$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: OP3nyp0u8S6rn4ZENFB/IWcWMdm0l8Fq++SVviMf19s= Subject key identifier: 68:67:56:D6:2B:DE:CE:A8:6B:C2:1E:F3:36:A1:71:F7:E3:2C:D2:DA Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 0434 Signing time: Mon 03 Nov 2025 00:13:41 +0000 Manifest this update: Mon 03 Nov 2025 00:13:40 +0000 Manifest next update: Mon 10 Nov 2025 00:13:40 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: HnhIXJLMWvaxzLCtZPqN3QAJVYcJjs5u1BBmuWUocZs=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: RBXkfOsNfCkPwqzSfm7Z1YZlXHjwWFawgr5+RKn+Spg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Nov 3 00:13:40 2025 GMT Not After : Nov 10 00:13:40 2025 GMT Subject: CN=6907f3b4-a065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:3e:a2:24:83:28:a8:c6:df:b9:74:5d:5b: a3:8f:68:7f:68:5e:1a:81:64:9b:81:68:6f:b4:b1: 61:8a:89:94:32:05:d6:21:68:c3:ab:94:e1:7f:9b: fc:1e:5e:6e:e1:5f:21:75:f7:74:6e:fb:d3:3b:a4: 01:43:b0:ab:2d:a0:ce:2e:50:5d:a7:ef:02:da:f4: 9d:43:3a:87:b6:7a:4e:4e:34:ff:d2:fd:3b:52:02: 9d:bd:95:ce:84:3b:b7:95:9a:3c:18:62:46:2a:09: 8f:c8:4d:ab:dd:a4:57:4c:c9:66:3a:76:01:85:d3: 18:1a:26:f8:94:db:d7:52:07:a7:19:1f:c4:7e:7f: 11:a9:25:70:65:c5:d4:d1:70:74:b2:10:d4:6b:bc: 7e:34:75:95:98:58:85:e3:6f:64:57:49:83:5e:2b: 72:67:3b:fb:af:63:9b:02:d3:c0:e4:a2:09:8a:b6: fa:5b:63:7c:86:2e:cf:74:56:35:d8:10:66:c2:e7: f8:90:bf:e3:29:a3:5e:4a:3c:d3:9f:f8:62:4e:d1: 0a:58:fb:ac:33:bb:b4:96:10:55:33:a3:94:6a:3a: cd:a3:97:a4:e0:fa:8d:1a:b5:e9:23:b9:ef:b9:c6: ff:06:2d:f0:f5:4a:8d:df:f5:e0:9c:e7:ab:d3:d9: f4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:67:56:D6:2B:DE:CE:A8:6B:C2:1E:F3:36:A1:71:F7:E3:2C:D2:DA X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:00:bc:35:23:0a:c3:c8:8f:92:1b:c3:f1:c4:e7:a5:1d:95: 5c:3e:09:2d:a6:0b:83:05:b3:80:99:ef:20:37:3f:13:a5:bd: be:11:04:04:32:3a:48:e6:79:21:27:ca:3c:62:c4:53:4a:5c: 62:72:57:38:84:eb:ba:f4:4b:70:b7:6c:cf:db:61:64:41:7f: 4e:ba:0c:d4:22:b3:f9:bb:0d:2b:10:96:cb:60:a9:fc:20:4a: 17:a8:b0:45:24:56:48:99:fa:85:c4:8b:d3:d0:0b:cf:e1:84: 44:ff:5d:68:d0:9b:fd:cb:0c:79:f5:83:f3:f8:6f:4e:42:93: f6:68:53:50:5b:44:b5:a1:58:e0:76:3f:eb:33:5b:99:34:5e: 4b:a9:43:10:fd:d3:99:9c:89:dc:e8:dc:04:e0:de:da:0f:e4: 60:2e:fc:7e:50:eb:05:71:c2:e3:91:75:23:f7:cd:7a:e4:99: 89:fe:be:c1:3b:f3:77:bd:1b:7f:3b:7e:bc:af:4b:c8:23:66: cf:8b:28:7b:ca:1a:d2:73:a5:f4:12:85:fa:8c:c4:d8:ac:d8: 37:7d:c8:f4:1c:85:f3:16:6a:13:d2:83:58:12:70:4f:8a:e3: 5b:e5:27:92:4b:39:41:51:eb:41:0d:51:83:73:1b:93:0a:e3: 6d:9a:77:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjUxMTAzMDAxMzQwWhcNMjUxMTEwMDAxMzQwWjAYMRYwFAYD VQQDEw02OTA3ZjNiNC1hMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWU+oiSDKKjG37l0XVujj2h/aF4agWSbgWhvtLFhiomUMgXWIWjDq5Thf5v8 Hl5u4V8hdfd0bvvTO6QBQ7CrLaDOLlBdp+8C2vSdQzqHtnpOTjT/0v07UgKdvZXO hDu3lZo8GGJGKgmPyE2r3aRXTMlmOnYBhdMYGib4lNvXUgenGR/Efn8RqSVwZcXU 0XB0shDUa7x+NHWVmFiF429kV0mDXityZzv7r2ObAtPA5KIJirb6W2N8hi7PdFY1 2BBmwuf4kL/jKaNeSjzTn/hiTtEKWPusM7u0lhBVM6OUajrNo5ek4PqNGrXpI7nv ucb/Bi3w9UqN3/XgnOer09n0RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhnVtYr 3s6oa8Ie8zahcffjLNLaMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ALw1IwrDyI+SG8PxxOelHZVcPgktpguDBbOAme8gNz8Tpb2+EQQE MjpI5nkhJ8o8YsRTSlxiclc4hOu69Etwt2zP22FkQX9OugzUIrP5uw0rEJbLYKn8 IEoXqLBFJFZImfqFxIvT0AvP4YRE/11o0Jv9ywx59YPz+G9OQpP2aFNQW0S1oVjg dj/rM1uZNF5LqUMQ/dOZnInc6NwE4N7aD+RgLvx+UOsFccLjkXUj98165JmJ/r7B O/N3vRt/O368r0vII2bPiyh7yhrSc6X0EoX6jMTYrNg3fcj0HIXzFmoT0oNYEnBP iuNb5SeSSzlBUetBDVGDcxuTCuNtmneP -----END CERTIFICATE-----Generated at Tue Nov 4 15:54:15 2025 by rpki-client