$ rpki-client -vvf rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft File: lFCLKqsDKqM_mgAoJYI_mrhccBI.mft (raw, json) Hash identifier: 13wxW+ZdalbgCGMQ8dIkWb9F9ua3q2ADgDLosDt68N0= Subject key identifier: B1:43:4D:8C:C7:0D:FE:1A:27:36:A7:AC:92:1E:E5:8C:D1:08:6E:6E Authority key identifier: 94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 Certificate issuer: /CN=A9125532/serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft Manifest number: 64 Signing time: Sun 19 Oct 2025 10:27:05 +0000 Manifest this update: Sun 19 Oct 2025 10:27:05 +0000 Manifest next update: Sun 26 Oct 2025 10:27:05 +0000 Files and hashes: 1: lFCLKqsDKqM_mgAoJYI_mrhccBI.crl (hash: 4agGCTYFZzMbfJR5rnL+RuDxpeqXaxedx1QuKmlHMyk=) 2: CB08B0C019C811F0958CB24EC4F9AE02.roa (hash: y8xxOVA8cK5Sc+i2B8yZIUqOuhkVjbuKi4OA78/BPFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125532, serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Validity Not Before: Oct 19 10:27:05 2025 GMT Not After : Oct 26 10:27:05 2025 GMT Subject: CN=68f4bcf9-c1ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:81:56:fd:2c:f1:b0:77:6f:32:2d:6d:19:3f: 1a:b4:99:cc:5e:8f:84:08:5a:ec:0a:36:6d:80:6d: 2e:8a:1c:30:db:c8:08:95:ba:56:e4:4e:f2:16:c1: d6:fa:7c:9c:85:09:bc:c8:d7:33:7b:b4:b8:51:49: 61:db:c5:7f:a4:0d:73:16:fb:ee:ac:df:38:00:f5: 0f:46:10:41:c2:b2:23:9b:17:b1:52:68:d5:b1:87: 12:91:d7:cc:44:31:b9:f5:54:b1:af:75:8b:50:dc: d6:50:a0:c5:cc:d5:38:cb:c6:76:a3:6a:3a:cf:60: b9:af:ac:81:0e:af:3e:38:39:df:74:5a:0c:63:0e: 70:ea:3d:8d:63:c4:41:92:21:bd:82:06:5a:33:4e: 6d:72:58:4b:e0:09:bc:6c:f2:70:c4:85:45:1d:91: 43:34:49:c2:63:10:3c:c2:ca:14:77:3f:07:fa:77: e0:12:aa:6a:14:aa:88:4b:09:d0:1a:26:3a:f1:7a: 25:e0:40:20:94:49:bd:9f:62:85:e3:97:d3:65:01: 70:20:d2:a4:f5:8e:80:60:2b:71:c1:cd:85:17:e9: ae:da:2d:01:36:13:62:e3:ef:41:2c:c9:45:4f:e9: c5:5b:27:ff:35:c2:2b:96:84:d7:14:bd:d8:d7:d1: 95:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:43:4D:8C:C7:0D:FE:1A:27:36:A7:AC:92:1E:E5:8C:D1:08:6E:6E X509v3 Authority Key Identifier: keyid:94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:df:48:24:0d:5b:12:6c:7d:4b:74:4f:e0:68:64:b5:1e:ab: 8d:64:7e:6a:9f:31:cd:1f:7e:cd:a0:4e:bc:63:f4:10:44:b2: 82:ab:8a:7a:bb:e7:30:a4:c2:d5:72:f5:77:20:d6:01:6f:c3: 0d:c0:8c:4c:89:b2:41:ef:e8:77:f4:dd:b8:b7:4c:87:dc:ae: be:d4:c9:bd:20:09:45:f3:4b:78:1a:85:4e:51:bb:81:6a:14: 42:fc:2a:12:d8:cd:da:3f:d6:d2:85:75:4a:ed:ce:12:9a:e1: e2:db:f2:e5:f5:30:00:b7:b0:ec:f7:b9:67:d0:b9:19:17:1f: e8:54:7f:ba:34:01:22:2c:80:b1:11:70:7b:72:ca:8e:82:65: 0e:46:2b:d2:de:84:0a:37:2b:69:18:ed:9b:41:98:26:20:21: 3e:58:d0:64:91:ac:d9:fa:a8:44:f6:c5:61:7b:3a:ec:0a:80: 02:cd:52:f5:86:15:8e:2a:d4:5a:dc:20:3f:d3:aa:8a:c4:4c: 8a:15:9b:7e:20:ec:61:e1:b6:88:77:bb:34:90:ff:eb:f6:23: 06:e3:42:33:52:f6:78:bc:7e:6f:68:83:d3:91:e3:b2:23:02: 8e:72:5a:39:cf:e1:35:a9:a6:23:80:c7:a8:25:93:d8:88:d7: ad:4f:42:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTUzMjExMC8GA1UEBRMoOTQ1MDhCMkFBQjAzMkFBMzNGOUEwMDI4MjU4MjNGOUFC ODVDNzAxMjAeFw0yNTEwMTkxMDI3MDVaFw0yNTEwMjYxMDI3MDVaMBgxFjAUBgNV BAMTDTY4ZjRiY2Y5LWMxZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcgVb9LPGwd28yLW0ZPxq0mcxej4QIWuwKNm2AbS6KHDDbyAiVulbkTvIWwdb6 fJyFCbzI1zN7tLhRSWHbxX+kDXMW++6s3zgA9Q9GEEHCsiObF7FSaNWxhxKR18xE Mbn1VLGvdYtQ3NZQoMXM1TjLxnajajrPYLmvrIEOrz44Od90WgxjDnDqPY1jxEGS Ib2CBlozTm1yWEvgCbxs8nDEhUUdkUM0ScJjEDzCyhR3Pwf6d+ASqmoUqohLCdAa JjrxeiXgQCCUSb2fYoXjl9NlAXAg0qT1joBgK3HBzYUX6a7aLQE2E2Lj70EsyUVP 6cVbJ/81wiuWhNcUvdjX0ZW7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsUNNjMcN /honNqeskh7ljNEIbm4wHwYDVR0jBBgwFoAUlFCLKqsDKqM/mgAoJYI/mrhccBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1NTMyL0YzN0JENjdBMTlD NTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FNX21nQW9KWUlfbXJoY2NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZDTEtxc0RLcU1fbWdBb0pZSV9tcmhjY0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 NTMyL0YzN0JENjdBMTlDNTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FN X21nQW9KWUlfbXJoY2NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACHfSCQNWxJsfUt0T+BoZLUeq41kfmqfMc0ffs2gTrxj9BBEsoKrinq7 5zCkwtVy9Xcg1gFvww3AjEyJskHv6Hf03bi3TIfcrr7Uyb0gCUXzS3gahU5Ru4Fq FEL8KhLYzdo/1tKFdUrtzhKa4eLb8uX1MAC3sOz3uWfQuRkXH+hUf7o0ASIsgLER cHtyyo6CZQ5GK9LehAo3K2kY7ZtBmCYgIT5Y0GSRrNn6qET2xWF7OuwKgALNUvWG FY4q1FrcID/TqorETIoVm34g7GHhtoh3uzSQ/+v2IwbjQjNS9ni8fm9og9OR47Ij Ao5yWjnP4TWppiOAx6glk9iI161PQso= -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:03 2025 by rpki-client