$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: Fd2fCfi91pkS+JC5VRom4256WowA1EQiEcdbE0ZrHTM= Subject key identifier: C6:04:65:68:3C:CC:29:CC:CE:E0:A1:17:49:B9:14:E5:8F:B7:64:D4 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 0129 Signing time: Fri 05 Sep 2025 05:17:57 +0000 Manifest this update: Fri 05 Sep 2025 05:17:57 +0000 Manifest next update: Fri 12 Sep 2025 05:17:57 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: 83FamgFkOoTzC6f6g7GUVo1102AKw1hDTOH7pcuTqB4=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Sep 5 05:17:57 2025 GMT Not After : Sep 12 05:17:57 2025 GMT Subject: CN=68ba7285-dd99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:a7:c6:03:ce:89:6d:13:cc:89:50:ef:d7: e0:db:45:b1:e3:fb:61:6b:0d:46:c3:07:f4:8a:2e: 51:12:0a:b1:23:ef:53:aa:fc:c4:8c:29:ab:7d:f1: 35:e5:dc:67:22:d0:bb:bc:2f:9f:e7:53:28:a6:e5: 8f:aa:ff:14:4d:f5:e1:31:11:9d:41:21:ae:12:05: 2c:51:03:7b:e5:0c:b6:46:bd:e5:54:e7:e6:73:63: 7b:23:59:37:60:2a:71:56:50:e7:96:a4:c2:66:55: 53:54:2f:91:72:ec:27:54:24:01:01:0a:f0:20:f6: f0:62:8a:35:d4:1d:42:21:8a:41:f5:a6:4d:e6:94: 93:f5:9c:66:20:8e:94:db:da:33:ab:ac:c2:ee:22: 61:4d:ab:51:2f:c6:2b:f2:33:70:5d:9c:7a:db:6c: 6c:5d:39:11:40:9e:8b:86:4e:20:26:f7:20:90:ed: ce:30:b5:70:72:c5:af:2a:d2:d7:94:2a:59:7e:38: f5:da:d6:ae:5a:d6:e0:15:3a:cb:38:1e:19:42:01: ee:4f:4f:33:03:ec:9c:33:e4:31:85:24:c9:ce:fb: e2:71:1a:ec:c4:05:a5:1b:f9:e4:ff:21:95:c1:d0: 03:58:6d:d0:63:ee:88:6e:79:c8:0f:64:8f:6d:0e: ec:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:04:65:68:3C:CC:29:CC:CE:E0:A1:17:49:B9:14:E5:8F:B7:64:D4 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:95:f9:be:d3:1e:85:d9:18:ea:a1:6d:af:4e:16:15:fa:8d: 92:bc:5a:8b:44:27:c1:6c:a7:7d:42:f4:75:de:03:2b:59:e2: 43:d9:84:d7:6d:ae:a1:07:72:b2:bf:9d:51:a5:bd:d1:13:77: ec:09:49:fc:ad:a3:e7:37:bd:58:d5:8f:67:f6:75:f7:bc:99: 2f:9c:59:c6:82:83:97:d8:98:3b:a0:01:44:30:96:5a:df:9f: dc:7a:5a:e1:31:10:b9:b3:be:41:3b:73:f0:02:80:19:89:91: 17:56:1c:65:3f:c2:c3:ab:19:bd:30:fe:63:62:ac:4b:12:c4: a9:07:1a:07:70:ee:d8:40:32:34:7f:eb:7c:bf:7d:ef:75:e1: 10:b1:ce:ec:06:72:11:4b:f9:01:e3:10:d7:71:47:6b:b1:b0: 12:15:36:1b:93:3f:9f:41:5a:a1:8f:e1:81:fc:b2:9c:05:c9: 0d:9a:72:ac:fd:2e:24:90:62:00:f6:e4:86:a2:6a:c6:65:01: f3:be:8f:91:a1:1f:27:0b:de:0b:ca:dc:69:92:7d:57:48:35: 78:be:da:a2:54:af:95:9c:48:5c:96:3b:a0:77:61:92:ea:1d: 81:c2:e6:8b:10:78:6a:7a:76:53:80:a9:89:14:6c:41:88:76: 8c:63:37:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwOTA1MDUxNzU3WhcNMjUwOTEyMDUxNzU3WjAYMRYwFAYD VQQDEw02OGJhNzI4NS1kZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7KnxgPOiW0TzIlQ79fg20Wx4/thaw1Gwwf0ii5REgqxI+9TqvzEjCmrffE1 5dxnItC7vC+f51MopuWPqv8UTfXhMRGdQSGuEgUsUQN75Qy2Rr3lVOfmc2N7I1k3 YCpxVlDnlqTCZlVTVC+RcuwnVCQBAQrwIPbwYoo11B1CIYpB9aZN5pST9ZxmII6U 29ozq6zC7iJhTatRL8Yr8jNwXZx622xsXTkRQJ6Lhk4gJvcgkO3OMLVwcsWvKtLX lCpZfjj12tauWtbgFTrLOB4ZQgHuT08zA+ycM+QxhSTJzvvicRrsxAWlG/nk/yGV wdADWG3QY+6IbnnID2SPbQ7sMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYEZWg8 zCnMzuChF0m5FOWPt2TUMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAplfm+0x6F2RjqoW2vThYV+o2SvFqLRCfBbKd9QvR13gMrWeJD2YTX ba6hB3Kyv51Rpb3RE3fsCUn8raPnN71Y1Y9n9nX3vJkvnFnGgoOX2Jg7oAFEMJZa 35/celrhMRC5s75BO3PwAoAZiZEXVhxlP8LDqxm9MP5jYqxLEsSpBxoHcO7YQDI0 f+t8v33vdeEQsc7sBnIRS/kB4xDXcUdrsbASFTYbkz+fQVqhj+GB/LKcBckNmnKs /S4kkGIA9uSGomrGZQHzvo+RoR8nC94Lytxpkn1XSDV4vtqiVK+VnEhcljugd2GS 6h2BwuaLEHhqenZTgKmJFGxBiHaMYzfZ -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:18 2025 by rpki-client