$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: jJSrC3kmrE31q+XoW65HHZ1mL2HkZtEak9oRzxtUkUw= Subject key identifier: 5C:38:17:0D:23:81:41:FF:93:90:43:4E:A7:BF:1F:59:02:D9:87:1E Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 058C Signing time: Wed 15 Oct 2025 03:01:37 +0000 Manifest this update: Wed 15 Oct 2025 03:01:37 +0000 Manifest next update: Wed 22 Oct 2025 03:01:37 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: UTVpjy/R0Qq4ch5JGWyTzsUy5TUTGV5VkDfXfq7e3ok=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: puxNQ3IQMgK+455LW/i47TSp2iaIUiKVoUSQH0z/5bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 03:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Oct 15 03:01:37 2025 GMT Not After : Oct 22 03:01:37 2025 GMT Subject: CN=68ef0e91-bbf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:92:ac:1b:49:ad:e8:a5:0a:e4:a1:b5:95:ac: 80:7e:6b:57:37:5c:24:34:1e:8a:93:1b:e0:61:61: 65:86:65:e1:4e:20:65:22:b1:be:f8:45:d8:ed:5d: 47:62:50:bc:48:8c:67:df:fd:57:26:d8:3f:6d:05: 7b:0e:20:c0:e8:94:f3:63:28:06:8d:b9:3f:52:4f: e9:33:21:6c:75:6c:5c:c7:78:63:ee:1c:d0:70:9f: 7a:02:18:8b:aa:dd:a7:77:b8:30:82:b3:42:49:f7: c8:69:53:ba:37:06:9f:44:ab:1a:ff:86:bf:73:89: 23:44:8d:64:7c:bc:f7:1e:7d:a5:4e:1c:0d:17:37: f5:b6:d8:08:be:92:b6:f5:36:48:e5:bf:03:a0:86: 39:e0:3a:09:17:2c:cf:77:13:c3:ff:7f:37:bb:a3: e9:93:e0:45:88:2f:66:8c:7b:a2:60:ce:9a:0e:cb: 95:f8:8e:7e:fc:0a:ba:72:78:fe:a2:8b:05:d6:c6: 87:79:2c:2c:2a:f9:9b:42:91:74:e4:84:08:24:04: cd:64:83:1c:83:6d:97:80:26:fc:e7:30:95:08:30: 50:2f:6c:c6:37:42:a3:1d:54:29:57:43:f9:f2:7a: 1e:37:00:21:c1:8c:bd:75:d2:50:36:ff:1d:3b:b0: ef:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:38:17:0D:23:81:41:FF:93:90:43:4E:A7:BF:1F:59:02:D9:87:1E X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:90:34:3d:0a:4e:7e:08:9d:c2:3b:07:fd:83:3a:60:0a:74: cd:95:ec:1d:28:6a:ca:55:b9:cd:8a:ad:43:e7:8d:0c:0f:b9: f5:5b:62:cb:9e:b3:7f:6a:dd:f5:29:26:37:ee:07:82:8b:ba: 53:73:ae:c9:4a:c6:b3:db:28:89:3f:70:c7:46:03:d3:32:40: f3:f9:1e:62:36:ba:fa:7f:95:a3:a2:ab:0e:27:98:53:35:d9: d3:9e:2f:fa:c9:7a:c5:57:a6:a8:65:06:aa:a7:65:2b:49:06: e5:79:f2:d8:ee:a5:cd:7b:ef:58:56:c6:e4:49:4d:3f:66:06: 28:ca:b7:fd:21:fe:36:4c:97:c6:cb:9f:32:17:b3:2f:22:5c: 69:6c:77:d3:47:e7:35:4e:34:e5:cc:a9:1f:84:02:3f:f7:a2: 88:ce:0e:28:99:2c:b9:9a:9d:78:66:0a:f4:1a:6c:cc:b5:b7: f9:3b:37:72:7f:8e:45:b1:41:b0:14:d6:87:45:99:46:a9:51: ae:ea:00:3c:67:a2:9b:f6:02:8f:a5:49:b4:b0:e1:c2:fa:4d: 4d:bb:a4:96:74:1e:73:a7:da:3e:0d:88:bc:2a:56:d5:6f:d2: 90:06:9f:41:dd:1e:e7:bc:47:74:ff:5f:59:57:77:11:6c:7c: 2d:97:2d:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUxMDE1MDMwMTM3WhcNMjUxMDIyMDMwMTM3WjAYMRYwFAYD VQQDEw02OGVmMGU5MS1iYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25KsG0mt6KUK5KG1layAfmtXN1wkNB6KkxvgYWFlhmXhTiBlIrG++EXY7V1H YlC8SIxn3/1XJtg/bQV7DiDA6JTzYygGjbk/Uk/pMyFsdWxcx3hj7hzQcJ96AhiL qt2nd7gwgrNCSffIaVO6NwafRKsa/4a/c4kjRI1kfLz3Hn2lThwNFzf1ttgIvpK2 9TZI5b8DoIY54DoJFyzPdxPD/383u6Ppk+BFiC9mjHuiYM6aDsuV+I5+/Aq6cnj+ oosF1saHeSwsKvmbQpF05IQIJATNZIMcg22XgCb85zCVCDBQL2zGN0KjHVQpV0P5 8noeNwAhwYy9ddJQNv8dO7DvuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw4Fw0j gUH/k5BDTqe/H1kC2YceMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPkDQ9Ck5+CJ3COwf9gzpgCnTNlewdKGrKVbnNiq1D540MD7n1W2LL nrN/at31KSY37geCi7pTc67JSsaz2yiJP3DHRgPTMkDz+R5iNrr6f5WjoqsOJ5hT NdnTni/6yXrFV6aoZQaqp2UrSQblefLY7qXNe+9YVsbkSU0/ZgYoyrf9If42TJfG y58yF7MvIlxpbHfTR+c1TjTlzKkfhAI/96KIzg4omSy5mp14Zgr0GmzMtbf5Ozdy f45FsUGwFNaHRZlGqVGu6gA8Z6Kb9gKPpUm0sOHC+k1Nu6SWdB5zp9o+DYi8KlbV b9KQBp9B3R7nvEd0/19ZV3cRbHwtly3J -----END CERTIFICATE-----Generated at Thu Oct 16 10:01:53 2025 by rpki-client