$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: NBUL/vkCj0RckThC9o5SEDCCl3QrlFXsSCm/bpkGCJs= Subject key identifier: F7:6B:B8:F0:78:EF:E9:2E:8B:89:1F:A4:A0:15:85:8B:C0:13:14:83 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09E3 Signing time: Sat 18 Oct 2025 20:56:26 +0000 Manifest this update: Sat 18 Oct 2025 20:56:25 +0000 Manifest next update: Sat 25 Oct 2025 20:56:25 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: WNGHcTDmV9E4Tri/n7wAryd08ZgjnaV3coPN76y+2wM=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: BtxRntrFd2gslQewNiqZhW9mWCF+vgLPC26me/9r2bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Oct 18 20:56:25 2025 GMT Not After : Oct 25 20:56:25 2025 GMT Subject: CN=68f3fef9-1cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:db:f5:dd:4e:5c:54:a8:2d:4d:cf:00:f8: 10:fd:72:94:d7:e5:28:4f:d4:b4:9a:38:94:af:af: cc:e8:e7:c4:4b:3b:d1:c2:dd:d0:4d:b1:68:30:3d: e7:9d:5f:48:d5:89:e0:01:f1:d9:eb:13:8c:b3:87: ea:33:61:da:12:4d:e5:1c:12:77:88:d8:f3:db:88: df:0c:02:eb:d5:c7:e0:c5:32:27:98:b3:c1:e7:ee: f9:5c:54:97:f6:5f:bc:b5:5a:91:74:46:26:5a:e5: 45:8a:3a:9b:40:55:57:bd:db:91:b7:b9:ef:e5:5f: 71:1c:ba:e6:1b:60:cb:fc:6b:47:1a:f7:5b:ea:ed: 81:04:da:fe:2d:55:45:e6:34:3f:44:99:89:2d:3e: ce:d3:5b:20:28:ee:b5:ac:74:f4:a1:90:dc:db:77: 79:a6:10:af:94:b9:85:a1:46:54:e6:ae:93:59:1d: 8f:eb:2c:4c:1b:cd:9f:c4:bb:ff:e0:7f:ea:ee:c9: 9d:64:e5:e9:8a:1b:e0:0e:9c:c5:67:b6:d1:1e:21: a5:a0:72:d3:49:21:2f:12:8b:4b:c3:2c:5f:83:90: 61:86:23:71:90:d1:1d:f0:ad:4f:1b:ff:a7:71:db: b3:94:d3:b2:74:db:08:5f:6a:be:7a:c9:59:bf:44: 2c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6B:B8:F0:78:EF:E9:2E:8B:89:1F:A4:A0:15:85:8B:C0:13:14:83 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:25:3c:26:54:51:76:d7:4b:9d:ce:0d:f5:f1:30:f2:33:44: bb:02:00:8d:89:8f:6b:7d:b0:58:d7:65:1d:ed:c6:41:df:7d: 6c:88:42:e4:d0:bc:d1:38:98:b3:f3:f2:c1:7b:21:9c:6a:e2: 8e:b2:7a:74:9f:38:9d:7a:45:00:d0:aa:3c:d5:18:8b:0b:72: 78:52:b4:59:ea:ed:e3:f4:44:d7:67:65:01:fd:ca:ee:9f:bb: b5:cf:49:1a:3b:52:28:ac:bc:f8:8a:7f:17:cf:42:00:c9:18: 0a:c6:d0:6e:56:65:ae:fe:71:26:d8:03:61:4c:d0:9e:a1:a6: fd:28:30:3e:0a:5e:ae:57:cc:69:26:33:c3:13:47:ba:f8:1d: 3d:75:9a:a7:8d:4e:37:8e:8b:5d:03:bc:57:49:9c:24:ce:4b: a9:61:57:75:a4:13:d9:c6:ea:c1:4a:9f:16:91:4d:5a:28:89: 2a:66:ad:be:71:0d:1d:7c:fb:c1:f2:d4:2d:e7:e3:9f:ed:15: eb:57:7d:4b:64:0d:ee:cb:de:b3:48:f5:e2:2a:09:b5:34:3e: 17:b5:51:87:af:41:a4:aa:60:17:03:f2:98:48:fa:24:f9:51: 3c:94:da:20:e1:76:2f:f0:8f:83:33:cd:3f:54:16:4e:b7:ea: 15:f6:ae:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUxMDE4MjA1NjI1WhcNMjUxMDI1MjA1NjI1WjAYMRYwFAYD VQQDEw02OGYzZmVmOS0xY2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3bb9d1OXFSoLU3PAPgQ/XKU1+UoT9S0mjiUr6/M6OfESzvRwt3QTbFoMD3n nV9I1YngAfHZ6xOMs4fqM2HaEk3lHBJ3iNjz24jfDALr1cfgxTInmLPB5+75XFSX 9l+8tVqRdEYmWuVFijqbQFVXvduRt7nv5V9xHLrmG2DL/GtHGvdb6u2BBNr+LVVF 5jQ/RJmJLT7O01sgKO61rHT0oZDc23d5phCvlLmFoUZU5q6TWR2P6yxMG82fxLv/ 4H/q7smdZOXpihvgDpzFZ7bRHiGloHLTSSEvEotLwyxfg5BhhiNxkNEd8K1PG/+n cduzlNOydNsIX2q+eslZv0QskQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdruPB4 7+kui4kfpKAVhYvAExSDMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYJTwmVFF210udzg318TDyM0S7AgCNiY9rfbBY12Ud7cZB331siELk 0LzROJiz8/LBeyGcauKOsnp0nzidekUA0Ko81RiLC3J4UrRZ6u3j9ETXZ2UB/cru n7u1z0kaO1IorLz4in8Xz0IAyRgKxtBuVmWu/nEm2ANhTNCeoab9KDA+Cl6uV8xp JjPDE0e6+B09dZqnjU43jotdA7xXSZwkzkupYVd1pBPZxurBSp8WkU1aKIkqZq2+ cQ0dfPvB8tQt5+Of7RXrV31LZA3uy96zSPXiKgm1ND4XtVGHr0GkqmAXA/KYSPok +VE8lNog4XYv8I+DM80/VBZOt+oV9q4W -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:19 2025 by rpki-client