$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft File: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft (raw, json) Hash identifier: cTyA+ZjZ5a7IXMRX+jguDChwdxgWXgmNylizB1O1nAc= Subject key identifier: 0F:B1:80:7C:BE:D7:95:72:6E:5F:47:99:31:10:4E:E6:A7:BD:4A:84 Authority key identifier: 97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 Certificate issuer: /CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft Manifest number: 043A Signing time: Mon 03 Nov 2025 00:13:28 +0000 Manifest this update: Mon 03 Nov 2025 00:13:28 +0000 Manifest next update: Mon 10 Nov 2025 00:13:28 +0000 Files and hashes: 1: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl (hash: 3hqgXTXRUaWj8wPd9/bzFE1UGdGXHeK1anA0YmqIzYs=) 2: F865B8887CEB11ECA79BD83DC4F9AE02.roa (hash: 9AbsTY8cTY46TpPDuvc4IXAIWNpWgIpIVFjtcxPCVMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB09, serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Validity Not Before: Nov 3 00:13:28 2025 GMT Not After : Nov 10 00:13:28 2025 GMT Subject: CN=6907f3a8-8b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a0:5d:62:92:fb:27:1a:9a:25:d9:2e:5b:3a: 4c:0c:9d:b9:46:a2:05:8b:bb:5b:1b:16:cb:80:60: c9:4d:81:06:cf:06:7c:2f:91:4f:82:26:43:f2:89: 14:11:60:65:20:bd:7a:43:2e:b1:d0:fa:52:a6:d5: 85:1a:de:b8:12:88:f4:28:c6:ea:57:45:f0:cb:fe: 84:58:64:48:ac:cf:6a:15:08:fb:43:65:36:e3:15: eb:b2:c4:62:af:9c:6e:b5:6a:33:2c:b4:21:91:29: c3:38:a4:27:ba:e0:fe:f6:a3:c1:3a:f1:3f:fa:eb: 99:72:db:93:27:28:64:7e:a8:4d:a9:2b:cb:d0:44: 66:67:0e:ae:ad:7e:32:94:f1:d3:e3:18:c0:7d:25: eb:ea:ed:60:2f:16:3c:db:ac:a6:a1:3e:37:3f:f3: ee:97:4f:c8:8b:6d:86:7e:da:dc:cb:d8:4d:75:a2: 44:b7:90:15:ef:64:87:e6:c8:07:2c:a4:81:97:27: 66:9d:c0:f2:9a:46:ed:d9:97:34:bf:25:f4:c0:0d: 40:a6:97:82:f8:86:cf:07:42:3e:f8:b9:79:f3:07: de:39:8d:7a:e5:42:4f:48:ea:fc:8f:ef:3f:42:9d: d8:48:17:84:0e:88:fe:2c:e7:32:51:4d:de:28:fa: fe:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B1:80:7C:BE:D7:95:72:6E:5F:47:99:31:10:4E:E6:A7:BD:4A:84 X509v3 Authority Key Identifier: keyid:97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:5e:de:28:a6:4a:5a:0a:7b:27:66:a7:dd:80:d7:32:74:45: dc:6e:6e:ca:eb:c5:d6:e5:3f:6f:4b:1e:bb:e0:45:15:87:3e: 62:ee:fc:f2:ca:61:0f:e4:68:a7:6e:34:22:59:b4:15:d7:81: de:69:c5:4f:ec:12:38:63:e8:29:59:5d:12:d1:58:a5:18:85: fd:7d:64:5e:a8:a9:68:f4:12:7c:1c:cc:80:0d:40:89:85:7a: 46:f1:da:ba:5d:1c:13:da:6d:e6:bf:49:0f:cc:1b:82:70:0b: 75:2d:0d:84:35:02:ae:98:25:6f:d6:63:58:2f:f5:cd:61:f6: e3:66:ed:e5:5c:60:c1:d2:5a:e2:cf:39:3f:80:3a:f4:7d:54: 9a:03:0c:6b:81:7e:6f:51:a9:9e:35:e4:f7:3b:ac:98:7a:00: ac:8b:3d:a8:cb:92:38:f5:de:1f:d9:b2:1a:ed:b3:46:f4:1d: c1:37:b2:f7:28:d3:cb:2a:91:6e:67:ad:27:5a:7c:4d:c7:20: 29:99:8e:7a:2a:37:af:ea:6d:69:74:51:03:fc:f6:f1:b6:15: da:c2:c3:eb:b6:04:c3:be:e9:12:3a:64:12:7f:0b:a4:9f:63: 56:9d:9d:24:85:cf:db:d9:ae:ce:d1:1d:4a:8a:07:c5:e5:cb: 87:16:84:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMDkxMTAvBgNVBAUTKDk3NUJENTVENjE1Qzk4NjBBQ0NGRDg2MDk5ODUzQkNC MTlBOTlCRTQwHhcNMjUxMTAzMDAxMzI4WhcNMjUxMTEwMDAxMzI4WjAYMRYwFAYD VQQDEw02OTA3ZjNhOC04YjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36BdYpL7JxqaJdkuWzpMDJ25RqIFi7tbGxbLgGDJTYEGzwZ8L5FPgiZD8okU EWBlIL16Qy6x0PpSptWFGt64Eoj0KMbqV0Xwy/6EWGRIrM9qFQj7Q2U24xXrssRi r5xutWozLLQhkSnDOKQnuuD+9qPBOvE/+uuZctuTJyhkfqhNqSvL0ERmZw6urX4y lPHT4xjAfSXr6u1gLxY826ymoT43P/Pul0/Ii22Gftrcy9hNdaJEt5AV72SH5sgH LKSBlydmncDymkbt2Zc0vyX0wA1AppeC+IbPB0I++Ll58wfeOY165UJPSOr8j+8/ Qp3YSBeEDoj+LOcyUU3eKPr+RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+xgHy+ 15Vybl9HmTEQTuanvUqEMB8GA1UdIwQYMBaAFJdb1V1hXJhgrM/YYJmFO8sZqZvk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIwOS82MTFEQUJBMDdD RTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21HQ3N6OWhnbVlVN3l4bXBt LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxdlZYV0ZjbUdDc3o5aGdtWVU3eXhtcG0tUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIwOS82MTFEQUJBMDdDRTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21H Q3N6OWhnbVlVN3l4bXBtLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYXt4opkpaCnsnZqfdgNcydEXcbm7K68XW5T9vSx674EUVhz5i7vzy ymEP5GinbjQiWbQV14HeacVP7BI4Y+gpWV0S0VilGIX9fWReqKlo9BJ8HMyADUCJ hXpG8dq6XRwT2m3mv0kPzBuCcAt1LQ2ENQKumCVv1mNYL/XNYfbjZu3lXGDB0lri zzk/gDr0fVSaAwxrgX5vUameNeT3O6yYegCsiz2oy5I49d4f2bIa7bNG9B3BN7L3 KNPLKpFuZ60nWnxNxyApmY56Kjev6m1pdFED/PbxthXawsPrtgTDvukSOmQSfwuk n2NWnZ0khc/b2a7O0R1KigfF5cuHFoSf -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:15 2025 by rpki-client