$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: 2MAgoA16eOVGn+s8uSuqP1R9eFwnX2PtQCC4MCUI66k= Subject key identifier: 0B:65:0D:11:4B:31:46:32:B6:B3:19:FF:39:22:14:B4:A8:D0:0B:DE Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 34E8 Signing time: Sun 02 Nov 2025 15:20:17 +0000 Manifest this update: Sun 02 Nov 2025 15:20:17 +0000 Manifest next update: Sun 09 Nov 2025 15:20:17 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: 1sU3xjrTSth9M0gNtXYaHVCn1zATJNPYjuJAE2GsgrA=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Q+UMsPeyfxUm55P4fMvGVYmfZGcp4BR3EDI4z+jAzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Nov 2 15:20:17 2025 GMT Not After : Nov 9 15:20:17 2025 GMT Subject: CN=690776b1-8809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:b5:8d:d4:f3:ab:fd:d5:73:2f:8b:a1:d6: 4f:58:b3:24:c9:78:1a:d9:55:a9:12:28:4d:5a:06: 1a:62:81:fe:5d:fc:cd:e9:97:c0:0b:5e:26:5c:04: 03:30:a4:f4:cf:26:15:2b:96:9e:bc:bc:ab:7d:ef: 0d:91:c1:8d:97:26:c3:8a:51:02:01:e7:7d:01:8b: 2b:a7:61:a6:38:27:bf:cd:20:c0:5b:77:a9:c3:86: 6c:3f:8d:38:34:a9:5c:28:4e:5e:2e:42:23:aa:1c: ce:e2:b4:a8:78:c7:c1:bc:f2:72:fd:3a:2f:28:80: 0e:78:ff:71:57:47:a2:27:50:98:48:68:0d:37:4b: f0:c7:6f:cb:41:05:f2:f7:aa:ca:7d:fd:9c:b6:ef: 9f:3d:69:b2:2c:8f:62:96:b9:f5:5a:92:e3:be:2c: a6:c9:a4:72:a4:3e:5f:21:ed:08:71:cc:60:5d:7e: 64:32:e3:10:1c:d3:3c:60:00:6b:41:b4:a8:7a:68: a0:b6:2c:0a:be:20:77:64:43:f8:ba:a4:e8:a0:ad: 7c:53:34:95:67:4c:1f:be:52:b1:e2:df:2c:54:52: 6b:0f:47:25:b8:e6:ea:89:ef:ed:b0:0d:b9:8a:8b: 6f:cf:4e:90:8a:02:30:09:02:25:a1:d2:85:32:a2: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:65:0D:11:4B:31:46:32:B6:B3:19:FF:39:22:14:B4:A8:D0:0B:DE X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:88:18:71:26:a2:ed:05:5e:76:71:10:1e:05:07:47:c5:04: 3c:22:06:aa:ee:40:ee:18:19:1b:17:f6:47:80:80:0c:01:f4: 85:57:ad:1e:3d:ae:8d:27:ab:ea:93:c2:27:a5:21:e0:07:75: 3f:a3:56:64:f6:b3:30:ae:5e:03:fe:02:3e:27:52:40:08:85: 5b:cd:00:af:b5:19:7f:65:7d:5f:b5:b3:03:96:8e:90:a3:8d: 1a:94:4a:d6:79:dc:69:19:89:c2:08:a7:c3:63:f2:35:11:47: 21:de:36:ab:10:26:7c:1a:32:70:c9:e5:50:cc:55:73:01:6c: 4c:ed:dc:05:67:fc:c3:8e:eb:05:22:46:52:79:a5:ed:f9:10: ee:c2:db:56:29:92:71:c6:4a:aa:1a:eb:a2:81:7e:5f:75:4d: f0:38:14:99:2c:86:4f:f4:21:55:cc:1a:c5:9d:6c:1a:e3:92: ab:8a:14:11:db:27:06:86:47:fc:cb:9a:c2:04:2e:f3:b7:e5: f2:dc:31:00:bd:ad:54:72:85:c4:3c:21:e5:f6:7b:eb:ca:55: f9:b7:14:7e:e3:8d:09:1a:df:fc:5c:29:d9:fb:94:62:a8:28: 35:5f:85:97:e6:66:b2:7d:ba:8a:19:d3:2a:2b:03:97:09:da: af:89:bf:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUxMTAyMTUyMDE3WhcNMjUxMTA5MTUyMDE3WjAYMRYwFAYD VQQDEw02OTA3NzZiMS04ODA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42W1jdTzq/3Vcy+LodZPWLMkyXga2VWpEihNWgYaYoH+XfzN6ZfAC14mXAQD MKT0zyYVK5aevLyrfe8NkcGNlybDilECAed9AYsrp2GmOCe/zSDAW3epw4ZsP404 NKlcKE5eLkIjqhzO4rSoeMfBvPJy/TovKIAOeP9xV0eiJ1CYSGgNN0vwx2/LQQXy 96rKff2ctu+fPWmyLI9ilrn1WpLjviymyaRypD5fIe0IccxgXX5kMuMQHNM8YABr QbSoemigtiwKviB3ZEP4uqTooK18UzSVZ0wfvlKx4t8sVFJrD0cluObqie/tsA25 iotvz06QigIwCQIlodKFMqJ5NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtlDRFL MUYytrMZ/zkiFLSo0AveMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEiBhxJqLtBV52cRAeBQdHxQQ8Igaq7kDuGBkbF/ZHgIAMAfSFV60e Pa6NJ6vqk8InpSHgB3U/o1Zk9rMwrl4D/gI+J1JACIVbzQCvtRl/ZX1ftbMDlo6Q o40alErWedxpGYnCCKfDY/I1EUch3jarECZ8GjJwyeVQzFVzAWxM7dwFZ/zDjusF IkZSeaXt+RDuwttWKZJxxkqqGuuigX5fdU3wOBSZLIZP9CFVzBrFnWwa45KrihQR 2ycGhkf8y5rCBC7zt+Xy3DEAva1UcoXEPCHl9nvrylX5txR+440JGt/8XCnZ+5Ri qCg1X4WX5mayfbqKGdMqKwOXCdqvib9E -----END CERTIFICATE-----Generated at Tue Nov 4 01:06:04 2025 by rpki-client