$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: /BJwfWImyVvPm2H5eqjLSRs4lgRD/zw9u8sWSwxGi/c= Subject key identifier: 3E:17:08:DF:A7:15:DA:62:0C:30:54:0D:7A:57:24:07:98:31:16:A1 Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: F6 Signing time: Mon 03 Nov 2025 05:11:50 +0000 Manifest this update: Mon 03 Nov 2025 05:11:49 +0000 Manifest next update: Mon 10 Nov 2025 05:11:49 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: fiiuOmPjRDPHYlS6KKKSi4g5ow78Xn2tQIsVwBvgsz8=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 6fHZUduLlppKNeQyv7MyGz7d2EPeIy77Os8/ALcrrKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Nov 3 05:11:49 2025 GMT Not After : Nov 10 05:11:49 2025 GMT Subject: CN=69083995-eb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:99:8a:01:cf:73:c6:b6:53:c6:4b:96:f5: f1:44:30:1b:f5:4a:86:1f:43:56:fd:1e:0b:5a:43: 76:c2:d1:06:4c:0f:7e:28:95:fb:18:b5:86:31:24: 19:52:c7:98:73:52:af:1c:c7:91:85:0a:64:31:08: e9:d4:9c:98:e5:ec:d3:d6:55:6e:87:f8:de:46:37: d3:77:fe:f1:d2:04:1b:eb:43:ad:f0:05:aa:66:81: b2:c8:06:a5:42:18:d7:c1:b9:7a:3b:31:47:ec:6e: 9b:2b:31:6a:02:5d:31:5a:a1:23:1c:a5:e3:6d:1b: 98:26:64:77:29:4e:c7:ed:f4:7b:dc:e6:c8:73:61: 86:af:35:c1:39:5c:ec:86:ef:de:00:ba:d9:f7:af: 8e:8c:8a:7e:89:bc:ed:3e:7b:28:8a:29:d9:3f:cf: df:7f:57:b4:1e:dd:bc:87:3f:97:a5:aa:f3:5c:69: 6d:08:b4:75:66:a1:ab:ce:36:46:6b:60:b8:54:27: f2:dd:4c:84:2e:0c:ed:4e:5c:9d:25:af:65:05:83: d3:38:25:38:d2:e0:12:eb:6b:02:44:76:e5:17:6b: 8e:67:f2:67:e4:0e:a9:84:0d:1b:d6:3d:67:19:7a: b4:ac:24:87:88:b6:d4:31:d1:d1:30:72:e1:eb:5b: 17:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:17:08:DF:A7:15:DA:62:0C:30:54:0D:7A:57:24:07:98:31:16:A1 X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:89:d9:71:b3:8c:c3:dc:03:77:dc:d9:de:2d:9c:21:46:8f: f4:38:e3:d9:44:26:21:24:3a:8b:c5:3f:6e:03:a6:19:3e:50: d6:1d:9b:9a:ad:24:9d:88:eb:8f:78:9a:b3:66:db:c7:9a:5a: 20:20:78:f1:5f:33:41:9b:14:cc:5d:d2:2a:92:e7:35:95:f4: 49:df:20:da:e9:2a:38:40:ed:5d:91:60:21:bb:82:08:be:a5: 7d:23:d3:82:9e:65:f7:e7:24:6a:20:d9:92:9e:da:36:ac:67: 95:cf:8c:6d:01:74:ee:5d:c6:a0:ad:44:6e:55:1d:29:b0:d9: 2e:b4:08:4b:a2:0c:5a:30:97:a5:c9:b9:e6:10:34:3a:16:34: 9e:af:31:06:e5:b7:9c:57:7d:22:14:d0:58:2f:12:93:ea:84: 40:53:a9:a7:32:03:e8:a0:de:f1:54:de:77:8c:f4:93:ef:6e: 13:f4:1e:d2:00:a4:c4:f2:7c:27:71:16:13:2d:c3:f0:79:5c: 85:c6:c8:26:ab:3c:6c:e0:2b:de:49:90:fb:59:8c:db:0e:ff: d7:2e:b1:ba:e5:36:c4:ea:35:c4:5b:83:a3:fd:bc:d2:4a:83: dc:fb:de:e3:e3:c9:cc:33:03:46:ab:87:de:8f:19:44:9f:db: ce:87:2a:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUxMTAzMDUxMTQ5WhcNMjUxMTEwMDUxMTQ5WjAYMRYwFAYD VQQDEw02OTA4Mzk5NS1lYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjmZigHPc8a2U8ZLlvXxRDAb9UqGH0NW/R4LWkN2wtEGTA9+KJX7GLWGMSQZ UseYc1KvHMeRhQpkMQjp1JyY5ezT1lVuh/jeRjfTd/7x0gQb60Ot8AWqZoGyyAal QhjXwbl6OzFH7G6bKzFqAl0xWqEjHKXjbRuYJmR3KU7H7fR73ObIc2GGrzXBOVzs hu/eALrZ96+OjIp+ibztPnsoiinZP8/ff1e0Ht28hz+XparzXGltCLR1ZqGrzjZG a2C4VCfy3UyELgztTlydJa9lBYPTOCU40uAS62sCRHblF2uOZ/Jn5A6phA0b1j1n GXq0rCSHiLbUMdHRMHLh61sXgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4XCN+n FdpiDDBUDXpXJAeYMRahMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+idlxs4zD3AN33NneLZwhRo/0OOPZRCYhJDqLxT9uA6YZPlDWHZua rSSdiOuPeJqzZtvHmlogIHjxXzNBmxTMXdIqkuc1lfRJ3yDa6So4QO1dkWAhu4II vqV9I9OCnmX35yRqINmSnto2rGeVz4xtAXTuXcagrURuVR0psNkutAhLogxaMJel ybnmEDQ6FjSerzEG5becV30iFNBYLxKT6oRAU6mnMgPooN7xVN53jPST724T9B7S AKTE8nwncRYTLcPweVyFxsgmqzxs4CveSZD7WYzbDv/XLrG65TbE6jXEW4Oj/bzS SoPc+97j48nMMwNGq4fejxlEn9vOhyr7 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:54 2025 by rpki-client