$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: lATK54gQkaex8RCzPCRLWvNX0mk2h4nPcL66DTP1ZRc= Subject key identifier: 63:AF:64:21:F2:46:97:EF:17:57:E1:78:3A:37:97:DB:F0:A5:26:22 Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0BC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0BB9 Signing time: Sun 02 Nov 2025 18:54:55 +0000 Manifest this update: Sun 02 Nov 2025 18:54:54 +0000 Manifest next update: Sun 09 Nov 2025 18:54:54 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: Vu76QmoTFvedCKgp8wMjQN5kR+OtXnlXutwNSFV2Ouo=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: DFFj/9slvAH+PEbWNXT9e7xoWXrU79TcIDoX6Iil9eI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Nov 2 18:54:54 2025 GMT Not After : Nov 9 18:54:54 2025 GMT Subject: CN=6907a8ff-7ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:76:6e:05:8e:ad:9a:03:0e:67:9a:95:57:04: dc:a5:97:c0:4c:6e:29:47:72:46:f6:64:2b:3f:62: f4:85:5f:9d:4c:ad:c9:cb:c7:e8:d1:e1:ea:68:aa: f3:0a:6e:1b:d1:27:e9:24:ce:c8:de:20:a8:41:1c: 3b:71:3d:ba:6c:ec:d3:69:1b:45:cd:13:fd:de:85: f6:0c:cb:41:ac:77:63:7d:b4:e8:dc:93:52:0a:f9: 84:c6:fd:13:33:4c:05:07:fc:b4:5d:77:ec:ed:4b: a8:f7:38:d2:75:b4:8f:1f:9b:88:20:18:d6:41:bd: 50:94:34:6d:dc:77:ab:17:20:b7:8b:97:b1:b6:4c: 26:41:3d:09:76:30:32:ed:9e:ee:ff:9f:f3:57:7c: 45:29:b8:64:6e:ea:75:41:e7:c4:5f:96:b2:50:ae: fa:72:8c:49:51:96:da:2d:a1:b4:97:0f:d0:1b:90: 18:cd:a1:5e:a6:5c:06:2b:69:3b:02:04:44:2d:da: 48:e7:7e:cf:da:b2:cb:91:d2:3c:9d:7f:df:8b:db: 52:33:24:b5:63:60:bc:8c:99:f5:01:df:57:56:99: cb:ce:d3:3c:43:fa:d1:9c:e1:35:2f:40:89:9a:9a: 30:5e:ac:68:67:71:39:04:42:11:6f:30:22:c6:11: 4d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AF:64:21:F2:46:97:EF:17:57:E1:78:3A:37:97:DB:F0:A5:26:22 X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:91:c7:86:1c:28:3e:57:d2:44:0a:a5:07:14:59:63:ee:f4: c8:a8:b3:20:82:d5:21:9e:3f:bb:42:97:ac:52:82:f2:5a:67: fb:fc:c9:7a:17:f4:1e:63:99:82:46:ca:14:2e:4c:f4:53:7a: 90:b3:ec:14:eb:f4:74:6a:aa:ac:2f:76:ae:73:39:09:a9:b2: 96:9e:92:5d:2b:b2:01:05:90:23:e9:82:59:92:e1:3c:52:ba: 24:11:98:11:c4:40:03:95:c2:ce:71:b7:97:d2:d8:3b:a1:85: 17:95:fc:44:e4:86:1b:80:e0:f6:ba:6a:60:75:99:22:ab:58: 64:b7:3d:76:8d:18:90:5d:a7:2f:9e:19:02:31:bb:c7:a9:85: b4:b4:f5:e7:22:06:50:f7:b8:a4:e8:47:c7:02:45:78:fe:d6: fe:0e:42:f6:62:f9:6a:95:de:ba:02:ce:67:b6:57:2d:36:0c: 24:db:05:3d:38:d8:a3:a6:cf:92:4e:64:b9:ed:16:2d:87:93: 76:ba:e9:a9:96:1c:c1:6a:75:7e:87:22:68:c1:b6:af:5a:c0: 36:cc:7a:93:e7:93:98:11:75:e0:8f:1e:c9:af:14:b4:8c:e0: b6:26:6c:4a:a7:80:87:79:97:7a:11:2a:16:2a:82:7d:82:b0: ed:c9:02:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUxMTAyMTg1NDU0WhcNMjUxMTA5MTg1NDU0WjAYMRYwFAYD VQQDEw02OTA3YThmZi03ZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnZuBY6tmgMOZ5qVVwTcpZfATG4pR3JG9mQrP2L0hV+dTK3Jy8fo0eHqaKrz Cm4b0SfpJM7I3iCoQRw7cT26bOzTaRtFzRP93oX2DMtBrHdjfbTo3JNSCvmExv0T M0wFB/y0XXfs7Uuo9zjSdbSPH5uIIBjWQb1QlDRt3HerFyC3i5extkwmQT0JdjAy 7Z7u/5/zV3xFKbhkbup1QefEX5ayUK76coxJUZbaLaG0lw/QG5AYzaFeplwGK2k7 AgRELdpI537P2rLLkdI8nX/fi9tSMyS1Y2C8jJn1Ad9XVpnLztM8Q/rRnOE1L0CJ mpowXqxoZ3E5BEIRbzAixhFNtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOvZCHy RpfvF1fheDo3l9vwpSYiMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfkceGHCg+V9JECqUHFFlj7vTIqLMggtUhnj+7QpesUoLyWmf7/Ml6 F/QeY5mCRsoULkz0U3qQs+wU6/R0aqqsL3auczkJqbKWnpJdK7IBBZAj6YJZkuE8 UrokEZgRxEADlcLOcbeX0tg7oYUXlfxE5IYbgOD2umpgdZkiq1hktz12jRiQXacv nhkCMbvHqYW0tPXnIgZQ97ik6EfHAkV4/tb+DkL2Yvlqld66As5ntlctNgwk2wU9 ONijps+STmS57RYth5N2uumplhzBanV+hyJowbavWsA2zHqT55OYEXXgjx7JrxS0 jOC2JmxKp4CHeZd6ESoWKoJ9grDtyQKl -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:12 2025 by rpki-client