$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: BV0Dr1GM4asUnDpWKCASdCb50PK/O91avEWwUrMd/UQ= Subject key identifier: 8B:14:F1:68:1C:4C:C0:0A:6A:CE:87:F5:AB:D5:8B:6A:F4:9D:34:AF Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0273 Signing time: Sun 19 Oct 2025 03:53:23 +0000 Manifest this update: Sun 19 Oct 2025 03:53:22 +0000 Manifest next update: Sun 26 Oct 2025 03:53:22 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: pSltTCon6j1yy9l/LMLl0F1/RxPX6/PhLvTTqlMeRjM=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: YiqHt1NmkyZeQGkCylb3t5kmyZBllHOZPJhWp7tXWTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Oct 19 03:53:22 2025 GMT Not After : Oct 26 03:53:22 2025 GMT Subject: CN=68f460b2-1b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:26:69:1d:89:69:36:ab:0a:ed:5c:75:6a:d9: 97:43:7e:42:85:39:82:90:dc:0f:a3:4c:c0:0f:98: 7d:d1:b5:64:52:c4:71:a5:7c:6f:5f:29:05:ac:57: e3:03:f1:2c:cc:a5:4f:48:bd:43:18:dd:77:76:d5: d4:9f:fa:17:da:09:8e:07:97:6d:95:33:b9:99:59: 0e:d9:19:0e:49:1d:7e:0b:b6:98:60:a3:4e:62:e2: c6:aa:2b:3d:40:d0:14:e1:67:6a:4e:7e:a4:a6:62: de:2f:b5:70:fc:86:90:87:cd:47:cb:2b:6b:38:d9: 85:b4:7d:e9:cf:1c:3b:03:b4:5c:44:17:4f:fa:63: 64:84:3a:0b:8c:b1:b0:d3:48:4d:92:77:89:9f:7b: db:a6:75:59:35:56:c8:25:26:8a:5d:53:67:ee:7b: ed:b7:00:47:e4:04:b1:90:65:30:72:ac:9e:78:02: ba:ef:cb:06:4e:0c:11:e8:80:ea:32:4a:0d:26:e2: 84:8c:37:57:9e:a7:75:e1:6b:d5:6d:91:13:cf:75: 4b:7c:5e:64:a1:df:b7:17:c8:79:94:94:85:98:72: 4b:77:5d:c2:d1:3c:67:0d:43:2a:9c:e1:f3:be:0f: c0:04:fe:94:26:f3:dd:91:65:59:99:90:84:9c:0f: 24:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:14:F1:68:1C:4C:C0:0A:6A:CE:87:F5:AB:D5:8B:6A:F4:9D:34:AF X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:9c:70:5b:2b:e5:a3:37:78:d6:c5:5d:46:8b:48:de:68:7b: 4d:9e:4c:00:c8:9f:ca:8d:da:8a:9f:27:51:77:af:bd:e3:49: 78:0f:dd:de:fd:6b:5b:e6:41:22:f9:1e:7d:5f:32:bb:26:57: a7:4a:10:d4:3a:da:86:09:a6:6c:28:fb:ac:8c:bd:22:8b:db: 23:da:90:25:c4:e7:e5:59:4d:04:86:12:38:c9:70:49:06:25: c0:ec:ed:96:75:da:d4:ca:24:f8:44:7f:79:96:84:ec:b6:4d: 0e:7d:13:53:af:2a:2a:7f:2b:44:61:b8:13:5d:70:e2:72:97: d2:e3:3d:92:77:63:e8:b5:83:50:74:28:a5:d5:cb:5c:0a:5d: 89:85:38:be:5f:ed:90:42:a3:b8:7b:f2:e1:82:da:1c:86:12: bc:c6:90:2b:98:92:6b:a4:4b:01:c3:89:ea:e5:52:39:98:17: 1c:b4:48:e9:c5:09:08:6f:8f:13:26:39:2d:5e:10:43:31:27: 93:88:cd:8e:55:ec:97:67:2c:76:da:c9:9d:71:37:e4:33:5e: eb:70:26:c1:85:5c:32:7e:6e:05:be:42:9f:c3:76:71:ee:aa: ac:ec:ae:7b:75:01:a3:7a:ca:53:db:4e:53:9e:3e:df:3d:97: 4d:48:15:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUxMDE5MDM1MzIyWhcNMjUxMDI2MDM1MzIyWjAYMRYwFAYD VQQDEw02OGY0NjBiMi0xYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSZpHYlpNqsK7Vx1atmXQ35ChTmCkNwPo0zAD5h90bVkUsRxpXxvXykFrFfj A/EszKVPSL1DGN13dtXUn/oX2gmOB5dtlTO5mVkO2RkOSR1+C7aYYKNOYuLGqis9 QNAU4WdqTn6kpmLeL7Vw/IaQh81HyytrONmFtH3pzxw7A7RcRBdP+mNkhDoLjLGw 00hNkneJn3vbpnVZNVbIJSaKXVNn7nvttwBH5ASxkGUwcqyeeAK678sGTgwR6IDq MkoNJuKEjDdXnqd14WvVbZETz3VLfF5kod+3F8h5lJSFmHJLd13C0TxnDUMqnOHz vg/ABP6UJvPdkWVZmZCEnA8kxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsU8Wgc TMAKas6H9avVi2r0nTSvMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjnHBbK+WjN3jWxV1Gi0jeaHtNnkwAyJ/KjdqKnydRd6+940l4D93e /Wtb5kEi+R59XzK7JlenShDUOtqGCaZsKPusjL0ii9sj2pAlxOflWU0EhhI4yXBJ BiXA7O2WddrUyiT4RH95loTstk0OfRNTryoqfytEYbgTXXDicpfS4z2Sd2PotYNQ dCil1ctcCl2JhTi+X+2QQqO4e/LhgtochhK8xpArmJJrpEsBw4nq5VI5mBcctEjp xQkIb48TJjktXhBDMSeTiM2OVeyXZyx22smdcTfkM17rcCbBhVwyfm4FvkKfw3Zx 7qqs7K57dQGjespT205Tnj7fPZdNSBXU -----END CERTIFICATE-----Generated at Tue Oct 21 00:52:27 2025 by rpki-client