$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: 2cnSIyOhTDMCm9Z3eh1DqCdy4CTxvMAQAcXwrEz9Baw= Subject key identifier: 5A:51:A5:D8:78:F0:9A:82:CF:44:D4:B5:26:12:37:77:F4:86:6F:D5 Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 214F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 214F Signing time: Sat 18 Oct 2025 16:11:30 +0000 Manifest this update: Sat 18 Oct 2025 16:11:30 +0000 Manifest next update: Sat 25 Oct 2025 16:11:30 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: 96ImnSd70WHco5gqPNMCQZ6Lo5tSJd8bLtktVUqPB3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8527 (0x214f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Oct 18 16:11:30 2025 GMT Not After : Oct 25 16:11:30 2025 GMT Subject: CN=68f3bc32-b16e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1f:ed:22:8c:07:df:a9:51:8c:a5:5f:40:fd: bb:1e:df:b1:08:38:6c:88:42:0d:b1:b5:86:86:bf: 92:a2:aa:e6:ad:ff:66:1f:d1:69:14:37:c4:4b:02: a5:9e:5c:4e:0b:61:fb:b8:40:84:61:f0:34:e7:d1: 4b:ec:f2:5b:ef:89:18:68:d6:2e:b8:b5:9a:c5:97: d5:37:77:c7:36:8d:21:2c:58:67:a9:7f:e6:1a:3b: ff:12:2f:a2:a6:13:cd:f9:de:1b:97:79:a8:07:de: f5:a0:bb:76:56:64:48:bd:e4:06:0a:d2:c1:aa:e4: f3:1d:e1:61:7b:35:83:72:85:cc:a2:44:1c:ff:a7: bf:14:23:a0:4b:4b:85:68:2e:99:bf:f4:ec:66:e1: 15:6f:6c:d9:bc:36:b5:92:9a:46:3e:59:9c:64:da: 19:38:f3:bb:e4:76:f1:bd:65:54:fe:e6:bf:95:e3: 6f:e8:46:05:7a:b6:a6:2e:eb:08:8d:b2:1f:8a:c0: 99:b3:48:1e:85:4c:b9:96:6d:df:c9:b3:3d:d3:9d: a9:78:6b:dc:b5:6f:98:c3:42:db:ba:11:d3:9c:41: 3e:a1:7e:e4:b2:57:28:e2:cc:1e:38:93:1c:0b:53: 3c:65:1f:e7:db:41:19:8e:39:22:fc:4f:46:4d:c0: 27:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:51:A5:D8:78:F0:9A:82:CF:44:D4:B5:26:12:37:77:F4:86:6F:D5 X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:92:3b:3b:98:f9:36:81:55:2e:cc:51:37:18:37:cd:63:46: 49:c3:b5:ce:83:71:5d:18:ee:4c:ab:45:70:43:bc:2b:0a:b4: b1:af:4b:db:68:a7:d5:98:f1:2a:66:d2:71:8a:5c:1e:3f:cd: 6a:e7:b0:a0:45:d9:ac:99:61:52:c1:10:e4:f0:64:0d:6a:c1: 1e:55:6c:ff:b5:ac:ba:96:d7:b3:f4:f7:9d:61:74:b3:f4:af: 71:a7:8e:11:1b:fd:ad:2a:0e:5d:5e:27:7b:45:62:4c:04:ec: 15:ac:bf:c4:41:36:50:a7:05:aa:e1:84:7a:64:7c:4a:e9:63: 67:15:7f:12:ad:ef:6b:07:0b:6d:78:d2:d3:b9:84:d7:e4:5d: bd:3b:08:43:65:34:4d:12:ba:2f:f6:ee:05:1f:10:5c:f5:b1: e1:a1:b0:f6:43:27:8a:9c:39:67:94:8c:ff:f4:4d:43:24:40: 56:7d:10:fc:14:68:5e:10:67:4d:9c:f1:e6:87:26:99:a0:f0: dd:64:4d:19:61:02:9a:94:52:d3:b0:9b:b4:fd:89:d5:03:16: 08:f2:73:11:5b:58:65:e9:02:e2:51:c4:df:36:c7:de:f1:16: 2b:a7:e4:23:d4:1d:91:80:4f:e9:3d:51:0f:89:1f:78:6a:29: 37:09:b4:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUxMDE4MTYxMTMwWhcNMjUxMDI1MTYxMTMwWjAYMRYwFAYD VQQDEw02OGYzYmMzMi1iMTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2x/tIowH36lRjKVfQP27Ht+xCDhsiEINsbWGhr+Soqrmrf9mH9FpFDfESwKl nlxOC2H7uECEYfA059FL7PJb74kYaNYuuLWaxZfVN3fHNo0hLFhnqX/mGjv/Ei+i phPN+d4bl3moB971oLt2VmRIveQGCtLBquTzHeFhezWDcoXMokQc/6e/FCOgS0uF aC6Zv/TsZuEVb2zZvDa1kppGPlmcZNoZOPO75HbxvWVU/ua/leNv6EYFeramLusI jbIfisCZs0gehUy5lm3fybM9052peGvctW+Yw0LbuhHTnEE+oX7kslco4sweOJMc C1M8ZR/n20EZjjki/E9GTcAnTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpRpdh4 8JqCz0TUtSYSN3f0hm/VMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnkjs7mPk2gVUuzFE3GDfNY0ZJw7XOg3FdGO5Mq0VwQ7wrCrSxr0vb aKfVmPEqZtJxilweP81q57CgRdmsmWFSwRDk8GQNasEeVWz/tay6ltez9PedYXSz 9K9xp44RG/2tKg5dXid7RWJMBOwVrL/EQTZQpwWq4YR6ZHxK6WNnFX8Sre9rBwtt eNLTuYTX5F29OwhDZTRNErov9u4FHxBc9bHhobD2QyeKnDlnlIz/9E1DJEBWfRD8 FGheEGdNnPHmhyaZoPDdZE0ZYQKalFLTsJu0/YnVAxYI8nMRW1hl6QLiUcTfNsfe 8RYrp+Qj1B2RgE/pPVEPiR94aik3CbQ7 -----END CERTIFICATE-----Generated at Mon Oct 20 09:38:43 2025 by rpki-client