$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft File: L1yb73Dl0CO3HEbLZs_iof20g1s.mft (raw, json) Hash identifier: B4U3ri+fN1nZxv0T9WepNog0244n/EZrDXnmXtSS4g4= Subject key identifier: 93:69:24:70:AB:41:1D:0C:94:64:95:44:F1:10:DE:45:AF:BD:2C:3A Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 07B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft Manifest number: 07B3 Signing time: Tue 04 Nov 2025 21:27:17 +0000 Manifest this update: Tue 04 Nov 2025 21:27:17 +0000 Manifest next update: Tue 11 Nov 2025 21:27:17 +0000 Files and hashes: 1: L1yb73Dl0CO3HEbLZs_iof20g1s.crl (hash: Tt+s8+Qpo9eO/qGbW0zgGBINKfC3atjf6aGhkmRYtLU=) 2: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (hash: V6nVYtxgABEEx59pXAhW4JauDnfyhwDJHmUDG1nlXFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E, serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: Nov 4 21:27:17 2025 GMT Not After : Nov 11 21:27:17 2025 GMT Subject: CN=690a6fb5-9e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3a:3d:19:a3:19:0f:75:55:85:b2:3d:bf:3e: 3e:aa:fe:a5:e9:fb:3e:a2:80:5a:b2:31:05:bc:43: 40:da:77:85:d4:ed:25:25:d4:e3:2c:e1:f8:7c:84: 67:5a:44:bd:6f:79:4d:bc:9f:8d:01:ca:2a:8b:4a: 32:62:57:b4:ea:bb:37:5f:99:7b:dd:34:39:76:73: 32:84:fc:be:08:bd:8b:8d:dd:0a:61:c9:53:ed:14: 27:6d:8d:8a:52:bd:b5:c0:f6:82:9f:49:75:a1:d3: 3d:20:fa:9d:a5:db:6a:a3:24:0f:1c:71:29:a0:28: 98:fe:87:3f:b0:08:b7:b5:c2:3a:6a:9a:30:bc:56: 4d:7c:81:13:5b:25:21:c9:c6:2e:47:6a:6a:67:9b: 77:46:b0:59:0e:4b:1d:01:16:01:99:34:ee:59:c1: 5b:90:99:1d:0b:64:51:f0:f3:b7:e4:0a:c1:46:96: cf:18:b3:d2:2d:42:bc:b5:ba:8a:0a:07:58:1b:de: f4:dc:54:a6:28:96:e9:5a:fd:be:80:0e:53:85:b3: cd:38:bf:7e:2d:b7:f2:e5:d8:2d:4d:3e:bd:ae:d7: 5f:64:ba:2d:be:a7:55:eb:dd:3e:2a:c0:a7:0d:10: e8:e1:8d:c1:fd:99:46:e2:37:ba:e7:6f:8f:01:51: b9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:69:24:70:AB:41:1D:0C:94:64:95:44:F1:10:DE:45:AF:BD:2C:3A X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:53:1e:51:89:6a:29:e0:0d:7e:9c:b1:3a:e8:7f:5b:6a:36: 27:3c:a5:27:b8:4b:9f:d8:39:9a:93:b1:28:6a:99:f7:4e:d9: 9f:1a:35:be:e2:dd:02:6e:67:bc:ff:42:0b:b8:11:89:c5:8e: a3:b9:d8:95:b6:f9:6c:08:e5:81:c0:ad:8d:2d:48:14:25:25: 74:1d:95:38:e1:dc:56:29:49:fe:bc:c6:de:99:b0:1a:12:e8: 3a:37:81:91:71:b2:7f:5e:3b:a1:ce:6f:25:85:75:1c:34:00: 29:c0:73:b3:ba:0d:62:8b:61:73:58:cd:9f:57:fa:81:58:a9: 27:1d:1b:79:83:dd:9e:3e:02:16:8a:47:13:1e:22:d8:f1:0b: ed:8c:6e:9a:8e:94:28:76:b1:22:01:4a:fb:74:ac:d5:61:39: 13:d1:2e:63:05:28:c5:e4:31:51:2e:10:36:bc:33:08:92:55: 3c:d2:1f:0c:96:e2:b7:e4:a4:a5:7c:80:fe:45:a5:6a:30:27: dc:29:2f:55:fb:6a:04:86:53:f1:3f:4f:af:be:54:76:5a:29: 2c:df:eb:76:bf:d6:60:f3:6d:07:a7:fe:cb:ef:47:1c:57:15: d5:27:8f:43:b2:7a:4c:76:37:67:77:3d:9b:d7:ba:9e:c1:8d: 14:10:35:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjUxMTA0MjEyNzE3WhcNMjUxMTExMjEyNzE3WjAYMRYwFAYD VQQDEw02OTBhNmZiNS05ZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTo9GaMZD3VVhbI9vz4+qv6l6fs+ooBasjEFvENA2neF1O0lJdTjLOH4fIRn WkS9b3lNvJ+NAcoqi0oyYle06rs3X5l73TQ5dnMyhPy+CL2Ljd0KYclT7RQnbY2K Ur21wPaCn0l1odM9IPqdpdtqoyQPHHEpoCiY/oc/sAi3tcI6apowvFZNfIETWyUh ycYuR2pqZ5t3RrBZDksdARYBmTTuWcFbkJkdC2RR8PO35ArBRpbPGLPSLUK8tbqK CgdYG9703FSmKJbpWv2+gA5ThbPNOL9+Lbfy5dgtTT69rtdfZLotvqdV690+KsCn DRDo4Y3B/ZlG4je652+PAVG5pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNpJHCr QR0MlGSVRPEQ3kWvvSw6MB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDU1RS82MkE1RUI2QTFENUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBD TzNIRWJMWnNfaW9mMjBnMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Ux5RiWop4A1+nLE66H9bajYnPKUnuEuf2Dmak7Eoapn3TtmfGjW+ 4t0Cbme8/0ILuBGJxY6judiVtvlsCOWBwK2NLUgUJSV0HZU44dxWKUn+vMbembAa Eug6N4GRcbJ/Xjuhzm8lhXUcNAApwHOzug1ii2FzWM2fV/qBWKknHRt5g92ePgIW ikcTHiLY8QvtjG6ajpQodrEiAUr7dKzVYTkT0S5jBSjF5DFRLhA2vDMIklU80h8M luK35KSlfID+RaVqMCfcKS9V+2oEhlPxP0+vvlR2Wiks3+t2v9Zg820Hp/7L70cc VxXVJ49DsnpMdjdndz2b17qewY0UEDWQ -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:35 2025 by rpki-client