyJBNt4d56CXnaQ5DjWbW7dFSyh JYWz7RcGeBpiVeqlqUPT54kWEWoR2ZLjf28SES4SuAvXMzXM8OuZ/dl228MnMqJ7 c5vcY7Cv50Cq1fF7LE7sQ+uhsEg60A0tWbrRq63bJCwF+XDwRWB53QvASYnBA/Gx NPLCS8p4EFXoclQb2yMaXsclInfP/tou -----END CERTIFICATE-----Generated at Wed Nov 5 13:51:57 2025 by rpki-client