$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft File: lFmgev60b3mSRf7CNW08usm-2Ig.mft (raw, json) Hash identifier: wSFsMhimZSn2KXrBF74typG/3fUaUvs/e/YfHkcx0vY= Subject key identifier: 4B:CB:FF:C7:76:D0:FD:E3:0C:02:FC:74:42:EE:2A:8E:C7:DB:12:DA Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 Certificate issuer: /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft Manifest number: 016E Signing time: Mon 03 Nov 2025 03:53:57 +0000 Manifest this update: Mon 03 Nov 2025 03:53:56 +0000 Manifest next update: Mon 10 Nov 2025 03:53:56 +0000 Files and hashes: 1: lFmgev60b3mSRf7CNW08usm-2Ig.crl (hash: PFJqh8Q8CB1feu6q+lRHu7n1+//da1rnZWwAb5fXkNA=) 2: 81A901FA8A0411EEA251F746C4F9AE02.roa (hash: JHvhSwDOyCbk05zvE3c35/2oeXE8ikJi+kxwUoPeaf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EE4D, serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Validity Not Before: Nov 3 03:53:56 2025 GMT Not After : Nov 10 03:53:56 2025 GMT Subject: CN=69082755-ef3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1e:6b:60:ea:e2:a5:ef:f8:dc:ab:9a:75:83: 88:af:f9:e7:e4:09:cd:45:f8:d8:9c:90:10:d7:0b: b5:1b:49:30:d7:d0:bb:96:77:14:3d:63:33:d9:db: 2f:f4:e5:d6:76:23:54:b3:7d:dd:52:79:cb:f2:cb: 87:13:3a:0f:3b:3b:25:e5:38:dd:a3:78:a4:d8:89: 9a:79:8a:51:e4:a8:6a:44:8c:d2:e9:e8:8d:a5:bd: a4:fd:7a:60:7a:5a:ba:4d:9f:4d:43:79:b6:82:ca: 20:f3:85:04:a1:8d:49:52:c5:c9:7a:cf:bb:83:a8: 74:54:a3:2a:03:6b:87:74:52:89:20:d4:d2:d5:7a: fe:d2:a8:52:bc:84:86:3c:ba:84:ae:54:af:bf:38: f0:c8:36:a1:47:4c:f4:94:1c:81:07:93:9c:a1:2f: 70:b3:32:ff:ce:12:86:ab:93:4c:1f:7c:0b:fd:b6: 3e:aa:bc:af:e6:91:78:8e:c3:8e:60:d1:51:69:ef: eb:22:9f:fe:7c:61:96:6f:bb:29:c2:c7:16:54:f9: dd:d8:6a:ec:31:25:70:1d:6b:5a:f8:f7:e8:93:3a: 95:39:e3:bc:80:62:38:4d:22:db:6e:f7:23:b7:d4: c1:66:6a:37:0e:fc:8b:64:82:ab:6f:a2:a1:9b:6a: 92:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CB:FF:C7:76:D0:FD:E3:0C:02:FC:74:42:EE:2A:8E:C7:DB:12:DA X509v3 Authority Key Identifier: keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d4:9e:46:5e:b0:61:b1:05:74:b2:4d:fa:b3:0f:71:33:be: 3c:20:c5:b6:c4:db:3a:84:ad:63:f8:ba:df:94:3b:e6:89:24: c4:ba:d2:a4:18:13:ca:20:0c:64:23:50:6e:c5:50:38:5c:ef: fd:11:8a:6d:88:c2:84:e3:b4:cc:ec:1c:07:15:ad:6b:b7:02: 47:d5:00:31:14:6e:f7:3c:ab:20:b5:6c:52:47:e2:57:8d:7a: c1:d0:51:5b:d6:48:a7:35:04:db:9c:ee:c2:1d:8f:2d:94:16: be:33:08:96:f5:9a:a2:f6:bb:78:32:ae:ee:ec:d5:af:9f:56: 76:d0:f7:01:3e:8f:5e:22:54:43:f0:a8:fa:3a:b0:43:35:7b: 57:e8:fe:6e:1b:e9:ba:18:a1:2c:fb:d1:0d:9a:3f:1a:85:26: 4f:b8:74:5b:0d:cd:a7:86:1d:d4:04:3d:f6:b5:be:2d:3c:bf: 66:ea:b5:1f:70:85:8d:f1:0b:54:d2:1c:17:f6:47:50:fb:fb: 40:ee:df:83:cf:f4:0d:5f:28:2e:f7:31:de:fa:17:7a:88:e4: 30:c9:80:19:2f:09:ea:08:a9:b1:00:bd:e3:47:c6:ef:87:e5: 8c:0e:d1:c8:59:2b:bc:e4:12:19:c2:39:b1:8b:9a:4c:3c:c1: 61:62:b6:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVFNEQxMTAvBgNVBAUTKDk0NTlBMDdBRkVCNDZGNzk5MjQ1RkVDMjM1NkQzQ0JB QzlCRUQ4ODgwHhcNMjUxMTAzMDM1MzU2WhcNMjUxMTEwMDM1MzU2WjAYMRYwFAYD VQQDEw02OTA4Mjc1NS1lZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR5rYOripe/43KuadYOIr/nn5AnNRfjYnJAQ1wu1G0kw19C7lncUPWMz2dsv 9OXWdiNUs33dUnnL8suHEzoPOzsl5Tjdo3ik2ImaeYpR5KhqRIzS6eiNpb2k/Xpg elq6TZ9NQ3m2gsog84UEoY1JUsXJes+7g6h0VKMqA2uHdFKJINTS1Xr+0qhSvISG PLqErlSvvzjwyDahR0z0lByBB5OcoS9wszL/zhKGq5NMH3wL/bY+qryv5pF4jsOO YNFRae/rIp/+fGGWb7spwscWVPnd2GrsMSVwHWta+PfokzqVOeO8gGI4TSLbbvcj t9TBZmo3DvyLZIKrb6Khm2qSwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvL/8d2 0P3jDAL8dELuKo7H2xLaMB8GA1UdIwQYMBaAFJRZoHr+tG95kkX+wjVtPLrJvtiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUU0RC81MjNGREE4MDhB MDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIzbVNSZjdDTlcwOHVzbS0y SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbWdldjYwYjNtU1JmN0NOVzA4dXNtLTJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUU0RC81MjNGREE4MDhBMDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIz bVNSZjdDTlcwOHVzbS0ySWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE1J5GXrBhsQV0sk36sw9xM748IMW2xNs6hK1j+LrflDvmiSTEutKk GBPKIAxkI1BuxVA4XO/9EYptiMKE47TM7BwHFa1rtwJH1QAxFG73PKsgtWxSR+JX jXrB0FFb1kinNQTbnO7CHY8tlBa+MwiW9Zqi9rt4Mq7u7NWvn1Z20PcBPo9eIlRD 8Kj6OrBDNXtX6P5uG+m6GKEs+9ENmj8ahSZPuHRbDc2nhh3UBD32tb4tPL9m6rUf cIWN8QtU0hwX9kdQ+/tA7t+Dz/QNXygu9zHe+hd6iOQwyYAZLwnqCKmxAL3jR8bv h+WMDtHIWSu85BIZwjmxi5pMPMFhYrZo -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:10 2025 by rpki-client