$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: fjL/A3oMbV8KVx0g0AIrKgnB37e7dOCf5ClQpzL/388= Subject key identifier: 33:5B:B9:17:E9:F1:27:8C:5C:9E:B2:26:CD:F0:FF:D8:41:7C:B5:6C Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: AD Signing time: Sun 19 Oct 2025 09:23:40 +0000 Manifest this update: Sun 19 Oct 2025 09:23:40 +0000 Manifest next update: Sun 26 Oct 2025 09:23:40 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: g8fo8LzPFt2IZl2qq2CfJA/DsFlbqCUVJ1gHD9dmCKs=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Oct 19 09:23:40 2025 GMT Not After : Oct 26 09:23:40 2025 GMT Subject: CN=68f4ae1c-9985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:75:89:79:7e:b7:9d:39:78:71:9f:a5:a3:79: de:f7:2a:29:8d:b4:ae:cc:bd:89:3a:8e:97:c8:c8: e1:fc:99:4e:f6:1d:44:7f:60:65:28:8e:13:ab:05: 8b:f2:1e:4c:d2:c0:43:6a:f2:d5:4c:b3:50:2a:e5: 0d:89:29:76:61:ba:7c:01:a3:60:62:97:42:fc:46: ff:4a:af:e5:5d:24:2f:bd:4b:98:47:1b:dd:0b:eb: 47:7a:be:97:aa:a3:3e:b1:2d:a3:83:e8:e8:e6:c1: f1:1a:2f:c6:40:4c:ce:7f:cb:1a:2c:7b:9b:d2:fd: 9a:14:7c:ad:63:5c:6c:f5:56:99:ae:7b:68:ed:98: 03:5a:06:3f:bf:ae:be:9e:a8:2f:50:fb:d1:0f:6c: e2:b9:b6:91:e5:bf:83:2e:fe:44:fd:40:04:12:33: e7:1c:3e:e9:f6:58:c7:26:6d:c2:e6:77:7e:ab:35: 68:45:23:1c:47:f7:f1:28:c2:9e:e7:f7:89:19:56: d1:fc:b4:5b:df:2d:6d:da:f8:c9:4a:ef:66:ed:b3: 04:ca:9f:b1:8b:d6:92:29:95:cf:e1:a4:55:3f:8d: e8:63:0c:3b:ab:11:6f:0a:1d:21:00:50:53:71:4b: f5:45:3c:eb:12:31:8e:67:df:91:ad:02:f9:15:8c: 39:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5B:B9:17:E9:F1:27:8C:5C:9E:B2:26:CD:F0:FF:D8:41:7C:B5:6C X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5b:e9:9c:77:10:6e:2e:04:3e:29:10:5e:fc:4f:39:49:95: b1:71:fc:74:10:3b:19:c4:23:f8:8d:21:f6:b6:fc:f0:03:2a: 62:ac:73:77:9f:f6:03:19:58:44:bc:03:cc:2a:12:52:1f:c5: 3e:2b:e0:fb:e1:f9:2c:26:93:1c:6e:2d:19:4c:d5:60:44:de: 89:08:1e:2a:60:3c:bd:9c:36:f6:2b:5c:4f:4c:66:ea:19:90: c5:e8:49:82:73:9b:30:bb:eb:d2:73:25:21:28:0d:63:da:29: dd:10:9d:93:f1:4e:85:67:bb:06:d4:15:f6:33:e9:b2:58:e6: 76:9d:1d:2d:3d:d0:65:47:a1:e8:59:82:b2:b8:4a:25:88:a4: f7:5b:9d:ef:4b:74:b8:02:a0:83:c6:cb:d2:24:c7:ca:34:16: 1d:8c:5d:4d:68:9d:ba:43:e0:dc:92:2c:ff:99:f9:99:66:5b: 92:a5:46:7f:24:df:bb:1b:0a:df:26:7c:d1:55:a0:f2:65:2f: e2:66:f9:88:53:36:1e:e1:3f:a0:3d:16:74:18:f4:89:7f:ad: b5:6d:25:27:2e:85:ec:59:c3:7b:67:7a:05:2d:3f:c9:b1:c8: bd:02:8d:ca:48:3d:ff:fb:79:bd:85:d5:de:03:66:e9:0e:4a: 15:b1:3f:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUxMDE5MDkyMzQwWhcNMjUxMDI2MDkyMzQwWjAYMRYwFAYD VQQDEw02OGY0YWUxYy05OTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXWJeX63nTl4cZ+lo3ne9yopjbSuzL2JOo6XyMjh/JlO9h1Ef2BlKI4TqwWL 8h5M0sBDavLVTLNQKuUNiSl2Ybp8AaNgYpdC/Eb/Sq/lXSQvvUuYRxvdC+tHer6X qqM+sS2jg+jo5sHxGi/GQEzOf8saLHub0v2aFHytY1xs9VaZrnto7ZgDWgY/v66+ nqgvUPvRD2ziubaR5b+DLv5E/UAEEjPnHD7p9ljHJm3C5nd+qzVoRSMcR/fxKMKe 5/eJGVbR/LRb3y1t2vjJSu9m7bMEyp+xi9aSKZXP4aRVP43oYww7qxFvCh0hAFBT cUv1RTzrEjGOZ9+RrQL5FYw5bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNbuRfp 8SeMXJ6yJs3w/9hBfLVsMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8W+mcdxBuLgQ+KRBe/E85SZWxcfx0EDsZxCP4jSH2tvzwAypirHN3 n/YDGVhEvAPMKhJSH8U+K+D74fksJpMcbi0ZTNVgRN6JCB4qYDy9nDb2K1xPTGbq GZDF6EmCc5swu+vScyUhKA1j2indEJ2T8U6FZ7sG1BX2M+myWOZ2nR0tPdBlR6Ho WYKyuEoliKT3W53vS3S4AqCDxsvSJMfKNBYdjF1NaJ26Q+Dckiz/mfmZZluSpUZ/ JN+7GwrfJnzRVaDyZS/iZvmIUzYe4T+gPRZ0GPSJf621bSUnLoXsWcN7Z3oFLT/J sci9Ao3KSD3/+3m9hdXeA2bpDkoVsT+r -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:23 2025 by rpki-client