$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft File: aLP_FmWJyEQaRP3KYfQrOmOuESk.mft (raw, json) Hash identifier: kXAbB6my3DO8luA86lQk4stWrtsnvNQWLlH+PBwTFrg= Subject key identifier: CA:D6:C4:33:BF:BB:C1:01:B9:E8:FF:BE:0A:34:67:F5:48:03:6E:01 Authority key identifier: 68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 Certificate issuer: /CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft Manifest number: 01AE Signing time: Mon 03 Nov 2025 03:57:57 +0000 Manifest this update: Mon 03 Nov 2025 03:57:57 +0000 Manifest next update: Mon 10 Nov 2025 03:57:57 +0000 Files and hashes: 1: aLP_FmWJyEQaRP3KYfQrOmOuESk.crl (hash: dBDA6peRX2z8ca1jFoPDgeFbGpsC2QDDcIkC1R0KcSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Validity Not Before: Nov 3 03:57:57 2025 GMT Not After : Nov 10 03:57:57 2025 GMT Subject: CN=69082845-0c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:ca:6e:3c:ae:12:38:85:a0:f6:76:d9:36: e2:0c:08:d3:cb:94:d6:e5:36:dc:dd:52:4f:18:18: 96:d0:cf:00:6f:e5:cb:52:27:5b:7c:8e:ce:f4:d9: 72:a0:54:b3:fc:9b:b2:34:8b:d5:14:85:d1:25:72: e1:b4:29:56:d5:54:6c:bd:6e:ab:41:df:f4:7a:ee: a3:0c:a6:27:f4:12:4d:14:27:c7:95:95:56:47:8c: cd:d4:c6:01:24:6c:96:12:7b:a3:02:9c:1e:59:26: f2:67:c2:5c:9b:dc:10:93:6e:a0:df:70:e0:29:d8: 6c:c6:5c:95:c2:2c:8b:aa:1b:1b:68:fc:dc:50:28: 7d:f3:00:5f:f9:63:6c:c9:b4:ef:68:03:77:37:c8: 22:6f:ef:bc:4c:f9:06:f6:ff:09:8d:a6:a1:f4:91: f3:22:a0:97:43:07:fd:00:40:bd:74:6b:a2:e4:5e: 38:53:dd:36:f2:48:6b:0f:71:de:6e:da:7c:6c:6d: d3:94:27:e4:9d:93:90:27:2c:4a:dd:56:a2:8d:0d: b4:d0:4a:f3:e2:0e:fe:5d:1b:91:27:c2:63:70:d5: 9c:52:24:ef:c8:89:71:35:e7:f5:ec:7b:3c:79:d7: 61:50:ac:76:52:91:6b:db:d8:c6:c7:52:09:5a:d8: 6e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D6:C4:33:BF:BB:C1:01:B9:E8:FF:BE:0A:34:67:F5:48:03:6E:01 X509v3 Authority Key Identifier: keyid:68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:67:e4:30:38:fc:2b:35:95:b6:a0:e9:f8:ca:28:23:21:11: 52:cc:47:7e:6e:28:f3:e9:6f:3d:65:99:17:c7:ff:93:41:18: e9:c5:ae:01:13:da:64:00:e3:f8:27:44:3a:06:b1:5a:b7:3a: 50:31:4e:d2:9f:9e:72:70:e3:05:68:c7:93:32:c4:a4:a0:09: 74:76:b9:3e:42:cc:35:0e:79:43:9f:8f:f7:67:b4:e0:57:8b: 69:41:06:d9:05:84:f2:b3:2c:32:a9:4e:5e:60:0e:7f:fb:ce: de:6f:18:e1:34:56:4a:42:fc:cf:15:9e:a3:39:fb:f7:6c:79: 72:d2:5b:0d:ae:55:9d:fd:3e:34:09:58:8e:60:69:97:63:d0: 68:35:50:f1:71:4f:29:32:61:e3:56:01:60:0c:93:dd:75:5f: 4e:04:02:9e:86:9c:9e:09:e0:bf:a3:07:5f:2e:19:c1:02:6a: b4:7c:79:0e:d8:74:11:46:07:f7:bc:12:c0:5d:b1:aa:17:43: 49:0b:79:8f:76:b7:d8:47:11:e3:9d:7d:9e:55:e2:1a:95:4a: c4:5d:4f:04:d1:4d:44:c6:c4:02:db:eb:63:c3:a1:5e:28:eb: 11:92:78:d6:85:d7:01:09:f8:95:b9:61:41:d8:9c:31:cc:5f: 74:b3:37:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJDNUQxMTAvBgNVBAUTKDY4QjNGRjE2NjU4OUM4NDQxQTQ0RkRDQTYxRjQyQjNB NjNBRTExMjkwHhcNMjUxMTAzMDM1NzU3WhcNMjUxMTEwMDM1NzU3WjAYMRYwFAYD VQQDEw02OTA4Mjg0NS0wYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys7KbjyuEjiFoPZ22TbiDAjTy5TW5Tbc3VJPGBiW0M8Ab+XLUidbfI7O9Nly oFSz/JuyNIvVFIXRJXLhtClW1VRsvW6rQd/0eu6jDKYn9BJNFCfHlZVWR4zN1MYB JGyWEnujApweWSbyZ8Jcm9wQk26g33DgKdhsxlyVwiyLqhsbaPzcUCh98wBf+WNs ybTvaAN3N8gib++8TPkG9v8Jjaah9JHzIqCXQwf9AEC9dGui5F44U9028khrD3He btp8bG3TlCfknZOQJyxK3VaijQ200Erz4g7+XRuRJ8JjcNWcUiTvyIlxNef17Hs8 eddhUKx2UpFr29jGx1IJWthubQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrWxDO/ u8EBuej/vgo0Z/VIA24BMB8GA1UdIwQYMBaAFGiz/xZlichEGkT9ymH0KzpjrhEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlFUWFSUDNLWWZRck9tT3VF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMUF9GbVdKeUVRYVJQM0tZZlFyT21PdUVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlF UWFSUDNLWWZRck9tT3VFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjZ+QwOPwrNZW2oOn4yigjIRFSzEd+bijz6W89ZZkXx/+TQRjpxa4B E9pkAOP4J0Q6BrFatzpQMU7Sn55ycOMFaMeTMsSkoAl0drk+Qsw1DnlDn4/3Z7Tg V4tpQQbZBYTysywyqU5eYA5/+87ebxjhNFZKQvzPFZ6jOfv3bHly0lsNrlWd/T40 CViOYGmXY9BoNVDxcU8pMmHjVgFgDJPddV9OBAKehpyeCeC/owdfLhnBAmq0fHkO 2HQRRgf3vBLAXbGqF0NJC3mPdrfYRxHjnX2eVeIalUrEXU8E0U1ExsQC2+tjw6Fe KOsRknjWhdcBCfiVuWFB2JwxzF90szfw -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:18 2025 by rpki-client