$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: KeUX8yG/PpMTD+seAqKmCcZ43qqBjX/4VpnBRGDvyL4= Subject key identifier: 25:63:BD:94:41:32:D4:29:FE:8F:10:52:FF:C4:A7:4F:CE:42:55:D1 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 34E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 34CF Signing time: Thu 18 Sep 2025 15:22:44 +0000 Manifest this update: Thu 18 Sep 2025 15:22:44 +0000 Manifest next update: Thu 25 Sep 2025 15:22:44 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: LkfXdjKbgBOViP/9+s71PTnZ8n1kzSwjyoDYGzYMpcI=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: INyUubVzyzPFDA6zTyRhkIRyBY0HoCb9vhAv2oVdZVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13540 (0x34e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Sep 18 15:22:44 2025 GMT Not After : Sep 25 15:22:44 2025 GMT Subject: CN=68cc23c4-cf1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:c5:3b:1f:43:76:46:0a:0f:ca:ef:98:64: 28:a0:eb:59:8f:a9:2d:cf:d8:03:d1:c3:be:c9:79: 04:62:41:90:9a:df:0e:47:31:9e:09:bc:2a:6a:92: de:ce:1d:59:9e:bb:d8:36:c2:3a:62:b3:cc:39:32: 7f:62:f8:d9:72:58:02:13:6c:fd:e0:76:dd:aa:c9: 30:7b:a8:49:21:c0:9e:36:68:ef:68:f3:d3:fc:86: 48:36:d6:65:8d:05:bd:15:57:d3:59:cf:14:e7:91: ee:1e:0b:1c:d3:bb:90:71:80:f4:7d:af:0a:98:02: 0a:ea:4b:24:98:f5:26:82:9e:8d:59:44:99:1f:5c: ab:df:a0:60:69:23:d6:10:51:45:a6:9d:97:06:3e: 74:4d:19:53:42:17:8d:ef:88:ae:58:e1:09:f5:72: 79:48:46:d3:8a:49:58:09:4e:86:57:fc:9c:bc:69: c5:f8:a2:b1:11:c8:da:1d:63:f9:1b:f2:95:e0:8d: c1:22:0d:e7:40:94:da:56:34:f3:08:a0:63:a9:48: f7:a5:c9:46:7a:a2:a4:49:c8:4e:48:04:fb:da:1d: 19:68:9c:95:0c:69:f2:01:07:5a:8c:7b:4f:e0:29: 87:90:11:9e:ec:72:37:9e:b0:58:5d:7b:3c:38:45: 48:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:63:BD:94:41:32:D4:29:FE:8F:10:52:FF:C4:A7:4F:CE:42:55:D1 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:91:ca:93:07:6d:06:e4:ca:50:41:d5:83:25:77:a3:53:32: 33:5e:ec:d6:7e:01:88:09:5e:95:44:0d:07:29:c0:ca:a2:6f: ad:4c:12:0d:e2:74:a3:86:32:59:a4:2e:28:48:24:8b:a2:69: a8:80:3e:48:98:fe:c2:c3:94:de:85:a7:61:c0:6e:cf:da:8c: 0d:44:db:ad:34:f2:ca:fb:ad:47:fb:25:67:94:fd:f6:9e:9e: f7:0a:2f:5f:14:0b:7d:3e:28:4d:3d:fc:b9:b7:c4:52:cd:eb: c2:3c:88:a4:dc:3e:ff:3d:95:e4:94:3e:7c:0a:a1:5d:a7:88: d4:2c:f2:f6:64:f7:af:53:35:56:cd:a3:2b:34:4e:70:9e:df: 42:c1:f1:0d:8f:bf:2e:ec:99:7e:0c:09:84:aa:41:9e:07:fe: a3:63:07:25:26:1e:57:22:20:0e:0a:bb:1c:c0:55:0f:fa:60: 14:95:2d:91:57:b6:3e:1f:7d:ac:c6:9f:f9:77:0b:28:ab:70: 37:73:19:83:03:6f:f0:08:f5:cb:3e:24:8b:5f:ca:d9:94:e9: 7e:53:bd:b9:24:89:75:e4:db:0d:32:78:b0:38:b5:de:b8:ce: 0b:a8:47:06:a6:b1:88:04:ff:30:d4:6f:da:a0:6b:62:e8:90: e0:34:7a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUwOTE4MTUyMjQ0WhcNMjUwOTI1MTUyMjQ0WjAYMRYwFAYD VQQDEw02OGNjMjNjNC1jZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3/FOx9DdkYKD8rvmGQooOtZj6ktz9gD0cO+yXkEYkGQmt8ORzGeCbwqapLe zh1ZnrvYNsI6YrPMOTJ/YvjZclgCE2z94Hbdqskwe6hJIcCeNmjvaPPT/IZINtZl jQW9FVfTWc8U55HuHgsc07uQcYD0fa8KmAIK6kskmPUmgp6NWUSZH1yr36BgaSPW EFFFpp2XBj50TRlTQheN74iuWOEJ9XJ5SEbTiklYCU6GV/ycvGnF+KKxEcjaHWP5 G/KV4I3BIg3nQJTaVjTzCKBjqUj3pclGeqKkSchOSAT72h0ZaJyVDGnyAQdajHtP 4CmHkBGe7HI3nrBYXXs8OEVIKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVjvZRB MtQp/o8QUv/Ep0/OQlXRMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqkcqTB20G5MpQQdWDJXejUzIzXuzWfgGICV6VRA0HKcDKom+tTBIN 4nSjhjJZpC4oSCSLommogD5ImP7Cw5TehadhwG7P2owNRNutNPLK+61H+yVnlP32 np73Ci9fFAt9PihNPfy5t8RSzevCPIik3D7/PZXklD58CqFdp4jULPL2ZPevUzVW zaMrNE5wnt9CwfENj78u7Jl+DAmEqkGeB/6jYwclJh5XIiAOCrscwFUP+mAUlS2R V7Y+H32sxp/5dwsoq3A3cxmDA2/wCPXLPiSLX8rZlOl+U725JIl15NsNMniwOLXe uM4LqEcGprGIBP8w1G/aoGti6JDgNHol -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:27 2025 by rpki-client