$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: nEV1kRYyuUjPMqQHT2cBQmqynibt6f1WvYwELtjoZCE= Subject key identifier: D4:66:69:A4:D1:46:30:34:EC:0B:F1:22:85:F5:C5:F4:FC:CB:B2:84 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 0147 Signing time: Wed 05 Nov 2025 04:43:46 +0000 Manifest this update: Wed 05 Nov 2025 04:43:45 +0000 Manifest next update: Wed 12 Nov 2025 04:43:45 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: gEqnQjXYJYEzQUbcIvlJcEFkC6orq2AGIvwyB4oNNbA=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Nov 5 04:43:45 2025 GMT Not After : Nov 12 04:43:45 2025 GMT Subject: CN=690ad602-f779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:f0:8a:d3:e7:ef:c2:f0:d5:97:aa:7e:f0: 8e:4c:3b:4d:af:4b:84:b4:2b:19:dd:67:dd:31:b4: d1:54:62:2f:57:80:b1:e8:2a:1d:16:a2:a8:23:42: 0b:76:73:86:ac:4c:d6:00:98:c6:e1:36:dd:ea:40: 45:0d:95:51:6c:53:a9:68:ee:11:63:8b:a8:d6:98: 72:78:a1:8d:ec:a5:ab:34:9b:df:c7:2c:e9:2c:79: 52:56:66:a8:48:3a:74:c9:8b:8a:fd:35:5f:da:e4: 96:3a:b2:5a:e0:e7:e8:a4:2c:70:1d:43:7c:f3:27: 1a:4d:75:42:c8:82:6a:f6:72:bb:e1:be:1e:2f:76: 36:66:aa:37:10:17:6d:f7:92:84:d7:0e:b8:68:97: ed:7e:f3:7e:5f:3b:0c:7c:46:6f:45:74:56:bb:86: d6:91:75:d4:59:93:1c:b4:fe:3b:e7:58:86:04:a1: dd:ac:f3:91:30:44:7c:2f:d0:74:e4:cd:d5:86:e3: 5c:6f:34:87:3e:a5:22:66:d5:80:0d:03:1e:af:39: bf:32:b4:75:8b:34:8d:10:ef:79:e5:d0:6b:e1:da: 71:7d:e6:5b:e0:69:cd:ef:15:8c:80:25:35:67:28: 65:9b:54:41:53:1b:a1:4f:f8:e9:24:3f:03:2f:4a: 30:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:69:A4:D1:46:30:34:EC:0B:F1:22:85:F5:C5:F4:FC:CB:B2:84 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:40:21:89:04:db:d0:0b:a7:b1:25:3d:98:10:26:47:15:7d: d4:99:e9:24:ac:ec:47:45:3a:16:4b:b0:f4:08:79:c0:0a:8e: 27:c2:df:28:39:2c:8a:14:3f:c5:41:91:87:67:0c:8c:4a:4a: 02:32:d9:0c:67:5e:8f:11:19:99:85:52:46:ec:eb:3d:90:10: 78:4e:76:de:c8:2c:34:b3:1f:f4:66:d7:84:86:d2:ec:6d:ee: c1:34:51:39:31:5a:e6:08:56:e5:3c:8a:38:79:3b:e4:59:ad: fd:e3:39:89:6c:7e:26:97:11:68:47:ed:3d:82:81:43:fd:80: 00:dd:9e:bf:1a:05:bd:78:5f:34:50:a6:21:d2:cb:5f:24:bf: 4f:da:74:17:54:8e:19:98:34:28:9e:cf:18:8f:3d:5e:f0:96: fd:53:d7:52:ed:2c:1c:22:c2:2e:e7:49:97:da:d8:01:83:de: af:22:5b:ad:f6:52:86:2b:b5:b3:d3:81:8f:fa:26:0f:d8:d5: 6e:02:91:f1:4e:ad:a1:c6:9a:43:16:fc:cc:35:80:6f:7a:a3: 9c:9f:a3:00:8b:14:28:a5:fb:c9:ef:2e:75:92:6d:48:fa:7d: 46:1c:62:8e:55:4a:ac:6d:71:b0:9e:59:c5:90:48:fe:b1:1a: 78:e7:bd:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUxMTA1MDQ0MzQ1WhcNMjUxMTEyMDQ0MzQ1WjAYMRYwFAYD VQQDEw02OTBhZDYwMi1mNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PzwitPn78Lw1ZeqfvCOTDtNr0uEtCsZ3WfdMbTRVGIvV4Cx6CodFqKoI0IL dnOGrEzWAJjG4Tbd6kBFDZVRbFOpaO4RY4uo1phyeKGN7KWrNJvfxyzpLHlSVmao SDp0yYuK/TVf2uSWOrJa4OfopCxwHUN88ycaTXVCyIJq9nK74b4eL3Y2Zqo3EBdt 95KE1w64aJftfvN+XzsMfEZvRXRWu4bWkXXUWZMctP4751iGBKHdrPORMER8L9B0 5M3VhuNcbzSHPqUiZtWADQMerzm/MrR1izSNEO955dBr4dpxfeZb4GnN7xWMgCU1 Zyhlm1RBUxuhT/jpJD8DL0owJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRmaaTR RjA07AvxIoX1xfT8y7KEMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzQCGJBNvQC6exJT2YECZHFX3UmekkrOxHRToWS7D0CHnACo4nwt8o OSyKFD/FQZGHZwyMSkoCMtkMZ16PERmZhVJG7Os9kBB4TnbeyCw0sx/0ZteEhtLs be7BNFE5MVrmCFblPIo4eTvkWa394zmJbH4mlxFoR+09goFD/YAA3Z6/GgW9eF80 UKYh0stfJL9P2nQXVI4ZmDQons8Yjz1e8Jb9U9dS7SwcIsIu50mX2tgBg96vIlut 9lKGK7Wz04GP+iYP2NVuApHxTq2hxppDFvzMNYBveqOcn6MAixQopfvJ7y51km1I +n1GHGKOVUqsbXGwnlnFkEj+sRp4570j -----END CERTIFICATE-----Generated at Thu Nov 6 06:35:19 2025 by rpki-client