$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: Wt1GpdD8OoQ0YMRw82oFbP7Y/tiHZcJRLt75VgtljtA= Subject key identifier: 7E:2A:35:C4:EB:13:AA:09:28:8C:ED:50:14:19:4F:4F:8B:A1:0C:C3 Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2132 Signing time: Fri 22 Aug 2025 15:58:56 +0000 Manifest this update: Fri 22 Aug 2025 15:58:56 +0000 Manifest next update: Fri 29 Aug 2025 15:58:56 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: hQBzKZqNLMG6ySHEihKs/Znit/DkvCmFDkt+NaABzsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8498 (0x2132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Aug 22 15:58:56 2025 GMT Not After : Aug 29 15:58:56 2025 GMT Subject: CN=68a893c0-5ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:64:74:e9:9c:69:1b:36:3e:9e:88:c4:39:2f: d9:29:d0:d3:c3:23:35:06:88:21:b0:4d:bb:92:88: 71:3a:68:c4:b2:e9:06:80:21:4c:36:5e:f5:c0:c4: 57:98:6b:fa:7f:e0:a8:f5:ef:1f:15:8f:73:65:68: f2:ff:0f:36:0e:52:56:81:98:99:4c:2d:e5:02:18: 28:d4:76:2f:1d:5b:2c:e2:49:6a:f9:51:35:9f:38: 2d:8e:cb:65:89:fd:58:a1:0e:5a:5b:c0:14:a0:f1: c6:84:f1:fc:00:55:69:5a:2f:e1:44:3a:b5:f2:ef: 34:a6:01:a4:ad:b2:a4:56:35:27:9a:23:55:d5:a8: bb:e2:33:2f:ea:28:91:3b:43:ec:70:e2:1f:5c:51: 1a:01:f0:57:2d:84:d2:5f:3c:f1:1c:85:08:c4:07: af:6c:ac:45:f3:6b:4c:cd:2b:73:6a:97:6a:f4:8a: 8e:9c:1d:42:44:62:70:a9:a2:bf:ea:58:f9:d7:10: 23:62:ba:86:b7:1c:52:ed:73:34:11:05:09:30:41: f2:48:92:91:c8:35:cd:5b:63:54:2f:e1:d3:ff:ed: 6a:f5:1d:7f:17:4e:df:56:89:09:e3:41:19:a0:40: 6d:fd:72:9a:36:40:38:b6:9c:0c:12:1a:65:9d:bf: ea:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2A:35:C4:EB:13:AA:09:28:8C:ED:50:14:19:4F:4F:8B:A1:0C:C3 X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:cf:bf:1b:7f:72:c4:87:4d:ea:a0:54:2f:df:23:66:8d:3e: a4:9a:bc:be:10:bf:e4:28:c7:50:9d:6d:fe:06:09:3a:ee:bd: d9:97:13:d8:8a:7c:86:3f:17:e3:79:95:be:3d:e4:bf:ea:5b: c5:db:93:51:e4:d3:48:bd:27:51:0d:f1:b6:af:da:14:a7:5f: d7:42:56:fd:d7:51:45:04:01:b0:99:b4:24:b5:e2:34:73:9f: 1c:33:d3:72:57:39:a1:24:77:96:71:24:f0:b9:6b:b1:02:a4: 1a:3e:23:12:1c:e4:5b:31:80:b2:23:98:f5:81:8d:52:62:c1: a1:17:7d:d9:d9:d1:13:15:1b:14:43:0b:10:95:5b:9e:2a:f2: 7b:7d:4b:59:ce:56:17:1e:5a:e4:30:22:07:a7:d0:02:55:ea: ce:38:2a:c8:37:ba:a9:3a:af:6d:9a:d1:cc:3a:74:8d:05:8c: d7:c9:42:43:5f:b3:aa:f9:ca:bf:75:1d:21:db:2b:9d:f6:51: a2:aa:7a:20:fc:37:54:00:48:27:0d:ba:4c:f3:c9:35:3f:a0: 1d:b6:23:ba:a8:fc:4c:df:d8:78:58:5a:59:8b:c8:e5:16:d4: 36:15:5c:1d:2d:91:bb:39:e7:ca:22:ad:f5:da:bb:db:ae:92: d5:ab:0d:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUwODIyMTU1ODU2WhcNMjUwODI5MTU1ODU2WjAYMRYwFAYD VQQDEw02OGE4OTNjMC01ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmR06ZxpGzY+nojEOS/ZKdDTwyM1BoghsE27kohxOmjEsukGgCFMNl71wMRX mGv6f+Co9e8fFY9zZWjy/w82DlJWgZiZTC3lAhgo1HYvHVss4klq+VE1nzgtjstl if1YoQ5aW8AUoPHGhPH8AFVpWi/hRDq18u80pgGkrbKkVjUnmiNV1ai74jMv6iiR O0PscOIfXFEaAfBXLYTSXzzxHIUIxAevbKxF82tMzStzapdq9IqOnB1CRGJwqaK/ 6lj51xAjYrqGtxxS7XM0EQUJMEHySJKRyDXNW2NUL+HT/+1q9R1/F07fVokJ40EZ oEBt/XKaNkA4tpwMEhplnb/qrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4qNcTr E6oJKIztUBQZT0+LoQzDMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKz78bf3LEh03qoFQv3yNmjT6kmry+EL/kKMdQnW3+Bgk67r3ZlxPY inyGPxfjeZW+PeS/6lvF25NR5NNIvSdRDfG2r9oUp1/XQlb911FFBAGwmbQkteI0 c58cM9NyVzmhJHeWcSTwuWuxAqQaPiMSHORbMYCyI5j1gY1SYsGhF33Z2dETFRsU QwsQlVueKvJ7fUtZzlYXHlrkMCIHp9ACVerOOCrIN7qpOq9tmtHMOnSNBYzXyUJD X7Oq+cq/dR0h2yud9lGiqnog/DdUAEgnDbpM88k1P6AdtiO6qPxM39h4WFpZi8jl FtQ2FVwdLZG7OefKIq312rvbrpLVqw1D -----END CERTIFICATE-----Generated at Sat Aug 23 17:54:06 2025 by rpki-client