$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: D2XLsenKXZ/j9O9TIsGyK+5KlLu2fD2u8gMZeRO01w4= Subject key identifier: 8B:00:6C:3C:9A:12:D9:9A:38:D2:18:69:80:F2:9F:B2:7F:FD:F5:F2 Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 030A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 0301 Signing time: Wed 05 Nov 2025 01:17:56 +0000 Manifest this update: Wed 05 Nov 2025 01:17:56 +0000 Manifest next update: Wed 12 Nov 2025 01:17:56 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: GUMU8TKl50yyrv1EP8rS31nDA2b9zXsCoQkbmbMUhzw=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: Gkpwn3+qaXPLAggtUnFxSv/8MK3BM4swBT14YB5sClw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2, serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: Nov 5 01:17:56 2025 GMT Not After : Nov 12 01:17:56 2025 GMT Subject: CN=690aa5c4-f829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fb:30:4f:6e:c7:b9:e5:dc:c6:55:4f:73:a8: 7e:52:11:e1:cd:a3:e1:9e:bb:a6:0f:fb:59:7d:8f: 19:5d:38:3f:7f:bb:11:ab:9c:4e:49:00:71:bf:07: e5:56:f2:0b:37:55:28:33:d9:20:76:7e:05:6d:be: 53:ad:05:a4:5e:55:18:c2:73:75:24:4e:3d:72:09: 05:c5:d5:6b:80:ce:74:7b:1e:5c:56:66:e7:71:57: e3:25:21:d7:c7:8e:a8:a7:c4:4b:66:3a:31:3a:fc: 14:ef:46:9a:21:48:3f:04:15:d7:ad:0f:f5:a4:23: a1:d9:92:ca:36:e2:d5:c4:a8:19:67:9a:e0:d4:4d: 3c:04:1d:bc:25:b5:40:37:67:e2:b6:33:b6:56:ef: 00:5d:0d:7b:b7:3c:5e:ab:9b:7b:9b:4b:84:a1:b1: 25:29:dc:03:7b:39:55:8f:8a:f2:57:e3:e7:ed:d7: b3:7c:4b:de:ea:4b:b9:ab:28:c9:19:4e:a0:30:a9: 90:a0:87:ef:86:bf:88:b4:d0:48:32:a7:cb:51:14: 3a:7a:1b:72:0f:f0:bd:d9:7f:2c:3f:c2:9b:80:ff: 2a:18:57:2b:8d:e3:0c:79:bc:78:f7:d7:87:ef:10: ae:1f:49:fd:76:b8:f7:f8:83:c9:b4:8a:9d:26:f3: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:00:6C:3C:9A:12:D9:9A:38:D2:18:69:80:F2:9F:B2:7F:FD:F5:F2 X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:21:75:5f:35:29:7c:10:a9:d6:11:9c:de:5d:ef:2b:58:4c: 85:3d:8b:56:6b:22:3f:3d:f9:93:51:ed:64:a0:f0:e3:27:2d: e5:b0:a2:61:a1:14:23:05:a0:49:ea:d1:fe:c3:5a:0c:e5:9d: a1:be:70:2b:2c:f1:86:84:8d:92:82:29:59:46:eb:64:39:0d: 19:a2:98:b7:f7:ca:3c:25:0b:b5:f1:bb:70:d5:07:d8:6c:46: db:86:66:74:3f:ef:c1:3e:d4:56:7a:18:90:5d:e5:52:6d:74: 0f:e6:39:b2:b1:d9:e9:54:84:c2:ba:d0:0a:ce:26:80:83:38: 1e:24:15:98:31:0e:33:37:ba:57:68:bf:17:b9:77:89:9c:e3: e2:52:68:88:2e:24:f0:af:da:65:ab:f7:91:95:ca:06:85:63: ae:d9:5d:e4:0a:b6:0a:d5:c4:08:4d:67:86:6a:a9:65:80:52: a9:3a:ac:e3:35:df:a3:72:1b:54:88:d3:6f:4b:8e:f9:ab:60: 6f:73:ba:a8:9f:b1:21:12:a3:92:97:e5:d5:9d:87:a7:d8:6f: 9c:9c:48:ff:0d:4a:6c:c4:14:7d:e5:f1:03:5c:c8:54:ef:53: c7:a8:e6:51:c6:fd:e4:59:de:ae:02:58:04:25:e0:34:88:e2: e6:f7:2c:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjUxMTA1MDExNzU2WhcNMjUxMTEyMDExNzU2WjAYMRYwFAYD VQQDEw02OTBhYTVjNC1mODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfswT27HueXcxlVPc6h+UhHhzaPhnrumD/tZfY8ZXTg/f7sRq5xOSQBxvwfl VvILN1UoM9kgdn4Fbb5TrQWkXlUYwnN1JE49cgkFxdVrgM50ex5cVmbncVfjJSHX x46op8RLZjoxOvwU70aaIUg/BBXXrQ/1pCOh2ZLKNuLVxKgZZ5rg1E08BB28JbVA N2fitjO2Vu8AXQ17tzxeq5t7m0uEobElKdwDezlVj4ryV+Pn7dezfEve6ku5qyjJ GU6gMKmQoIfvhr+ItNBIMqfLURQ6ehtyD/C92X8sP8KbgP8qGFcrjeMMebx499eH 7xCuH0n9drj3+IPJtIqdJvOF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsAbDya EtmaONIYaYDyn7J//fXyMB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkIXVfNSl8EKnWEZzeXe8rWEyFPYtWayI/PfmTUe1koPDjJy3lsKJh oRQjBaBJ6tH+w1oM5Z2hvnArLPGGhI2SgilZRutkOQ0Zopi398o8JQu18btw1QfY bEbbhmZ0P+/BPtRWehiQXeVSbXQP5jmysdnpVITCutAKziaAgzgeJBWYMQ4zN7pX aL8XuXeJnOPiUmiILiTwr9plq/eRlcoGhWOu2V3kCrYK1cQITWeGaqllgFKpOqzj Nd+jchtUiNNvS475q2Bvc7qon7EhEqOSl+XVnYen2G+cnEj/DUpsxBR95fEDXMhU 71PHqOZRxv3kWd6uAlgEJeA0iOLm9yyO -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:45 2025 by rpki-client