$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: xTZhWofwR1J2CFcAYjMChpUhe05OaSdD4CTblVSV2YE= Subject key identifier: CC:FD:A0:F2:4F:03:53:F3:88:71:CD:9A:8A:BD:C8:57:22:1C:A9:C0 Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2157 Signing time: Sun 02 Nov 2025 15:56:21 +0000 Manifest this update: Sun 02 Nov 2025 15:56:20 +0000 Manifest next update: Sun 09 Nov 2025 15:56:20 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: i/efWVdC+ZZBTWaqSaOb7szHZvcTvSvBrQ+4bDAEkxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8535 (0x2157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Nov 2 15:56:20 2025 GMT Not After : Nov 9 15:56:20 2025 GMT Subject: CN=69077f24-e6fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:a3:76:a5:bd:d3:2d:1f:5c:e5:ec:1b:84: 63:16:ae:eb:3b:8b:b3:ae:d9:f1:15:9d:9d:42:1c: 76:05:1d:e0:cf:25:34:4f:82:0a:84:a4:7b:e2:75: 5f:c9:5d:f2:12:01:3f:04:c6:a0:55:74:4a:a8:66: 9c:e0:95:ad:45:0d:69:96:10:61:54:8b:42:c2:3a: 58:d3:84:55:d3:b2:05:ba:45:64:72:88:d5:df:89: 6d:6a:bc:8a:0f:94:e1:fb:3d:fa:c8:d3:b4:d3:a3: eb:48:7f:17:f9:3b:b6:1e:a0:fd:ff:72:b6:a2:1b: 58:df:a3:6f:a7:8e:55:e1:27:73:35:cf:c9:01:2a: 1f:35:fb:a3:0d:bc:1a:43:43:0e:a2:a3:0d:16:88: 83:0d:1a:24:7e:ed:87:57:cf:b9:de:24:ea:be:60: 2a:71:50:ed:78:c2:73:50:ac:06:92:0f:61:03:5e: 89:d2:d2:a0:0a:d6:18:fa:17:87:2e:70:3c:db:ba: 9b:c4:9d:54:4c:ca:e6:39:c9:98:4e:f4:e7:d2:d6: 19:c6:ca:b2:8a:d5:78:e4:20:2a:2d:a0:f7:cc:27: 8d:c7:82:da:03:b1:4a:00:dc:85:29:81:e7:ad:af: f0:61:fa:45:ad:4d:35:9b:f0:75:7d:f2:fd:36:3b: 7c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FD:A0:F2:4F:03:53:F3:88:71:CD:9A:8A:BD:C8:57:22:1C:A9:C0 X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:dc:47:90:a7:f2:34:e1:62:ce:d3:e7:0b:0f:4e:b0:76:0e: e7:b1:2b:bd:dc:13:a8:d8:31:bc:38:bd:54:8e:88:47:6b:6a: 8f:dd:5d:0f:a2:a8:d2:a3:ad:26:5f:5c:69:c6:11:e5:07:91: ac:82:84:89:87:05:1f:aa:e6:25:89:4d:87:75:0f:8f:c9:99: fe:c6:bf:b4:9f:86:a2:68:30:7e:00:39:e4:d8:18:62:c1:6e: c5:1c:60:8c:e9:33:25:dd:04:33:a4:3d:58:31:86:26:b6:42: b3:38:d3:f9:73:41:f5:be:40:5c:fd:89:74:83:2d:17:1f:8d: 6f:27:81:9e:12:c0:d9:70:e3:a9:c7:e3:84:79:19:45:e1:9c: 5a:df:4d:f6:2a:cb:f2:67:d0:cd:f7:9f:e9:c2:19:a7:8e:03: bf:aa:fb:9c:91:e8:b9:24:cf:80:6f:83:08:c8:8a:94:6d:c1: de:db:de:b4:a8:5a:6d:7b:da:88:fc:df:d1:72:c6:46:15:42: b8:ae:0c:d9:59:f4:9d:fa:bc:16:92:76:38:d4:e4:d1:c5:0f: 57:47:18:82:a6:0a:dd:bb:8d:1a:7f:39:ba:ab:51:6f:f2:06: fc:fd:90:6f:d0:b7:2f:60:f6:e2:c9:9f:48:b3:85:61:a0:a1: d1:6b:3c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUxMTAyMTU1NjIwWhcNMjUxMTA5MTU1NjIwWjAYMRYwFAYD VQQDEw02OTA3N2YyNC1lNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+ujdqW90y0fXOXsG4RjFq7rO4uzrtnxFZ2dQhx2BR3gzyU0T4IKhKR74nVf yV3yEgE/BMagVXRKqGac4JWtRQ1plhBhVItCwjpY04RV07IFukVkcojV34ltaryK D5Th+z36yNO006PrSH8X+Tu2HqD9/3K2ohtY36Nvp45V4SdzNc/JASofNfujDbwa Q0MOoqMNFoiDDRokfu2HV8+53iTqvmAqcVDteMJzUKwGkg9hA16J0tKgCtYY+heH LnA827qbxJ1UTMrmOcmYTvTn0tYZxsqyitV45CAqLaD3zCeNx4LaA7FKANyFKYHn ra/wYfpFrU01m/B1ffL9Njt88wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz9oPJP A1PziHHNmoq9yFciHKnAMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA93EeQp/I04WLO0+cLD06wdg7nsSu93BOo2DG8OL1UjohHa2qP3V0P oqjSo60mX1xpxhHlB5GsgoSJhwUfquYliU2HdQ+PyZn+xr+0n4aiaDB+ADnk2Bhi wW7FHGCM6TMl3QQzpD1YMYYmtkKzONP5c0H1vkBc/Yl0gy0XH41vJ4GeEsDZcOOp x+OEeRlF4Zxa3032KsvyZ9DN95/pwhmnjgO/qvuckei5JM+Ab4MIyIqUbcHe2960 qFpte9qI/N/RcsZGFUK4rgzZWfSd+rwWknY41OTRxQ9XRxiCpgrdu40afzm6q1Fv 8gb8/ZBv0LcvYPbiyZ9Is4VhoKHRazyj -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:02 2025 by rpki-client