$ rpki-client -vvf rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft File: lFCLKqsDKqM_mgAoJYI_mrhccBI.mft (raw, json) Hash identifier: ydMV5eyxBabO5GTM7AuZLOiiVcNKVt6SjCK88Ds8Hyc= Subject key identifier: 8F:4E:93:36:A8:E8:0C:23:E0:6B:05:BF:F2:F8:6E:4F:F0:F0:8C:89 Authority key identifier: 94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 Certificate issuer: /CN=A9125532/serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft Manifest number: 47 Signing time: Sat 23 Aug 2025 07:40:29 +0000 Manifest this update: Sat 23 Aug 2025 07:40:29 +0000 Manifest next update: Sat 30 Aug 2025 07:40:29 +0000 Files and hashes: 1: lFCLKqsDKqM_mgAoJYI_mrhccBI.crl (hash: OnijNR9r4gkkWcW14+s1a4m9e7Fw6puiL0nU08rvtlY=) 2: CB08B0C019C811F0958CB24EC4F9AE02.roa (hash: y8xxOVA8cK5Sc+i2B8yZIUqOuhkVjbuKi4OA78/BPFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125532, serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Validity Not Before: Aug 23 07:40:29 2025 GMT Not After : Aug 30 07:40:29 2025 GMT Subject: CN=68a9706d-2059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:42:73:6f:17:86:01:68:df:d5:ae:8f:e1: 0a:d1:fc:63:b8:58:61:fb:58:b6:0a:5c:c0:f5:d2: 4b:9f:a1:bf:25:00:3c:be:d8:b1:a4:eb:9a:ac:33: bf:15:d7:44:7d:3f:d5:ef:50:f0:1a:57:7d:b0:ba: 1e:fc:9e:01:90:cb:dd:ef:eb:07:1d:79:5c:5b:17: 03:7c:1f:d6:4e:36:bb:7a:e0:a5:c3:ab:d8:14:dd: 7b:f5:fa:1e:39:8d:18:63:22:9a:2a:a5:45:2a:b0: 61:03:53:6a:25:8e:80:b4:44:91:02:7b:db:de:0e: 47:58:8a:8b:43:a1:ec:ad:2c:a8:93:84:9a:53:19: d8:48:2a:46:e3:42:e6:3a:57:9e:38:76:bc:9e:9e: 51:a8:0b:0a:20:9e:9f:8d:af:8a:aa:0d:4e:5a:7c: e8:63:f5:bf:7b:e4:f5:4c:8d:83:7a:ff:4c:3d:98: ca:f0:18:7a:0a:47:95:1f:bd:5c:e2:3d:1c:83:ac: e9:6d:d4:ab:e9:bf:0d:95:f6:ce:24:30:68:e8:d5: 0b:3c:ce:ea:9c:89:a2:3c:c8:67:cd:3c:8b:f2:5f: d1:37:d7:e5:3c:28:e4:6a:2e:b4:61:a0:19:bd:16: 01:e9:db:b2:e6:2c:5f:94:d3:33:bc:3e:8b:e5:03: 0a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:93:36:A8:E8:0C:23:E0:6B:05:BF:F2:F8:6E:4F:F0:F0:8C:89 X509v3 Authority Key Identifier: keyid:94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:7f:c3:21:b5:ac:53:76:84:1e:e5:f3:cd:84:77:6f:1b:ae: f4:14:3e:5c:8d:6b:28:d3:9e:64:2d:18:40:5c:ae:be:4d:77: 52:98:a9:c7:6d:6e:a3:ee:d7:1f:d1:f5:65:bb:16:fe:73:fe: ed:81:e7:56:89:10:1f:b5:58:f3:64:f2:cc:7d:20:0b:be:41: 1a:d7:c5:29:a2:01:87:65:3b:26:ed:99:34:36:44:7c:27:b0: d8:25:ba:5b:c7:d1:f6:4b:4d:8e:82:26:ff:f6:07:9e:84:51: 3a:94:fc:1c:11:b9:d2:29:d5:16:a5:ec:46:c4:0c:32:88:63: f1:10:35:34:37:8c:44:f6:93:64:99:8a:89:46:56:ee:9e:04: 7f:0b:b5:bb:25:c0:67:74:13:47:6e:ff:60:e9:55:20:a1:82: 94:53:80:8a:7c:30:d2:13:a2:03:13:db:6d:ff:d0:70:1f:f3: c8:22:56:ba:d7:f2:4d:6b:c7:79:ff:8c:b9:e5:45:b2:69:07: 2b:a4:8c:d0:9a:36:5c:d0:5b:5b:78:8c:bb:99:46:7b:17:b9: 37:d7:06:a6:c5:38:7b:ca:c2:ef:64:d4:48:0e:cf:10:a5:56: d8:c1:3c:05:66:39:6a:34:34:43:33:51:82:4d:1a:82:26:25: 41:11:61:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTUzMjExMC8GA1UEBRMoOTQ1MDhCMkFBQjAzMkFBMzNGOUEwMDI4MjU4MjNGOUFC ODVDNzAxMjAeFw0yNTA4MjMwNzQwMjlaFw0yNTA4MzAwNzQwMjlaMBgxFjAUBgNV BAMTDTY4YTk3MDZkLTIwNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRukJzbxeGAWjf1a6P4QrR/GO4WGH7WLYKXMD10kufob8lADy+2LGk65qsM78V 10R9P9XvUPAaV32wuh78ngGQy93v6wcdeVxbFwN8H9ZONrt64KXDq9gU3Xv1+h45 jRhjIpoqpUUqsGEDU2oljoC0RJECe9veDkdYiotDoeytLKiThJpTGdhIKkbjQuY6 V544dryenlGoCwognp+Nr4qqDU5afOhj9b975PVMjYN6/0w9mMrwGHoKR5UfvVzi PRyDrOlt1Kvpvw2V9s4kMGjo1Qs8zuqciaI8yGfNPIvyX9E31+U8KORqLrRhoBm9 FgHp27LmLF+U0zO8PovlAwqtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj06TNqjo DCPgawW/8vhuT/DwjIkwHwYDVR0jBBgwFoAUlFCLKqsDKqM/mgAoJYI/mrhccBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1NTMyL0YzN0JENjdBMTlD NTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FNX21nQW9KWUlfbXJoY2NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZDTEtxc0RLcU1fbWdBb0pZSV9tcmhjY0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 NTMyL0YzN0JENjdBMTlDNTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FN X21nQW9KWUlfbXJoY2NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADp/wyG1rFN2hB7l882Ed28brvQUPlyNayjTnmQtGEBcrr5Nd1KYqcdt bqPu1x/R9WW7Fv5z/u2B51aJEB+1WPNk8sx9IAu+QRrXxSmiAYdlOybtmTQ2RHwn sNglulvH0fZLTY6CJv/2B56EUTqU/BwRudIp1Ral7EbEDDKIY/EQNTQ3jET2k2SZ iolGVu6eBH8LtbslwGd0E0du/2DpVSChgpRTgIp8MNITogMT223/0HAf88giVrrX 8k1rx3n/jLnlRbJpByukjNCaNlzQW1t4jLuZRnsXuTfXBqbFOHvKwu9k1EgOzxCl VtjBPAVmOWo0NEMzUYJNGoImJUERYUo= -----END CERTIFICATE-----Generated at Sat Aug 23 17:05:14 2025 by rpki-client