$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: ybXISSxwHKJDtkALzRzbTAJjQZp1zNLDE/iAbcOuYWo= Subject key identifier: C2:C1:D7:41:ED:7C:9E:15:ED:CE:96:B9:31:4A:30:C7:9A:C9:E4:BB Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2115 Signing time: Sat 28 Jun 2025 15:50:32 +0000 Manifest this update: Sat 28 Jun 2025 15:50:31 +0000 Manifest next update: Sat 05 Jul 2025 15:50:31 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: ng3h7ZH4KQoTcFnbTGnvbXTnTkasi1BNKi3U7/zX+zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8469 (0x2115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Jun 28 15:50:31 2025 GMT Not After : Jul 5 15:50:31 2025 GMT Subject: CN=68600f47-ff0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:16:80:3d:33:9c:24:43:53:9f:d8:5a:6e:a0: 42:89:98:10:dd:be:69:96:f3:9d:9b:56:48:2c:83: ce:9f:4f:b5:ad:33:1b:31:b3:74:01:26:0c:ae:f6: 4c:82:22:0c:7f:4a:85:a4:29:3c:09:43:62:3c:43: a9:8f:f0:a5:2c:a6:e0:96:64:62:04:af:f3:49:b8: 9e:58:ad:8f:bf:ba:d1:0d:ff:5a:73:f8:28:50:ef: 3e:13:1c:35:5f:80:03:d7:13:cf:22:fd:73:e2:9a: 10:9e:57:62:3d:ec:b8:47:42:40:dd:8c:46:97:17: 83:87:17:ac:dc:24:49:64:f5:ec:d4:3a:08:aa:7b: 9d:21:98:c6:c7:49:c7:be:9e:b4:cd:83:85:9b:9f: 63:23:5b:a8:2e:8c:ee:56:89:86:68:81:60:35:3b: 15:94:90:95:85:8b:0b:5e:ca:e5:9e:d5:5a:ce:73: 6e:45:b9:dc:e3:6c:6b:9d:22:64:ec:eb:a6:39:26: bc:ae:aa:02:6e:7b:2e:16:11:6f:90:64:02:45:21: 6e:52:de:2e:bb:51:b2:3f:fb:c0:d3:a6:8c:cb:cd: 98:1d:36:b9:f5:3b:7d:6a:e9:83:d4:b9:12:a6:37: 89:34:dd:91:1a:b1:9d:98:45:7d:88:66:57:1b:41: f9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C1:D7:41:ED:7C:9E:15:ED:CE:96:B9:31:4A:30:C7:9A:C9:E4:BB X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:60:4a:03:07:32:5c:9c:88:6b:8c:4d:1f:5d:b4:5b:09:2d: 01:58:74:46:c2:1a:e0:5a:9a:31:13:aa:1c:5e:3c:1d:95:52: af:9a:2a:dd:af:ba:0c:3e:f3:ec:81:f9:8c:44:9d:59:16:60: f9:2b:50:18:89:30:04:76:df:c3:d4:4c:81:b9:54:6f:1d:55: 75:df:2c:7a:21:d6:31:02:93:81:40:4b:cc:53:97:c7:d3:9e: ef:1b:f5:9d:4b:e3:c4:bb:57:de:f0:89:36:90:7f:9e:17:d2: c8:d8:e4:68:a5:c5:75:eb:74:65:b7:d9:f6:33:e5:21:62:94: f7:b6:36:8c:d9:29:e8:89:bb:04:8a:49:a3:a2:0b:97:18:1c: d6:e7:63:a9:f1:c7:d2:41:7d:e7:00:16:cd:46:6b:25:31:1d: 7e:01:b3:b3:2a:37:15:07:21:f6:6a:16:27:fe:92:65:b4:ae: a4:1f:36:64:8b:3f:3c:8e:6d:f1:5a:33:e5:71:27:51:66:59: ad:44:cf:a0:aa:0f:fc:f6:3e:e3:aa:9f:b8:51:7b:2b:1b:2d: 2c:87:70:80:40:55:a1:b9:50:f7:39:62:6c:1e:24:58:31:94: 07:64:01:14:bf:74:59:fc:6f:eb:e2:80:a8:22:fc:b8:f3:4d: 2b:b4:03:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUwNjI4MTU1MDMxWhcNMjUwNzA1MTU1MDMxWjAYMRYwFAYD VQQDEw02ODYwMGY0Ny1mZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRaAPTOcJENTn9habqBCiZgQ3b5plvOdm1ZILIPOn0+1rTMbMbN0ASYMrvZM giIMf0qFpCk8CUNiPEOpj/ClLKbglmRiBK/zSbieWK2Pv7rRDf9ac/goUO8+Exw1 X4AD1xPPIv1z4poQnldiPey4R0JA3YxGlxeDhxes3CRJZPXs1DoIqnudIZjGx0nH vp60zYOFm59jI1uoLozuVomGaIFgNTsVlJCVhYsLXsrlntVaznNuRbnc42xrnSJk 7OumOSa8rqoCbnsuFhFvkGQCRSFuUt4uu1GyP/vA06aMy82YHTa59Tt9aumD1LkS pjeJNN2RGrGdmEV9iGZXG0H5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLB10Ht fJ4V7c6WuTFKMMeayeS7MB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGYEoDBzJcnIhrjE0fXbRbCS0BWHRGwhrgWpoxE6ocXjwdlVKvmird r7oMPvPsgfmMRJ1ZFmD5K1AYiTAEdt/D1EyBuVRvHVV13yx6IdYxApOBQEvMU5fH 057vG/WdS+PEu1fe8Ik2kH+eF9LI2ORopcV163Rlt9n2M+UhYpT3tjaM2SnoibsE ikmjoguXGBzW52Op8cfSQX3nABbNRmslMR1+AbOzKjcVByH2ahYn/pJltK6kHzZk iz88jm3xWjPlcSdRZlmtRM+gqg/89j7jqp+4UXsrGy0sh3CAQFWhuVD3OWJsHiRY MZQHZAEUv3RZ/G/r4oCoIvy4800rtAO7 -----END CERTIFICATE-----Generated at Sun Jun 29 16:57:28 2025 by rpki-client