$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: v1HKoJ84y9ep0OnKHaN4+WAWpaM1WKBsZPbQBYST2Go= Subject key identifier: 7E:8C:B0:E3:8B:ED:80:60:5F:DE:A6:10:48:EC:7B:28:43:E3:60:57 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 0122 Signing time: Sat 23 Aug 2025 05:09:18 +0000 Manifest this update: Sat 23 Aug 2025 05:09:18 +0000 Manifest next update: Sat 30 Aug 2025 05:09:18 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: 3Ryb8ZCRNJuDD+Zx2ecietQdrcpgXBgoVDrKYPoIP+0=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Aug 23 05:09:18 2025 GMT Not After : Aug 30 05:09:18 2025 GMT Subject: CN=68a94cfe-c78d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:1c:5e:fc:93:5e:06:06:5d:8e:44:d6:f4: 9d:5e:2f:2f:7f:4c:c6:d2:d9:4c:ec:0f:c3:60:0b: bf:14:a8:7c:58:66:67:35:a2:62:88:89:05:04:f0: 1d:a8:86:30:5c:e4:84:dd:ca:23:be:63:8e:cb:ad: 50:93:ae:34:1b:75:da:08:81:fa:85:60:c3:cc:dc: 80:ac:0a:e9:60:a4:ac:9a:af:93:15:d2:c5:56:61: 9f:56:6f:2c:bd:bc:6e:8c:9f:16:ac:9f:29:cd:27: 0f:2a:98:59:c8:90:c5:ca:41:3b:f3:b4:b3:27:40: c3:11:a2:41:a0:a7:0e:0e:49:a8:17:7b:83:c4:d6: 6f:17:e2:09:0d:6a:b4:08:10:31:a3:32:16:b4:89: a3:e7:aa:2f:af:5c:67:ba:0c:b5:ec:87:f0:06:a1: ea:9e:b3:16:56:c7:1d:0c:4e:2b:e9:58:61:1c:57: 93:88:32:2e:7c:7d:16:19:a0:92:06:60:e1:4b:6f: 13:a6:16:9a:12:d3:2e:d9:96:ce:05:f3:87:56:8e: a8:6f:e1:f0:2f:fa:35:6e:26:ee:29:2d:a8:f3:c5: ef:fd:02:16:15:3b:d6:bd:1f:7e:e8:63:f7:4c:98: b7:80:01:fd:a8:24:67:30:13:8c:f8:1e:a3:03:01: 1a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8C:B0:E3:8B:ED:80:60:5F:DE:A6:10:48:EC:7B:28:43:E3:60:57 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e7:2a:9e:88:83:85:40:c5:85:f8:81:fc:d1:dc:2a:9a:c8: 82:58:0a:50:8d:85:4d:3f:d3:39:ea:26:17:39:53:6f:f6:31: a6:5e:9a:f0:ff:f2:65:fd:aa:92:9b:f8:42:f7:df:7f:43:ab: bc:d8:ed:f8:c1:20:03:b7:66:19:c2:c2:54:21:90:05:ae:63: cc:c6:66:20:95:db:89:1e:8c:84:a1:b0:a0:2d:da:cb:b3:67: 11:48:bb:e4:d1:6a:10:e2:3f:5a:0b:79:dd:c6:a9:9d:2c:ff: a5:59:80:bb:e4:29:a7:5f:87:b7:df:33:48:ee:f5:4a:47:5a: 25:76:22:37:75:44:c0:2d:57:dd:54:3e:dd:06:b6:67:33:8b: 68:84:cb:68:68:b1:f2:f5:91:6d:ee:14:cd:51:97:6b:f8:6e: b2:e5:81:82:9b:fb:39:e7:d6:a9:e0:85:81:26:ac:16:f6:61: 8d:a6:0f:21:d3:e1:22:49:5b:7e:a6:31:49:48:a2:ba:33:16: f2:1c:29:ca:af:93:88:72:94:46:0c:e8:41:a6:24:7c:66:00: 74:e5:c0:56:f6:19:9a:9d:1c:2d:e9:48:6e:41:c5:4f:ae:a8: 3e:aa:4a:f8:70:cb:4d:ec:50:c4:3b:b4:6e:66:37:a3:51:ff: 7e:b9:6f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwODIzMDUwOTE4WhcNMjUwODMwMDUwOTE4WjAYMRYwFAYD VQQDEw02OGE5NGNmZS1jNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG0cXvyTXgYGXY5E1vSdXi8vf0zG0tlM7A/DYAu/FKh8WGZnNaJiiIkFBPAd qIYwXOSE3cojvmOOy61Qk640G3XaCIH6hWDDzNyArArpYKSsmq+TFdLFVmGfVm8s vbxujJ8WrJ8pzScPKphZyJDFykE787SzJ0DDEaJBoKcODkmoF3uDxNZvF+IJDWq0 CBAxozIWtImj56ovr1xnugy17IfwBqHqnrMWVscdDE4r6VhhHFeTiDIufH0WGaCS BmDhS28TphaaEtMu2ZbOBfOHVo6ob+HwL/o1bibuKS2o88Xv/QIWFTvWvR9+6GP3 TJi3gAH9qCRnMBOM+B6jAwEaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6MsOOL 7YBgX96mEEjseyhD42BXMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC5yqeiIOFQMWF+IH80dwqmsiCWApQjYVNP9M56iYXOVNv9jGmXprw //Jl/aqSm/hC999/Q6u82O34wSADt2YZwsJUIZAFrmPMxmYglduJHoyEobCgLdrL s2cRSLvk0WoQ4j9aC3ndxqmdLP+lWYC75CmnX4e33zNI7vVKR1oldiI3dUTALVfd VD7dBrZnM4tohMtoaLHy9ZFt7hTNUZdr+G6y5YGCm/s559ap4IWBJqwW9mGNpg8h 0+EiSVt+pjFJSKK6MxbyHCnKr5OIcpRGDOhBpiR8ZgB05cBW9hmanRwt6UhuQcVP rqg+qkr4cMtN7FDEO7RuZjejUf9+uW/p -----END CERTIFICATE-----Generated at Sat Aug 23 12:35:31 2025 by rpki-client