$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: UpwwqKRbrcj+FuakGcJ5niKw6QSoPOL3+3SPuEuNjTQ= Subject key identifier: 88:0A:52:95:00:32:24:26:CB:02:6E:15:7B:BC:E9:77:21:09:60:A2 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 105E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 105B Signing time: Thu 18 Sep 2025 17:33:31 +0000 Manifest this update: Thu 18 Sep 2025 17:33:30 +0000 Manifest next update: Thu 25 Sep 2025 17:33:30 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: W4SdDswTStC1qmNLNkDkz1uSu/Q07PciWitce8lUZG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4190 (0x105e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Sep 18 17:33:30 2025 GMT Not After : Sep 25 17:33:30 2025 GMT Subject: CN=68cc426a-da7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:92:17:01:60:73:aa:54:c4:d4:18:f3:68: 1a:c4:c4:54:ae:b1:cd:2a:79:09:b3:da:db:c3:02: c4:46:f1:8f:fb:00:f0:fd:70:cb:f1:cb:22:84:6b: b1:4f:fd:7d:32:95:6d:ca:c5:d4:e7:f3:37:a7:92: 9c:ef:05:1b:16:f9:f0:9d:cd:16:22:85:a0:db:d7: bc:88:56:ea:84:9a:b1:b2:5f:65:5e:14:4f:78:85: da:db:fe:94:53:72:2c:8d:17:8d:92:15:76:ed:62: 4e:14:94:67:24:e1:ce:45:5b:9d:39:62:da:f1:19: cf:7a:4b:35:bc:e9:ec:cd:cb:07:a2:a8:7b:0a:cc: 50:2c:cb:85:1c:bb:67:1d:a7:cd:b0:f8:51:d1:70: f7:45:ad:03:d9:b4:fb:fb:38:a3:a1:9f:a3:ff:75: 25:2a:2f:51:9b:be:25:11:1a:47:7a:44:c6:0a:a7: fa:3c:ae:3b:9e:f1:6b:d0:6f:3f:d1:98:bb:33:ee: eb:5e:38:a4:91:69:45:b7:bd:7d:d6:6a:44:be:0c: ef:c4:43:48:a2:a6:05:27:63:7a:48:82:a0:67:47: aa:a0:cb:52:79:03:c4:dd:f5:fe:1e:90:e2:7a:ca: 61:50:e2:34:86:53:83:70:c2:b7:d9:cc:ab:db:d3: 81:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0A:52:95:00:32:24:26:CB:02:6E:15:7B:BC:E9:77:21:09:60:A2 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a5:4d:a5:9e:dd:92:f1:ae:34:c3:af:45:b0:1c:99:37:32: 25:d4:87:ba:44:00:d1:bc:28:90:e3:c4:cb:ab:55:71:03:b8: 85:a9:1f:9f:7b:a4:83:11:95:1a:9b:db:83:b3:5e:5f:f8:1a: 83:03:00:46:ac:c8:5c:36:f3:e5:13:1f:5c:ee:52:15:bb:cf: b8:b3:47:12:55:61:86:37:c5:af:33:88:dc:2b:22:f7:66:50: d1:37:3e:5e:4c:4b:02:c9:da:e8:1f:44:04:d1:55:02:99:07: b9:0b:d3:72:d4:da:ee:9a:da:8e:e4:a0:fe:85:15:14:0d:82: 84:95:8f:aa:04:84:71:e0:bd:82:fb:36:71:8f:0f:9d:17:1b: 04:9b:16:81:1d:c9:7b:29:ea:04:ed:89:1d:5d:a8:e6:41:a1: a3:a0:27:15:1e:1c:8f:ed:71:a3:1b:0a:3e:dc:12:11:60:b6: fd:ad:42:ab:7a:c6:2e:fd:ec:24:92:3b:35:6f:c0:de:f7:a7: 87:dd:91:70:ad:59:b4:3f:eb:8a:cd:9f:fe:fc:57:72:ae:3f: d6:30:26:fa:bf:e3:c2:1b:ec:c7:00:38:32:ed:7b:28:44:00: 84:ad:1e:7a:05:34:98:a5:10:40:e4:7f:f7:6b:c3:42:51:f5: b5:34:50:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwOTE4MTczMzMwWhcNMjUwOTI1MTczMzMwWjAYMRYwFAYD VQQDEw02OGNjNDI2YS1kYTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+6SFwFgc6pUxNQY82gaxMRUrrHNKnkJs9rbwwLERvGP+wDw/XDL8csihGux T/19MpVtysXU5/M3p5Kc7wUbFvnwnc0WIoWg29e8iFbqhJqxsl9lXhRPeIXa2/6U U3IsjReNkhV27WJOFJRnJOHORVudOWLa8RnPeks1vOnszcsHoqh7CsxQLMuFHLtn HafNsPhR0XD3Ra0D2bT7+zijoZ+j/3UlKi9Rm74lERpHekTGCqf6PK47nvFr0G8/ 0Zi7M+7rXjikkWlFt7191mpEvgzvxENIoqYFJ2N6SIKgZ0eqoMtSeQPE3fX+HpDi esphUOI0hlODcMK32cyr29OBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgKUpUA MiQmywJuFXu86XchCWCiMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9pU2lnt2S8a40w69FsByZNzIl1Ie6RADRvCiQ48TLq1VxA7iFqR+f e6SDEZUam9uDs15f+BqDAwBGrMhcNvPlEx9c7lIVu8+4s0cSVWGGN8WvM4jcKyL3 ZlDRNz5eTEsCydroH0QE0VUCmQe5C9Ny1NrumtqO5KD+hRUUDYKElY+qBIRx4L2C +zZxjw+dFxsEmxaBHcl7KeoE7YkdXajmQaGjoCcVHhyP7XGjGwo+3BIRYLb9rUKr esYu/ewkkjs1b8De96eH3ZFwrVm0P+uKzZ/+/Fdyrj/WMCb6v+PCG+zHADgy7Xso RACErR56BTSYpRBA5H/3a8NCUfW1NFDR -----END CERTIFICATE-----Generated at Thu Sep 18 23:11:00 2025 by rpki-client