$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: HkjWL935gIqEmlUJPNwzGnSXI3fFzFLNTkyls3Qkmrg= Subject key identifier: AF:38:B7:6A:05:1D:6D:16:26:92:60:F7:39:4D:E0:F1:9E:03:1E:DA Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 0615 Signing time: Sun 02 Nov 2025 22:50:30 +0000 Manifest this update: Sun 02 Nov 2025 22:50:30 +0000 Manifest next update: Sun 09 Nov 2025 22:50:30 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: dqqUU+GxRF0Xg+xqsAekZRCu8FYFyhRbQFxmJBlYicg=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Nov 2 22:50:30 2025 GMT Not After : Nov 9 22:50:30 2025 GMT Subject: CN=6907e036-bceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:09:bd:8f:19:41:6f:61:6b:22:bd:0f:f3:93: 71:2d:c6:d5:37:2f:83:c6:58:63:dc:b6:7c:de:68: c3:4b:1d:f3:f5:1d:16:71:0a:bf:2a:e3:b5:30:4e: b4:93:19:9d:94:bd:89:54:97:10:89:12:63:60:4a: 8f:8c:c6:44:f5:1d:d1:7c:ea:04:6b:72:25:41:3c: 91:29:b3:6c:44:19:b3:74:fa:f3:64:d2:91:58:70: b1:b7:2f:4c:08:73:93:cf:30:b0:c8:18:75:e0:4c: 36:b4:ea:4e:9b:8b:94:f5:3b:09:09:17:21:ad:df: d8:cc:ab:d5:ed:52:c2:dc:60:e7:87:f1:7f:e9:d8: c0:d9:c0:40:3f:8d:a7:90:d1:15:64:48:81:2a:66: 44:26:be:23:df:af:04:9f:4a:63:94:45:f7:dc:3f: f5:96:be:9a:92:bd:2d:b9:59:87:17:17:0f:4d:3f: d7:63:70:62:32:63:56:a0:a5:ff:22:45:31:69:e5: 64:f7:a9:49:c9:28:4e:7f:90:fe:d3:0a:70:b7:7d: 22:b8:f7:6c:14:94:f0:16:13:26:07:d3:e1:c6:4e: 0b:20:ec:ee:03:35:5c:b8:b1:fe:51:a2:dc:aa:10: 38:fc:13:15:92:eb:22:3e:4d:f4:21:c7:58:f5:d8: 0f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:38:B7:6A:05:1D:6D:16:26:92:60:F7:39:4D:E0:F1:9E:03:1E:DA X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:77:14:42:fe:73:74:43:db:82:bc:e5:b9:85:7a:56:a1:b1: 25:03:7d:b3:25:67:b0:15:78:b3:58:45:e5:57:9d:f2:3d:a1: 5c:73:1a:0d:6a:06:39:e9:e8:20:e5:cc:04:4a:5d:06:15:27: c2:ff:0b:27:8a:f1:e0:e3:af:84:ec:51:1f:96:a1:b7:4d:63: fd:3b:dd:7c:4c:f9:ab:8f:a4:ec:3c:f5:11:59:e6:61:2f:cd: f8:db:45:65:c0:be:a9:e1:53:3a:d5:28:07:f4:fc:14:46:e0: b8:c0:0c:bf:d6:35:64:e7:11:59:22:f5:e6:70:56:fa:9f:cb: 84:dd:b3:8a:f5:f7:cd:98:49:6a:a3:ed:7f:59:70:c9:1d:83: 80:5a:bb:53:38:ec:20:81:a6:ad:8e:e4:e1:36:d2:d6:26:3f: 20:1d:9d:db:de:f4:c2:6a:ac:3d:8a:3e:be:e2:75:25:97:5a: aa:0d:68:6c:c1:bd:7c:db:ac:d5:96:77:9d:2b:d6:24:64:e8: 27:45:bc:51:70:a1:4a:75:5d:87:3a:6e:0c:56:6e:65:27:61: ef:61:8f:d2:0a:55:71:b5:c6:e4:69:6d:c7:dd:e0:b1:f7:1c: 6c:20:6f:6e:dd:6b:ec:b7:b5:92:7d:09:c4:fa:7e:30:df:a8: b3:e0:b3:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUxMTAyMjI1MDMwWhcNMjUxMTA5MjI1MDMwWjAYMRYwFAYD VQQDEw02OTA3ZTAzNi1iY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQm9jxlBb2FrIr0P85NxLcbVNy+Dxlhj3LZ83mjDSx3z9R0WcQq/KuO1ME60 kxmdlL2JVJcQiRJjYEqPjMZE9R3RfOoEa3IlQTyRKbNsRBmzdPrzZNKRWHCxty9M CHOTzzCwyBh14Ew2tOpOm4uU9TsJCRchrd/YzKvV7VLC3GDnh/F/6djA2cBAP42n kNEVZEiBKmZEJr4j368En0pjlEX33D/1lr6akr0tuVmHFxcPTT/XY3BiMmNWoKX/ IkUxaeVk96lJyShOf5D+0wpwt30iuPdsFJTwFhMmB9Phxk4LIOzuAzVcuLH+UaLc qhA4/BMVkusiPk30IcdY9dgPyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK84t2oF HW0WJpJg9zlN4PGeAx7aMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvdxRC/nN0Q9uCvOW5hXpWobElA32zJWewFXizWEXlV53yPaFccxoN agY56egg5cwESl0GFSfC/wsnivHg46+E7FEflqG3TWP9O918TPmrj6TsPPURWeZh L83420VlwL6p4VM61SgH9PwURuC4wAy/1jVk5xFZIvXmcFb6n8uE3bOK9ffNmElq o+1/WXDJHYOAWrtTOOwggaatjuThNtLWJj8gHZ3b3vTCaqw9ij6+4nUll1qqDWhs wb1826zVlnedK9YkZOgnRbxRcKFKdV2HOm4MVm5lJ2HvYY/SClVxtcbkaW3H3eCx 9xxsIG9u3Wvst7WSfQnE+n4w36iz4LNb -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:00 2025 by rpki-client