$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: VDDPAN12seyBMCGKD1HPTrUKVU/E6DFEu9kOpZdswoQ= Subject key identifier: 59:46:05:DB:C4:C9:AE:43:F2:E9:4D:BB:64:23:E3:E0:F3:32:E5:B6 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 013F Signing time: Sun 19 Oct 2025 07:30:11 +0000 Manifest this update: Sun 19 Oct 2025 07:30:10 +0000 Manifest next update: Sun 26 Oct 2025 07:30:10 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: C0y15XuYEB4QsGwwUIZFC+FN3rpkRI31D4RceB70h5o=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Oct 19 07:30:10 2025 GMT Not After : Oct 26 07:30:10 2025 GMT Subject: CN=68f49383-4128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e9:a7:95:16:09:be:03:7a:a3:b9:d4:56:55: ce:09:81:44:8a:f6:1d:18:5c:4c:a2:3b:20:cf:e2: d2:08:88:f5:7f:9f:a9:a5:9a:45:15:6e:4c:7c:df: a6:92:07:1a:11:38:ef:0e:f2:e4:cc:e2:33:78:d4: 11:6f:9b:46:b3:41:ce:b9:b4:a3:8d:b3:3d:85:94: 8b:d0:3e:db:13:3b:1c:b0:09:02:34:c1:91:4c:b2: 9a:15:2c:64:47:79:2d:9c:a6:ca:47:7f:c3:8f:f9: 25:2b:95:bf:8d:c7:f6:85:9b:c9:36:59:cd:1f:a9: 70:6f:f7:cc:a0:bf:7b:c9:a9:89:14:b4:67:ac:23: 74:8f:52:6e:5b:22:4d:88:0e:5f:67:e5:26:ee:b3: a2:f9:eb:15:c2:49:d3:2f:61:98:2c:73:ae:31:0d: ff:e3:7f:e2:bd:0b:38:67:93:7a:cb:85:c7:4d:9d: 62:39:7a:87:de:02:68:91:58:fa:28:83:95:89:98: 42:15:76:ad:11:aa:b7:07:12:de:4d:2b:65:a5:71: 6e:b7:42:83:3f:07:81:c2:f3:61:af:4c:6a:84:2f: 24:41:d8:b6:92:a1:a2:89:bf:4d:de:6e:c7:06:a4: cd:e0:76:dd:a2:83:e7:e2:d2:ba:ee:48:8d:2b:6e: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:46:05:DB:C4:C9:AE:43:F2:E9:4D:BB:64:23:E3:E0:F3:32:E5:B6 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:be:d2:30:18:93:01:08:10:2e:3f:7b:b6:d9:02:ae:55:c2: f5:93:da:b2:02:d2:93:eb:d4:24:06:9b:37:d6:7c:e7:08:1f: 04:a7:54:4c:43:35:95:5e:17:88:aa:8d:10:b6:fc:7e:23:51: f5:49:49:14:30:58:bc:47:e7:1d:da:7e:69:5f:78:04:2d:82: 5b:1f:5e:a3:5a:2e:8d:c4:8e:f5:44:47:ac:6c:45:b8:2a:aa: 5a:b7:69:13:00:b0:4b:6e:91:c0:93:e3:24:ce:a8:c0:52:5b: 69:10:d2:10:fa:e3:47:57:60:bd:6c:6d:05:e0:1f:d0:83:3b: 27:12:57:ed:ed:1e:91:2d:ad:f8:92:c6:94:a2:a6:ef:56:e8: a0:fe:8e:f4:9a:0c:8c:7b:49:9e:a1:5c:17:02:5e:b6:72:a6: 6b:53:1b:0c:f5:27:bb:a5:68:ac:44:1d:5e:35:0c:6f:47:9b: 26:ce:a0:d8:31:93:63:6e:7f:d9:32:86:19:b7:83:5a:32:76: 26:d2:b5:ff:1e:1a:dd:63:c4:72:71:b9:03:74:a0:7f:8c:87: e7:cd:f2:96:45:ed:cf:15:5d:eb:8f:34:c5:b9:b2:a2:73:be: 59:88:87:1f:7d:cd:0f:82:9a:4c:55:2d:41:48:3c:c0:31:c9: 90:31:fc:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUxMDE5MDczMDEwWhcNMjUxMDI2MDczMDEwWjAYMRYwFAYD VQQDEw02OGY0OTM4My00MTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+mnlRYJvgN6o7nUVlXOCYFEivYdGFxMojsgz+LSCIj1f5+ppZpFFW5MfN+m kgcaETjvDvLkzOIzeNQRb5tGs0HOubSjjbM9hZSL0D7bEzscsAkCNMGRTLKaFSxk R3ktnKbKR3/Dj/klK5W/jcf2hZvJNlnNH6lwb/fMoL97yamJFLRnrCN0j1JuWyJN iA5fZ+Um7rOi+esVwknTL2GYLHOuMQ3/43/ivQs4Z5N6y4XHTZ1iOXqH3gJokVj6 KIOViZhCFXatEaq3BxLeTStlpXFut0KDPweBwvNhr0xqhC8kQdi2kqGiib9N3m7H BqTN4HbdooPn4tK67kiNK24g2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlGBdvE ya5D8ulNu2Qj4+DzMuW2MB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcvtIwGJMBCBAuP3u22QKuVcL1k9qyAtKT69QkBps31nznCB8Ep1RM QzWVXheIqo0Qtvx+I1H1SUkUMFi8R+cd2n5pX3gELYJbH16jWi6NxI71REesbEW4 Kqpat2kTALBLbpHAk+MkzqjAUltpENIQ+uNHV2C9bG0F4B/QgzsnElft7R6RLa34 ksaUoqbvVuig/o70mgyMe0meoVwXAl62cqZrUxsM9Se7pWisRB1eNQxvR5smzqDY MZNjbn/ZMoYZt4NaMnYm0rX/HhrdY8RycbkDdKB/jIfnzfKWRe3PFV3rjzTFubKi c75ZiIcffc0PgppMVS1BSDzAMcmQMfyd -----END CERTIFICATE-----Generated at Tue Oct 21 02:09:08 2025 by rpki-client