$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft File: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft (raw, json) Hash identifier: SiC/PjOVR/ZZtAHeSz+uZcu56sZJwzGodTre6L8foCE= Subject key identifier: A4:32:99:67:D5:36:78:AF:81:52:76:30:A4:98:71:3F:4B:4A:AB:D5 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft Manifest number: B8 Signing time: Mon 03 Nov 2025 06:28:16 +0000 Manifest this update: Mon 03 Nov 2025 06:28:15 +0000 Manifest next update: Mon 10 Nov 2025 06:28:15 +0000 Files and hashes: 1: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl (hash: UfW5wYYwt05xKDhOOxt76rSbyFzaGrS4PnDfATcVzyI=) 2: B3C1030CACDC11F0BA52705AC4F9AE02.roa (hash: rKqA3uQTl2K6WCyRtdt2sqBcSBeB7Hrkp/ESC7yZWKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Nov 3 06:28:15 2025 GMT Not After : Nov 10 06:28:15 2025 GMT Subject: CN=69084b7f-c9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:9e:c5:c4:1a:27:b4:3e:a4:fa:3a:fa:a5: cd:02:0a:d8:78:9c:46:ba:a1:ba:39:e7:ad:9c:cb: df:fb:62:fc:ec:35:e8:77:6a:39:42:ae:36:20:48: 35:7b:08:ce:4a:b4:4b:f3:f8:63:40:86:19:ab:eb: e0:dd:1e:da:38:d6:95:dd:8d:bc:46:3d:c1:31:70: c0:c3:e4:20:fc:4c:f3:be:98:ca:6e:4a:96:50:9e: 04:23:8e:9a:61:6a:80:bf:99:a2:fe:3c:6b:fd:c2: 74:91:0d:c7:60:0b:81:8c:c2:0e:f1:84:9f:e6:7a: 7e:7e:96:3c:d0:9a:40:1a:92:4e:58:f9:0d:17:e7: 4f:a7:ea:1f:a0:31:9f:ba:fa:0e:04:fd:0e:33:84: 08:6d:b3:a0:cb:78:9a:2b:9d:8b:15:76:ab:78:cd: 6f:66:59:9b:a5:6f:7c:17:8b:88:82:ed:a7:b3:6c: 9b:1b:02:47:f2:62:e8:18:81:b6:7e:50:3b:f0:ea: 3b:a4:ae:ec:6a:f3:13:69:d7:f1:71:13:f1:4b:ae: d2:9e:5e:fb:3b:e2:69:3e:ba:10:47:8a:25:6c:b9: 18:4f:9f:eb:c6:4a:cd:f3:37:ff:31:48:ee:5b:fd: 9f:50:37:00:d1:ab:ef:da:b3:b6:90:11:97:77:3f: 48:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:32:99:67:D5:36:78:AF:81:52:76:30:A4:98:71:3F:4B:4A:AB:D5 X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:91:5f:67:9e:b8:1d:b8:89:8c:d6:6c:2e:f1:68:24:97:3c: e4:1a:51:33:92:ed:d1:4c:27:e3:af:dc:53:5f:c6:58:71:6f: 49:e9:ac:51:7e:9c:da:2b:5f:3d:f0:74:57:41:66:0a:79:51: d1:52:0c:7d:c8:3a:db:46:ad:37:81:d0:80:d0:57:5f:f6:da: e0:da:ae:ee:41:27:9a:6d:3a:68:d2:2b:64:b7:63:66:c5:de: d5:87:47:4c:da:89:96:21:50:a6:6f:0d:f3:da:0d:74:3e:91: 38:67:de:00:ef:06:77:50:36:7f:04:2a:29:9b:a4:1e:7b:6d: ed:0c:f6:30:67:db:b6:f7:3d:d6:3a:8c:0b:3a:7d:ac:d4:4c: f6:c4:ba:63:9f:05:05:48:49:c7:5c:33:3d:92:ba:94:6c:b1: f6:aa:60:17:95:bf:0d:11:45:3c:a2:1c:06:1a:12:58:0d:2c: ab:bb:07:f9:d3:aa:2e:84:c5:09:6c:3f:62:2c:d4:ac:57:20: 11:a3:cb:f4:34:e2:e3:8b:1d:eb:bf:24:8e:75:cf:81:ab:03: d2:16:37:1b:5c:59:84:73:7f:b9:8d:6a:da:5a:ef:66:df:bb: 05:6b:a7:8a:87:e7:a0:80:65:f9:e1:85:2d:a2:5d:0f:85:67: f5:cc:b5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjUxMTAzMDYyODE1WhcNMjUxMTEwMDYyODE1WjAYMRYwFAYD VQQDEw02OTA4NGI3Zi1jOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNSexcQaJ7Q+pPo6+qXNAgrYeJxGuqG6OeetnMvf+2L87DXod2o5Qq42IEg1 ewjOSrRL8/hjQIYZq+vg3R7aONaV3Y28Rj3BMXDAw+Qg/EzzvpjKbkqWUJ4EI46a YWqAv5mi/jxr/cJ0kQ3HYAuBjMIO8YSf5np+fpY80JpAGpJOWPkNF+dPp+ofoDGf uvoOBP0OM4QIbbOgy3iaK52LFXareM1vZlmbpW98F4uIgu2ns2ybGwJH8mLoGIG2 flA78Oo7pK7savMTadfxcRPxS67Snl77O+JpProQR4olbLkYT5/rxkrN8zf/MUju W/2fUDcA0avv2rO2kBGXdz9IxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQymWfV NnivgVJ2MKSYcT9LSqvVMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CNjIyRkE4QUQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpR MkNsQzBuNU1YNURaZ1RnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBikV9nnrgduImM1mwu8WgklzzkGlEzku3RTCfjr9xTX8ZYcW9J6axR fpzaK1898HRXQWYKeVHRUgx9yDrbRq03gdCA0Fdf9trg2q7uQSeabTpo0itkt2Nm xd7Vh0dM2omWIVCmbw3z2g10PpE4Z94A7wZ3UDZ/BCopm6Qee23tDPYwZ9u29z3W OowLOn2s1Ez2xLpjnwUFSEnHXDM9krqUbLH2qmAXlb8NEUU8ohwGGhJYDSyruwf5 06ouhMUJbD9iLNSsVyARo8v0NOLjix3rvySOdc+BqwPSFjcbXFmEc3+5jWraWu9m 37sFa6eKh+eggGX54YUtol0PhWf1zLWd -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:08 2025 by rpki-client