$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: AL17NdZFEfDC8QDhOkR5sjDLTXEgN2oENq7Cjg9+jE4= Subject key identifier: B8:A6:B7:B2:7D:ED:2B:A5:70:2E:DE:9B:C6:68:02:62:17:9D:1F:E2 Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 016F Signing time: Mon 03 Nov 2025 03:49:04 +0000 Manifest this update: Mon 03 Nov 2025 03:49:03 +0000 Manifest next update: Mon 10 Nov 2025 03:49:03 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: YVlAdCPcjNWAB0Hl2TzMdPMxKJHr4MAj7w2n9NYm+Ew=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: Mp31Dl4GGrwfX+s1p5DZGdrkWL4P3e5ufUEs+Tl9/MA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5, serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: Nov 3 03:49:03 2025 GMT Not After : Nov 10 03:49:03 2025 GMT Subject: CN=6908262f-fb13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:05:c9:d0:98:63:48:31:56:fd:d6:2f:d5:a2: f5:52:b6:8f:24:68:8a:44:d8:1f:64:c7:2c:b1:a4: 0b:07:cd:b5:63:da:cd:c0:47:72:2d:5e:50:26:3e: 33:42:b1:90:2f:f4:f1:29:c3:ca:c3:4b:f3:ce:6b: 29:a9:36:5a:e9:16:01:1f:7d:3f:f7:74:c5:7f:42: 97:ee:72:ed:6f:2e:78:ad:c9:38:db:93:97:b7:bd: 61:a6:eb:54:71:d1:05:18:1b:0c:fc:9d:42:18:35: 8e:af:9a:f7:17:01:68:9f:fa:2f:0b:12:a5:9d:65: 1f:45:49:99:37:92:b9:b7:69:35:07:c5:2b:31:33: cd:c8:cb:b8:b0:c4:b6:73:36:c4:34:ed:4f:d6:24: 16:1a:a8:1b:f0:04:3a:05:39:ec:e6:4e:39:22:2c: e7:56:08:df:03:4d:78:e3:76:0a:c0:57:50:8c:89: db:49:bd:76:90:1d:9c:5f:df:90:56:15:24:ed:f5: 8d:8d:9b:c9:1b:7b:fb:b5:c2:c0:8e:54:d2:f8:63: e1:d2:6b:4f:83:e1:b1:11:d3:06:1d:95:5f:dc:42: b9:44:40:bf:f6:58:e1:c9:ea:35:e2:e0:33:2d:6e: 6c:07:cb:25:68:32:25:ce:e6:3e:77:d9:24:b4:45: 2a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A6:B7:B2:7D:ED:2B:A5:70:2E:DE:9B:C6:68:02:62:17:9D:1F:E2 X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:1e:13:f0:ed:71:e5:82:95:a9:70:6b:a5:96:ea:cc:6f:ed: 7c:39:1c:b9:cc:18:fd:1c:a8:24:ab:98:9f:e3:77:d6:57:39: 89:4b:0b:5e:ed:c1:9a:23:ba:b8:86:f7:a7:35:cb:66:16:c5: bf:dd:fc:65:14:9f:16:14:e8:7f:20:ee:cb:f9:12:f1:bd:5f: a9:70:ef:19:e0:76:4e:42:1e:69:c0:72:60:6a:86:35:a8:1f: 79:f9:7a:c3:b3:6c:5d:81:2c:a0:37:ce:cb:06:e2:db:7e:03: dd:8b:54:82:84:78:28:29:c1:30:26:9c:56:cf:40:32:da:00: bd:dc:d8:c1:d1:21:9f:a4:59:68:df:15:11:cb:5d:47:b2:a7: 12:7d:82:8d:bf:da:ad:fc:b0:95:37:13:fd:ff:94:9d:07:8c: aa:30:dd:52:e5:15:ff:21:1f:36:15:e9:e9:ff:f2:42:a6:7e: bd:9a:a4:be:55:32:7a:b5:de:ca:b7:0a:16:2a:8c:7a:26:87: 03:15:d6:0b:ba:0a:35:c9:c5:ce:fd:b5:e7:ba:4e:6f:97:5b: 54:cf:7b:ec:f5:02:05:a7:cc:d1:77:a2:fd:fd:e6:d3:b8:9d: ee:d0:24:83:a9:58:75:d0:25:d4:16:83:b5:e3:1b:ae:c5:76: f9:e4:06:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdERDUxMTAvBgNVBAUTKDk0QzNFRThDQzA3MjRFQkEzQ0IxMDMyNEY5RURCODFC QUM4NTAzMjAwHhcNMjUxMTAzMDM0OTAzWhcNMjUxMTEwMDM0OTAzWjAYMRYwFAYD VQQDEw02OTA4MjYyZi1mYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwXJ0JhjSDFW/dYv1aL1UraPJGiKRNgfZMcssaQLB821Y9rNwEdyLV5QJj4z QrGQL/TxKcPKw0vzzmspqTZa6RYBH30/93TFf0KX7nLtby54rck425OXt71hputU cdEFGBsM/J1CGDWOr5r3FwFon/ovCxKlnWUfRUmZN5K5t2k1B8UrMTPNyMu4sMS2 czbENO1P1iQWGqgb8AQ6BTns5k45IiznVgjfA01443YKwFdQjInbSb12kB2cX9+Q VhUk7fWNjZvJG3v7tcLAjlTS+GPh0mtPg+GxEdMGHZVf3EK5REC/9ljhyeo14uAz LW5sB8slaDIlzuY+d9kktEUq/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLimt7J9 7SulcC7em8ZoAmIXnR/iMB8GA1UdIwQYMBaAFJTD7ozAck66PLEDJPntuBushQMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0RENS8xNkQ0QjBEQzgx Q0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRybzhzUU1rLWUyNEc2eUZB eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0RENS8xNkQ0QjBEQzgxQ0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRy bzhzUU1rLWUyNEc2eUZBeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUHhPw7XHlgpWpcGullurMb+18ORy5zBj9HKgkq5if43fWVzmJSwte 7cGaI7q4hvenNctmFsW/3fxlFJ8WFOh/IO7L+RLxvV+pcO8Z4HZOQh5pwHJgaoY1 qB95+XrDs2xdgSygN87LBuLbfgPdi1SChHgoKcEwJpxWz0Ay2gC93NjB0SGfpFlo 3xURy11HsqcSfYKNv9qt/LCVNxP9/5SdB4yqMN1S5RX/IR82Fenp//JCpn69mqS+ VTJ6td7KtwoWKox6JocDFdYLugo1ycXO/bXnuk5vl1tUz3vs9QIFp8zRd6L9/ebT uJ3u0CSDqVh10CXUFoO14xuuxXb55AYs -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:21 2025 by rpki-client