$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: NltFt+aY8EIP/uB4mukH497TxWD/dZ45WH/5P8FTDIY= Subject key identifier: BA:6A:00:21:11:92:45:28:D6:D3:8A:F2:18:51:25:E9:84:5B:74:C0 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 34FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 34E9 Signing time: Tue 04 Nov 2025 15:21:58 +0000 Manifest this update: Tue 04 Nov 2025 15:21:58 +0000 Manifest next update: Tue 11 Nov 2025 15:21:58 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: aZFZB2bdvR8z/La7g7O2g+VeZDih65RRgWLt3190QVk=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Q+UMsPeyfxUm55P4fMvGVYmfZGcp4BR3EDI4z+jAzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13567 (0x34ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Nov 4 15:21:58 2025 GMT Not After : Nov 11 15:21:58 2025 GMT Subject: CN=690a1a16-c079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:8e:65:a0:10:3c:4f:fd:12:84:47:22:74: 28:03:b8:d4:ca:41:dd:69:79:e8:7b:69:f7:12:fa: 7f:ce:06:c9:cc:3c:e4:9c:67:e4:d9:46:c7:ce:18: a0:7e:95:d0:b2:19:6c:aa:39:c4:bb:4d:91:2a:9d: b4:29:fc:75:77:2b:ab:81:15:0e:9a:b1:99:f7:13: eb:dc:76:19:ba:8a:91:9f:9a:4c:49:86:d5:ae:89: 65:68:2c:ee:67:68:79:ab:a9:1f:bf:0f:90:92:1a: d6:95:0b:a2:8d:39:ee:c5:03:0f:59:0f:cc:84:f4: ed:56:f4:a4:57:24:20:e0:e4:63:5e:13:8d:77:79: 42:5e:08:ca:f4:9d:3b:88:e5:f4:89:1d:e2:d5:36: 93:df:a0:2c:87:5c:ae:99:1d:50:56:6a:f1:d2:33: 75:f9:e5:00:f7:be:04:1b:f5:90:f6:78:0a:60:94: aa:f4:ee:46:79:bc:1a:b9:62:0d:48:c6:53:6b:3b: ba:ba:84:40:12:82:62:bc:03:f9:2d:47:96:b2:9a: f4:53:aa:35:5d:a2:ce:6c:d7:57:bf:f5:52:39:6f: 3d:a8:75:11:8e:1c:00:10:8f:ec:74:7c:2e:30:f7: 20:d1:d1:8c:1b:77:02:f5:bb:40:fe:eb:c5:93:24: 33:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6A:00:21:11:92:45:28:D6:D3:8A:F2:18:51:25:E9:84:5B:74:C0 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d0:57:b1:96:c8:70:67:f2:74:8c:c6:bc:59:22:d4:44:8e: 6f:fe:97:65:bd:87:83:f7:41:68:35:3c:e9:cf:08:25:87:4f: ce:7a:d5:16:0c:01:fd:79:d6:da:49:77:67:31:d1:f5:87:14: 0d:c4:21:88:78:96:76:be:0d:81:32:68:c8:d7:f1:60:84:09: de:22:cc:16:f8:1c:f0:98:43:a0:bd:9e:7f:0a:47:8d:65:45: c3:fa:b9:c7:32:06:6c:44:0c:95:c5:d5:51:27:ef:33:c0:1f: df:74:16:34:a8:26:ae:70:9f:ee:c5:f3:4d:52:bf:64:72:59: 56:b2:52:00:6f:39:f7:1f:0d:77:77:c0:6a:3d:8a:b7:7d:8d: 16:b5:69:80:68:0a:4c:5f:c9:0c:fb:13:e7:55:58:81:12:2d: e4:03:b4:1c:52:54:d1:a6:62:2e:0e:93:c4:1f:f5:ee:10:5e: d8:d7:45:27:a7:16:ae:ce:43:af:50:3b:64:bc:a8:ee:94:2a: 86:be:bb:c5:07:1f:19:6a:cd:43:ed:3e:c6:76:e5:d8:b0:e3: c3:c6:ba:7f:a8:68:97:c0:d7:4d:c5:74:da:49:9a:b6:34:dd: b7:63:22:04:7d:48:ef:c1:b3:43:bd:1a:20:02:da:2b:95:c2: 31:64:6d:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUxMTA0MTUyMTU4WhcNMjUxMTExMTUyMTU4WjAYMRYwFAYD VQQDEw02OTBhMWExNi1jMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpWOZaAQPE/9EoRHInQoA7jUykHdaXnoe2n3Evp/zgbJzDzknGfk2UbHzhig fpXQshlsqjnEu02RKp20Kfx1dyurgRUOmrGZ9xPr3HYZuoqRn5pMSYbVrollaCzu Z2h5q6kfvw+QkhrWlQuijTnuxQMPWQ/MhPTtVvSkVyQg4ORjXhONd3lCXgjK9J07 iOX0iR3i1TaT36Ash1yumR1QVmrx0jN1+eUA974EG/WQ9ngKYJSq9O5GebwauWIN SMZTazu6uoRAEoJivAP5LUeWspr0U6o1XaLObNdXv/VSOW89qHURjhwAEI/sdHwu MPcg0dGMG3cC9btA/uvFkyQzUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpqACER kkUo1tOK8hhRJemEW3TAMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd0FexlshwZ/J0jMa8WSLURI5v/pdlvYeD90FoNTzpzwglh0/OetUW DAH9edbaSXdnMdH1hxQNxCGIeJZ2vg2BMmjI1/FghAneIswW+BzwmEOgvZ5/CkeN ZUXD+rnHMgZsRAyVxdVRJ+8zwB/fdBY0qCaucJ/uxfNNUr9kcllWslIAbzn3Hw13 d8BqPYq3fY0WtWmAaApMX8kM+xPnVViBEi3kA7QcUlTRpmIuDpPEH/XuEF7Y10Un pxauzkOvUDtkvKjulCqGvrvFBx8Zas1D7T7GduXYsOPDxrp/qGiXwNdNxXTaSZq2 NN23YyIEfUjvwbNDvRogAtorlcIxZG17 -----END CERTIFICATE-----Generated at Tue Nov 4 19:11:37 2025 by rpki-client