$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft File: lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft (raw, json) Hash identifier: UPmzBpuoW8vc4+/6EXtSvekzpgvF6llhihYCo+YEpwg= Subject key identifier: DF:4B:BA:63:4C:28:65:2D:80:DC:12:F9:2D:DA:9A:EB:E0:C6:F0:C4 Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft Manifest number: 022A Signing time: Tue 11 Nov 2025 00:17:14 +0000 Manifest this update: Tue 11 Nov 2025 00:17:14 +0000 Manifest next update: Tue 18 Nov 2025 00:17:14 +0000 Files and hashes: 1: lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl (hash: U1aUaTwP0oSOjt8stldQyjXnb+9gqTx8Nt3wb0DUhpU=) 2: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (hash: inCWlFg4eyi3SZb4mhg7QgWhnaX3zI3I9iGqmhoauLc=) 3: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (hash: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0=) 4: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (hash: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk=) 5: 912586FA7F4F11ED96FDE369C4F9AE02.roa (hash: vg/uug9ogWENghuoz8JvK8TWhFT7WTN1jNAJcLX1AUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 00:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Nov 11 00:17:14 2025 GMT Not After : Nov 18 00:17:14 2025 GMT Subject: CN=6912808a-bf21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:8d:35:98:14:e3:66:c7:3e:9d:fa:70:78: 21:1d:43:fe:ce:9e:9c:7d:89:5d:2b:56:1a:f9:14: f2:88:0b:cb:ae:08:cf:64:53:a9:82:27:95:11:0f: d2:46:96:a7:05:88:f3:cd:39:73:24:36:d8:e1:24: e9:1a:f6:5c:f5:49:42:e1:ea:c3:e8:75:f9:be:3b: 0a:70:d2:44:f3:06:6b:07:9b:03:53:57:e8:b7:f9: 1e:1c:99:74:5f:3a:fb:3f:15:3d:38:cb:2e:1d:e7: c7:78:ea:eb:0f:dc:f0:8b:d1:f4:0a:7e:a1:8f:d3: 76:a5:f4:72:80:f5:c4:92:ad:67:c0:cc:44:8c:ad: 41:54:ee:c7:1e:33:89:d7:17:c1:ee:31:e7:ef:be: 8c:8b:be:34:ad:27:76:2f:e2:e1:de:20:4b:03:75: c3:6b:12:a2:fa:16:39:39:85:30:ac:62:fc:92:8e: 45:b6:60:7a:5d:e5:25:5e:61:2e:7f:62:e7:3d:0d: 0d:fc:04:24:7d:4a:cf:38:ee:6d:dd:f2:61:a9:02: c1:59:57:e1:8b:6b:f6:42:b4:cc:f4:aa:85:46:53: 19:99:c9:96:3d:95:fd:6a:d2:33:18:5b:78:c8:eb: cf:cc:de:92:4e:40:4b:8a:9b:fd:b2:3f:3e:07:9a: 8b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:4B:BA:63:4C:28:65:2D:80:DC:12:F9:2D:DA:9A:EB:E0:C6:F0:C4 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e9:84:b4:64:51:19:ea:eb:6c:70:27:b8:f7:bb:f5:58:27: bb:b1:da:53:b2:49:7b:df:35:9f:28:3e:97:c0:fa:7e:63:81: c2:00:0d:1e:32:b0:ed:ef:3f:fb:32:67:c6:ae:0c:2d:25:f2: d5:15:cf:22:9a:42:f3:16:09:2e:9d:81:cb:57:bf:2d:52:52: 9b:d1:5f:c3:3c:98:06:6f:3f:74:46:76:e4:dd:1f:69:55:c8: 65:3e:b3:31:ce:f7:7b:6c:0c:a0:ef:21:91:85:ac:bf:8a:63: ac:3f:a9:7d:5f:4b:23:06:e7:25:99:a8:2e:f8:f8:9d:47:00: 3e:f7:a0:31:7a:e4:84:fd:e1:be:54:f1:8e:12:90:26:4d:e8: 4d:69:05:8a:9d:86:90:59:84:f5:ec:9f:05:00:0f:a8:a8:63: 92:15:8d:79:5f:cc:5d:8f:09:f9:1f:9b:a8:77:ec:14:03:b7: ee:09:4d:83:72:15:8c:43:77:dc:f1:02:76:3f:23:81:36:26: 01:9a:8f:8d:22:b6:79:a9:36:d3:14:73:94:ea:0d:d6:fb:bb: ff:da:78:2d:e0:db:19:29:f1:8a:01:72:d8:b0:da:27:41:a9: 96:50:dc:c0:52:69:5b:7b:57:eb:1e:62:5f:40:2d:ea:b7:4f: 6c:7d:ec:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUxMTExMDAxNzE0WhcNMjUxMTE4MDAxNzE0WjAYMRYwFAYD VQQDEw02OTEyODA4YS1iZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJeNNZgU42bHPp36cHghHUP+zp6cfYldK1Ya+RTyiAvLrgjPZFOpgieVEQ/S RpanBYjzzTlzJDbY4STpGvZc9UlC4erD6HX5vjsKcNJE8wZrB5sDU1fot/keHJl0 Xzr7PxU9OMsuHefHeOrrD9zwi9H0Cn6hj9N2pfRygPXEkq1nwMxEjK1BVO7HHjOJ 1xfB7jHn776Mi740rSd2L+Lh3iBLA3XDaxKi+hY5OYUwrGL8ko5FtmB6XeUlXmEu f2LnPQ0N/AQkfUrPOO5t3fJhqQLBWVfhi2v2QrTM9KqFRlMZmcmWPZX9atIzGFt4 yOvPzN6STkBLipv9sj8+B5qLmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9LumNM KGUtgNwS+S3amuvgxvDEMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0UzRi8zMDVFQjg3NjdDREIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRU aTBkelJWUzJrRk1SRFVXLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk6YS0ZFEZ6utscCe497v1WCe7sdpTskl73zWfKD6XwPp+Y4HCAA0e MrDt7z/7MmfGrgwtJfLVFc8imkLzFgkunYHLV78tUlKb0V/DPJgGbz90Rnbk3R9p VchlPrMxzvd7bAyg7yGRhay/imOsP6l9X0sjBuclmagu+PidRwA+96AxeuSE/eG+ VPGOEpAmTehNaQWKnYaQWYT17J8FAA+oqGOSFY15X8xdjwn5H5uod+wUA7fuCU2D chWMQ3fc8QJ2PyOBNiYBmo+NIrZ5qTbTFHOU6g3W+7v/2ngt4NsZKfGKAXLYsNon QamWUNzAUmlbe1frHmJfQC3qt09sfeyg -----END CERTIFICATE-----Generated at Tue Nov 11 18:28:34 2025 by rpki-client