$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: V+8PS+wg5ZP9TT7mSvMLoYlf+vFB0nV4bs7JAOda3oE= Subject key identifier: 5A:C4:02:12:60:3A:94:89:BA:EE:37:21:BF:B0:81:45:6F:2D:F6:20 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: E6 Signing time: Mon 03 Nov 2025 05:28:40 +0000 Manifest this update: Mon 03 Nov 2025 05:28:40 +0000 Manifest next update: Mon 10 Nov 2025 05:28:40 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: OAKC5dlQACuF0t8mh4pJBk2ADejGPc/Lfkay/vzOCEQ=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Nov 3 05:28:40 2025 GMT Not After : Nov 10 05:28:40 2025 GMT Subject: CN=69083d88-4df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d5:13:c4:a2:5f:61:c0:0b:47:a6:2d:0d:77: d7:24:b7:2e:28:54:7f:31:ee:17:a0:15:73:90:af: 73:8f:0c:04:d3:d2:67:b1:8f:99:f3:1f:3c:78:1d: 7a:40:43:ef:67:66:f3:60:6a:95:2d:9d:49:5e:1b: 79:b9:61:e6:01:f2:a0:ca:ec:9b:db:7f:79:3a:00: 69:2f:cc:51:5b:13:94:2a:b2:ca:91:38:b0:87:17: 05:aa:e7:1b:e7:13:b7:f9:8f:b0:be:3d:ef:9e:87: cf:69:36:65:4f:1f:4e:d5:db:16:99:b3:c7:0e:9b: 9a:ce:9c:8f:20:23:29:66:c2:36:0e:e6:0c:a1:a2: 43:be:69:dd:11:33:71:2f:be:7d:47:6a:46:60:a2: f9:48:98:33:ca:3b:b0:01:d1:e6:f2:41:07:84:bc: 64:18:1e:86:40:2b:a8:f7:a4:ff:80:09:2f:ac:ee: e3:1d:8f:59:51:88:e0:1a:57:a0:b4:64:91:c4:5f: 0e:83:9f:cf:19:e3:fc:04:68:40:68:5b:63:5c:54: 3f:f3:f2:c9:53:d2:9e:9a:92:6c:30:12:c0:81:97: 67:28:8a:fd:c5:fd:61:bc:69:4e:75:7d:a4:f1:54: 0f:28:fa:65:80:ce:c4:7a:a4:bf:fd:97:aa:f3:56: e5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C4:02:12:60:3A:94:89:BA:EE:37:21:BF:B0:81:45:6F:2D:F6:20 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:24:f0:91:70:93:05:0e:1f:f5:1a:b6:03:09:6a:e7:3d:58: 24:d7:8b:ee:a6:e0:67:8b:06:fd:17:cd:c9:93:b6:db:ec:75: 62:75:04:f3:f9:cd:21:00:d2:b6:f4:9a:43:e6:5c:59:99:98: 20:78:cb:a9:29:77:a6:79:5d:a3:87:7a:6d:33:5f:38:98:f6: e8:c1:1e:b0:1d:60:76:2c:24:75:66:dc:06:ea:2a:cb:43:c4: dc:5d:97:c6:2c:81:b8:5e:4e:02:14:a4:f7:bb:ac:06:aa:99: 23:ed:36:95:a7:a3:d4:f3:71:7c:0b:a4:55:0d:d2:58:82:3f: 67:78:3a:f7:c3:a1:b0:d7:cd:08:22:28:c4:d2:f3:49:53:8a: 08:c6:85:9a:46:8d:79:2d:14:6d:7a:18:e1:be:ce:0f:0e:56: eb:10:71:24:d0:3c:05:7d:35:f6:43:b4:df:88:37:27:99:d5: a4:6f:06:89:2b:a7:b2:64:f2:7d:c0:d0:33:d7:48:fc:36:b6: 28:a0:a0:0e:bd:df:15:66:6d:09:56:10:0d:c5:de:e5:56:37: 15:51:ed:10:13:96:03:5f:b1:46:b8:af:b0:cf:cb:3e:67:11: 5a:37:4b:ea:ce:42:07:3f:b0:71:9f:7b:4e:aa:fc:ed:72:df: 53:a5:ad:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUxMTAzMDUyODQwWhcNMjUxMTEwMDUyODQwWjAYMRYwFAYD VQQDEw02OTA4M2Q4OC00ZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNUTxKJfYcALR6YtDXfXJLcuKFR/Me4XoBVzkK9zjwwE09JnsY+Z8x88eB16 QEPvZ2bzYGqVLZ1JXht5uWHmAfKgyuyb2395OgBpL8xRWxOUKrLKkTiwhxcFqucb 5xO3+Y+wvj3vnofPaTZlTx9O1dsWmbPHDpuazpyPICMpZsI2DuYMoaJDvmndETNx L759R2pGYKL5SJgzyjuwAdHm8kEHhLxkGB6GQCuo96T/gAkvrO7jHY9ZUYjgGleg tGSRxF8Og5/PGeP8BGhAaFtjXFQ/8/LJU9KempJsMBLAgZdnKIr9xf1hvGlOdX2k 8VQPKPplgM7EeqS//Zeq81blyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrEAhJg OpSJuu43Ib+wgUVvLfYgMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYJPCRcJMFDh/1GrYDCWrnPVgk14vupuBniwb9F83Jk7bb7HVidQTz +c0hANK29JpD5lxZmZggeMupKXemeV2jh3ptM184mPbowR6wHWB2LCR1ZtwG6irL Q8TcXZfGLIG4Xk4CFKT3u6wGqpkj7TaVp6PU83F8C6RVDdJYgj9neDr3w6Gw180I IijE0vNJU4oIxoWaRo15LRRtehjhvs4PDlbrEHEk0DwFfTX2Q7TfiDcnmdWkbwaJ K6eyZPJ9wNAz10j8NrYooKAOvd8VZm0JVhANxd7lVjcVUe0QE5YDX7FGuK+wz8s+ ZxFaN0vqzkIHP7Bxn3tOqvztct9Tpa1A -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:03 2025 by rpki-client