$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: gE0pMh5G5GD6kBohgexs2do7YQhELBnw6Pae2xwS98E= Subject key identifier: 4A:FB:4D:94:79:BA:3B:87:52:4A:C3:BF:F2:21:7B:17:3B:0C:4C:44 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 106D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 106A Signing time: Sat 18 Oct 2025 17:57:14 +0000 Manifest this update: Sat 18 Oct 2025 17:57:13 +0000 Manifest next update: Sat 25 Oct 2025 17:57:13 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: 1Cp/iCbNGCNiOpCdkyrHt1sOj/ohzPAYEz0+3b4G0Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4205 (0x106d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Oct 18 17:57:13 2025 GMT Not After : Oct 25 17:57:13 2025 GMT Subject: CN=68f3d4f9-3daf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b6:0e:b9:78:b6:65:a5:35:a8:25:97:c6:6e: 42:58:82:f8:ae:6d:fd:f7:07:9d:3a:37:61:24:56: da:e4:29:bd:0d:f1:82:ec:85:1d:c2:4c:8e:76:0f: ab:05:ca:5f:19:2c:e5:58:28:82:3d:e6:e7:b8:dd: ad:e2:d5:ac:a1:08:9c:6b:a4:9a:bd:74:f8:12:94: b0:88:fd:7e:b6:e8:be:1e:f8:3b:60:7c:1b:0f:68: 2c:f6:99:74:64:1a:d2:76:4d:c6:57:97:12:3a:5b: 74:7a:3d:99:c3:88:69:8b:c3:e2:b1:e2:29:63:3a: e2:fb:39:54:e7:d0:e6:f7:11:5b:24:27:b9:a3:6c: 8e:07:42:12:1b:a8:b1:33:16:33:ce:c7:ec:b2:a4: 16:a5:f4:fe:41:fa:30:de:c1:74:c0:2e:22:69:47: ca:41:fb:36:d0:97:93:52:5a:56:96:6e:90:97:b7: b0:18:0f:17:40:50:32:c7:97:7c:40:1e:25:ec:bf: 7c:08:2e:20:6e:9e:61:03:ac:54:ee:2e:79:82:c7: 45:6a:49:7f:8e:43:fb:12:07:40:5f:f9:62:b6:04: 53:b5:58:b0:2a:b2:48:96:a9:34:72:05:20:33:fa: 54:cb:c9:1e:58:90:94:df:0c:47:a9:c2:1a:77:87: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FB:4D:94:79:BA:3B:87:52:4A:C3:BF:F2:21:7B:17:3B:0C:4C:44 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f9:c4:cf:a4:d1:ab:1b:c2:4c:77:56:29:97:b6:3e:7e:1c: 05:63:69:39:37:e6:39:0d:eb:73:4e:68:4d:47:99:2a:59:04: 49:33:8d:dd:e4:2b:75:bf:6a:1d:af:b5:ac:0e:f7:96:dd:2d: 60:ae:b0:bb:8e:98:e4:5a:48:a0:cc:02:e7:99:6f:13:f3:e0: cc:b3:47:b9:2b:c6:c1:5d:f0:cc:f0:cf:ac:89:16:d8:ac:45: 8c:d6:0e:cd:5a:ed:55:4e:b2:d8:20:e3:d8:01:a1:1f:1f:20: 62:8b:1b:e1:39:4a:16:81:be:5a:e4:1e:0d:a1:61:1f:dd:aa: 30:ce:b0:74:5f:4f:c9:7a:db:31:02:f0:d2:ce:fd:f1:bb:50: 2c:de:41:4d:dc:90:cf:95:2c:72:7a:4e:de:d4:29:41:50:05: e2:97:f2:4d:3a:c1:c7:6c:5b:f1:4e:58:ac:89:96:0d:73:ca: da:27:9d:a7:0d:23:d8:85:5e:83:ba:1e:78:59:9a:1c:5a:0d: 41:fe:27:f8:fc:10:2d:25:36:ac:a0:17:d4:bb:8b:c2:87:aa: 9f:ad:d3:f7:53:3a:3e:e2:01:67:6b:25:f3:8f:72:2f:d8:86: 38:b9:99:bd:ed:20:43:cb:23:ba:4b:0c:c8:11:f9:a3:76:ab: 30:b7:91:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUxMDE4MTc1NzEzWhcNMjUxMDI1MTc1NzEzWjAYMRYwFAYD VQQDEw02OGYzZDRmOS0zZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLYOuXi2ZaU1qCWXxm5CWIL4rm399wedOjdhJFba5Cm9DfGC7IUdwkyOdg+r BcpfGSzlWCiCPebnuN2t4tWsoQica6SavXT4EpSwiP1+tui+Hvg7YHwbD2gs9pl0 ZBrSdk3GV5cSOlt0ej2Zw4hpi8PiseIpYzri+zlU59Dm9xFbJCe5o2yOB0ISG6ix MxYzzsfssqQWpfT+Qfow3sF0wC4iaUfKQfs20JeTUlpWlm6Ql7ewGA8XQFAyx5d8 QB4l7L98CC4gbp5hA6xU7i55gsdFakl/jkP7EgdAX/litgRTtViwKrJIlqk0cgUg M/pUy8keWJCU3wxHqcIad4exPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr7TZR5 ujuHUkrDv/Ihexc7DExEMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt+cTPpNGrG8JMd1Ypl7Y+fhwFY2k5N+Y5DetzTmhNR5kqWQRJM43d 5Ct1v2odr7WsDveW3S1grrC7jpjkWkigzALnmW8T8+DMs0e5K8bBXfDM8M+siRbY rEWM1g7NWu1VTrLYIOPYAaEfHyBiixvhOUoWgb5a5B4NoWEf3aowzrB0X0/Jetsx AvDSzv3xu1As3kFN3JDPlSxyek7e1ClBUAXil/JNOsHHbFvxTlisiZYNc8raJ52n DSPYhV6Duh54WZocWg1B/if4/BAtJTasoBfUu4vCh6qfrdP3Uzo+4gFnayXzj3Iv 2IY4uZm97SBDyyO6SwzIEfmjdqswt5Fv -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:35 2025 by rpki-client