$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: pTAc64puYp4NAhe9UetsiaqIwpDiU3QzKei6N66R0tE= Subject key identifier: 89:17:FC:7E:D5:33:C2:6E:04:B3:6E:B7:15:1F:68:BB:A1:61:78:96 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0130 Signing time: Thu 23 Oct 2025 06:23:58 +0000 Manifest this update: Thu 23 Oct 2025 06:23:57 +0000 Manifest next update: Thu 30 Oct 2025 06:23:57 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: r1w9do6bEINzH2hjrksnuU+EEUCwVLfM1tm1lOcLtBU=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Oct 23 06:23:57 2025 GMT Not After : Oct 30 06:23:57 2025 GMT Subject: CN=68f9c9fe-6b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:7a:0a:9c:05:4a:c2:5a:0a:42:94:2f:87: b8:fa:f4:78:3d:17:8d:b7:0e:2b:90:5a:26:2d:22: df:be:49:ef:c2:ad:81:00:c1:20:c3:7d:75:18:87: df:4c:a1:f7:12:44:09:4d:59:87:f0:02:4f:72:4c: f1:58:2b:99:2b:82:ee:70:06:8b:38:cf:e5:3e:e9: 1f:e7:9f:1b:fd:c9:ed:b4:62:a6:40:dc:c0:f2:4a: 08:9b:1d:ae:8f:c5:01:af:d9:ae:10:e3:2d:ba:ab: 18:16:6d:37:f5:a0:07:8d:db:e8:c0:2f:32:8b:fc: 9d:1a:01:b6:5b:c3:fe:87:c1:ec:28:9a:47:65:57: 4b:16:0e:49:cf:56:84:43:49:8d:f2:97:f0:cd:f2: 6e:43:49:39:f1:d7:4b:d5:8a:84:a9:42:dc:c7:0d: f2:41:14:18:54:ab:62:b7:62:57:e3:8f:cf:be:59: 58:ce:71:ca:f9:bb:01:3b:d4:dc:78:18:7e:1e:83: 4d:75:81:72:6e:4d:df:8b:9f:71:28:c7:a1:39:93: f6:f0:e9:1c:97:6c:42:d7:41:d4:a2:12:37:29:08: 77:8b:cf:8a:e2:ca:d7:70:b3:f2:0b:b3:62:f7:5f: f5:94:f8:8d:0a:fc:b8:08:51:63:44:03:ca:ac:ac: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:17:FC:7E:D5:33:C2:6E:04:B3:6E:B7:15:1F:68:BB:A1:61:78:96 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a1:18:33:67:54:da:5a:5f:d2:12:37:4e:43:70:fa:1a:3b: 79:b7:bf:22:c8:12:b8:98:82:3c:74:c1:74:b5:f7:71:55:2d: 5c:82:d2:ec:15:e6:8f:06:c5:83:1b:ad:93:23:42:f1:a3:cb: ed:ba:b3:06:7a:51:88:41:9a:68:23:dc:2f:42:d9:3e:76:77: 26:54:f5:a0:8e:e9:e4:04:0f:22:37:da:2d:a3:cf:ce:60:c1: 58:60:fc:ad:53:c3:5c:44:24:fc:4b:39:93:4e:d5:73:9c:0b: b7:4b:ff:d2:9c:c9:71:69:4e:9f:aa:f7:82:02:03:34:bd:b0: 87:d7:1e:91:2d:a3:cf:2c:d0:3e:92:83:6d:27:eb:28:b6:57: eb:2d:38:17:93:40:a7:2a:0c:cb:3b:46:ac:d6:95:5d:07:48: 88:1b:a5:b2:72:f3:02:f7:b6:cf:4f:f2:92:91:22:19:e5:cc: 9e:c4:9b:1f:af:b2:44:b4:22:21:4d:76:4b:38:de:a5:4b:5a: fe:34:68:5e:d1:c7:52:be:69:65:02:92:5b:be:4d:0d:86:38: 43:6f:90:5f:83:04:61:bb:ba:76:60:83:c0:b0:9e:ac:0e:74: f8:63:b4:d4:75:dd:b7:69:8d:39:fa:e3:b4:16:eb:a4:b2:ac: 66:7a:03:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUxMDIzMDYyMzU3WhcNMjUxMDMwMDYyMzU3WjAYMRYwFAYD VQQDEw02OGY5YzlmZS02YjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26N6CpwFSsJaCkKUL4e4+vR4PReNtw4rkFomLSLfvknvwq2BAMEgw311GIff TKH3EkQJTVmH8AJPckzxWCuZK4LucAaLOM/lPukf558b/cnttGKmQNzA8koImx2u j8UBr9muEOMtuqsYFm039aAHjdvowC8yi/ydGgG2W8P+h8HsKJpHZVdLFg5Jz1aE Q0mN8pfwzfJuQ0k58ddL1YqEqULcxw3yQRQYVKtit2JX44/PvllYznHK+bsBO9Tc eBh+HoNNdYFybk3fi59xKMehOZP28Okcl2xC10HUohI3KQh3i8+K4srXcLPyC7Ni 91/1lPiNCvy4CFFjRAPKrKzwnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkX/H7V M8JuBLNutxUfaLuhYXiWMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuoRgzZ1TaWl/SEjdOQ3D6Gjt5t78iyBK4mII8dMF0tfdxVS1cgtLs FeaPBsWDG62TI0Lxo8vturMGelGIQZpoI9wvQtk+dncmVPWgjunkBA8iN9oto8/O YMFYYPytU8NcRCT8SzmTTtVznAu3S//SnMlxaU6fqveCAgM0vbCH1x6RLaPPLNA+ koNtJ+sotlfrLTgXk0CnKgzLO0as1pVdB0iIG6WycvMC97bPT/KSkSIZ5cyexJsf r7JEtCIhTXZLON6lS1r+NGhe0cdSvmllApJbvk0NhjhDb5BfgwRhu7p2YIPAsJ6s DnT4Y7TUdd23aY05+uO0FuuksqxmegNQ -----END CERTIFICATE-----Generated at Fri Oct 24 21:21:42 2025 by rpki-client