$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: VeZ3sL9nyhdoDSeY7HBSSq6hqOKS3Y6VK2cG2OYSxis= Subject key identifier: 81:5A:AD:E5:42:E3:D9:D3:6F:C0:87:CE:D6:07:44:24:D3:B0:74:A6 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 012F Signing time: Sun 19 Oct 2025 07:22:19 +0000 Manifest this update: Sun 19 Oct 2025 07:22:18 +0000 Manifest next update: Sun 26 Oct 2025 07:22:18 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: id6c76i5LvDT9+LQGmq/49kYcGqrqciffx6q+tH+Ed0=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Oct 19 07:22:18 2025 GMT Not After : Oct 26 07:22:18 2025 GMT Subject: CN=68f491aa-5c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:41:81:b7:10:dd:eb:f8:54:68:26:cb:1c: ac:ac:f4:ca:55:ee:7c:6b:d9:1a:ad:2f:a0:fc:b0: 37:1f:b6:31:c7:5c:4a:eb:4c:e7:e2:de:2a:b8:49: 52:e4:5d:a9:56:99:41:2d:9e:4c:f5:3d:fc:58:5b: 85:0b:37:b1:1d:5d:91:22:00:84:71:ea:fa:42:dc: 65:4e:dc:6a:14:71:96:15:50:b0:1b:46:fb:57:c8: 84:20:05:e0:74:ff:03:3e:75:7f:55:11:ab:ec:5a: e8:cb:49:85:78:e1:51:bf:04:dd:d1:0f:5d:00:60: 35:70:16:94:eb:b0:2e:43:ad:f7:11:ab:25:61:66: 6c:13:d4:dc:43:60:01:bb:08:32:ad:3a:66:34:b5: fc:ad:c6:9d:50:35:71:b1:04:96:64:0b:10:93:30: ff:4d:a2:63:b9:da:fa:7d:8e:4b:bc:7a:b6:60:f8: 99:85:d5:d2:0a:10:db:17:bb:84:39:c7:63:ce:44: fd:aa:61:5a:9f:61:76:94:06:bc:fa:22:4a:68:58: e0:fd:51:bb:71:28:1a:cb:06:33:78:aa:2b:bd:cb: 6a:de:52:d4:2c:27:92:d5:d0:52:6c:3e:c4:70:01: 06:c1:e1:83:e7:0c:d2:cc:d6:72:24:66:87:79:da: cd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:5A:AD:E5:42:E3:D9:D3:6F:C0:87:CE:D6:07:44:24:D3:B0:74:A6 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:39:93:b0:60:ad:c6:98:a9:d1:5d:06:77:f4:ab:0b:2c:bc: f1:05:bc:48:4a:38:ee:d2:90:61:00:10:23:80:39:a8:fb:a8: e8:3c:c5:66:00:2d:fd:01:7d:7d:19:68:e9:98:c4:b6:1f:b6: 51:0d:f0:e0:ce:e6:37:f4:f4:24:54:53:c0:b5:f4:47:28:01: 8f:5b:68:ea:3f:7e:40:56:07:d9:d0:37:c7:82:9b:75:a3:82: 2e:eb:11:0c:59:04:6f:99:8a:3c:33:e9:10:0a:40:ee:f0:6f: 14:27:0b:cb:9e:8d:ed:18:23:78:6f:d0:61:58:05:b9:40:39: 19:b8:19:c5:ac:0d:cc:71:3f:15:8d:b1:d4:a8:b1:dd:cb:5d: 93:bd:aa:5f:7d:fd:cf:ba:18:f8:43:9e:7e:70:0e:2d:92:f1: 43:c5:e7:fd:d9:1e:22:8b:e0:f6:8f:d5:ca:50:39:f5:2a:2e: 1e:40:e9:71:47:25:63:c2:21:a9:7c:dc:6a:03:c4:5f:59:11: 49:10:26:9a:0b:1f:7c:79:80:cc:58:1b:13:4c:0f:78:a9:bf: a9:36:2a:4d:ae:d2:79:09:fb:04:8c:e2:65:cb:0d:c1:ea:ee: cb:d7:58:38:63:a3:40:b0:59:b9:d3:1f:0f:dc:e4:de:18:bc: bb:e7:7a:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUxMDE5MDcyMjE4WhcNMjUxMDI2MDcyMjE4WjAYMRYwFAYD VQQDEw02OGY0OTFhYS01YzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfRBgbcQ3ev4VGgmyxysrPTKVe58a9karS+g/LA3H7Yxx1xK60zn4t4quElS 5F2pVplBLZ5M9T38WFuFCzexHV2RIgCEcer6QtxlTtxqFHGWFVCwG0b7V8iEIAXg dP8DPnV/VRGr7Froy0mFeOFRvwTd0Q9dAGA1cBaU67AuQ633EaslYWZsE9TcQ2AB uwgyrTpmNLX8rcadUDVxsQSWZAsQkzD/TaJjudr6fY5LvHq2YPiZhdXSChDbF7uE OcdjzkT9qmFan2F2lAa8+iJKaFjg/VG7cSgaywYzeKorvctq3lLULCeS1dBSbD7E cAEGweGD5wzSzNZyJGaHedrNrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFareVC 49nTb8CHztYHRCTTsHSmMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNOZOwYK3GmKnRXQZ39KsLLLzxBbxISjju0pBhABAjgDmo+6joPMVm AC39AX19GWjpmMS2H7ZRDfDgzuY39PQkVFPAtfRHKAGPW2jqP35AVgfZ0DfHgpt1 o4Iu6xEMWQRvmYo8M+kQCkDu8G8UJwvLno3tGCN4b9BhWAW5QDkZuBnFrA3McT8V jbHUqLHdy12Tvapfff3Puhj4Q55+cA4tkvFDxef92R4ii+D2j9XKUDn1Ki4eQOlx RyVjwiGpfNxqA8RfWRFJECaaCx98eYDMWBsTTA94qb+pNipNrtJ5CfsEjOJlyw3B 6u7L11g4Y6NAsFm50x8P3OTeGLy753rA -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:53 2025 by rpki-client