$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: en6AVznTyMRfx8EWEwXKFpmwsATlPoIquX7fRWE3TWE= Subject key identifier: D9:D0:91:A0:5A:8F:75:D6:47:84:1A:1B:DB:E9:F7:43:20:17:45:2E Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2133 Signing time: Sun 24 Aug 2025 15:54:25 +0000 Manifest this update: Sun 24 Aug 2025 15:54:24 +0000 Manifest next update: Sun 31 Aug 2025 15:54:24 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: 6Knp7vfgZIt4ONV5zT3LuOypqKGKyKZq7vMM6WrmvEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8499 (0x2133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Aug 24 15:54:24 2025 GMT Not After : Aug 31 15:54:24 2025 GMT Subject: CN=68ab35b1-6f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:b4:58:74:d6:37:f4:36:dd:16:f8:6a:44: 7e:c8:57:de:6b:c5:dd:7d:09:61:7e:7a:88:74:cd: 2f:bb:12:60:81:c1:5f:13:f3:8a:81:ce:f7:4f:d5: 2f:2a:25:03:5e:28:7e:8e:57:65:d7:6a:53:bb:dd: d4:2a:17:e2:92:3b:d5:b1:78:64:d5:5b:5c:67:a7: c6:ab:98:56:40:8a:17:9d:75:c9:fc:37:51:04:04: 5f:af:ab:2e:24:95:56:c1:84:57:dd:22:df:81:b7: 30:36:52:d2:c3:4d:22:73:ab:46:6e:34:0f:d7:2a: fd:8f:ac:90:e6:29:be:80:e3:07:47:1f:8a:4a:04: 72:2e:a4:bb:46:d2:2b:bf:4f:2a:85:e7:2b:b1:d3: f1:61:9c:ff:01:3e:fb:e9:37:7a:de:37:62:80:ff: 68:6f:e0:26:2f:ab:a8:34:1d:0f:bd:e5:aa:22:2d: 30:b1:62:50:e9:d2:89:dd:d3:a1:0a:7d:2b:38:8e: 10:2d:0c:6f:68:96:a1:b4:66:3c:09:1b:c9:dc:8c: d6:cd:02:45:50:e6:ed:4c:50:2e:74:82:ae:49:c1: 1b:bf:6e:77:77:c4:80:db:67:3c:49:a3:d1:8e:52: 8a:7f:a0:a9:d1:70:1d:2f:27:93:aa:c2:4b:3f:4a: ca:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D0:91:A0:5A:8F:75:D6:47:84:1A:1B:DB:E9:F7:43:20:17:45:2E X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:0b:ab:42:7d:67:3b:5e:3a:8d:13:e0:a6:81:14:ca:4e:bc: 4b:7a:cb:ee:11:82:e8:c1:9c:13:cf:dd:0a:59:fd:b0:09:4b: 68:fa:a2:fa:30:53:47:a3:f9:ea:6f:cb:8d:70:7b:6a:ea:1d: 1a:90:79:77:ca:1a:3c:89:bb:14:d1:67:1a:ea:93:5a:38:3c: d6:ad:6c:9e:2e:e3:0c:c0:82:de:3f:13:c5:f8:c5:44:5d:61: 65:4c:ef:56:84:06:02:14:f8:78:f7:4c:59:30:6e:26:98:c2: 06:44:21:ca:88:53:3c:af:ca:2a:74:a2:5b:7a:ed:31:4b:45: 87:0c:14:76:1d:ca:00:7c:98:2d:a6:71:13:71:10:1e:6a:4e: 14:a9:51:08:93:cb:34:4c:de:d3:90:7b:e5:db:1c:b1:79:61: d1:64:45:35:53:56:ef:3c:5b:e8:c5:2c:20:95:83:b9:9c:26: a9:4d:51:27:d7:f9:63:b5:33:71:75:a7:a9:27:a3:b2:7b:9d: 8b:1c:7b:09:98:50:e1:e0:e1:8d:9f:81:b0:2b:dc:05:7e:50: a5:84:c1:99:2d:3e:79:21:f3:df:1b:97:31:dd:8b:77:a2:8e: 5e:30:69:a0:8e:e2:33:9a:25:9e:34:1d:41:6d:85:63:e2:f3: 98:d0:b6:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUwODI0MTU1NDI0WhcNMjUwODMxMTU1NDI0WjAYMRYwFAYD VQQDEw02OGFiMzViMS02Zjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyu0WHTWN/Q23Rb4akR+yFfea8XdfQlhfnqIdM0vuxJggcFfE/OKgc73T9Uv KiUDXih+jldl12pTu93UKhfikjvVsXhk1VtcZ6fGq5hWQIoXnXXJ/DdRBARfr6su JJVWwYRX3SLfgbcwNlLSw00ic6tGbjQP1yr9j6yQ5im+gOMHRx+KSgRyLqS7RtIr v08qhecrsdPxYZz/AT776Td63jdigP9ob+AmL6uoNB0PveWqIi0wsWJQ6dKJ3dOh Cn0rOI4QLQxvaJahtGY8CRvJ3IzWzQJFUObtTFAudIKuScEbv253d8SA22c8SaPR jlKKf6Cp0XAdLyeTqsJLP0rKOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnQkaBa j3XWR4QaG9vp90MgF0UuMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByC6tCfWc7XjqNE+CmgRTKTrxLesvuEYLowZwTz90KWf2wCUto+qL6 MFNHo/nqb8uNcHtq6h0akHl3yho8ibsU0Wca6pNaODzWrWyeLuMMwILePxPF+MVE XWFlTO9WhAYCFPh490xZMG4mmMIGRCHKiFM8r8oqdKJbeu0xS0WHDBR2HcoAfJgt pnETcRAeak4UqVEIk8s0TN7TkHvl2xyxeWHRZEU1U1bvPFvoxSwglYO5nCapTVEn 1/ljtTNxdaepJ6Oye52LHHsJmFDh4OGNn4GwK9wFflClhMGZLT55IfPfG5cx3Yt3 oo5eMGmgjuIzmiWeNB1BbYVj4vOY0La/ -----END CERTIFICATE-----Generated at Sun Aug 24 21:58:26 2025 by rpki-client