$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: xRawFqiidBLBh9yuXggnCoX/KwPVE9nI62ETCfdJYO8= Subject key identifier: DB:05:A7:3A:BE:D5:85:95:F9:75:48:49:21:12:6B:01:7A:F3:40:9C Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 05A0 Signing time: Wed 05 Nov 2025 00:50:36 +0000 Manifest this update: Wed 05 Nov 2025 00:50:36 +0000 Manifest next update: Wed 12 Nov 2025 00:50:36 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: ZQXStkfU8QQ79/TrH30fztHePtwmmapGKYkYTLsG2eo=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: puxNQ3IQMgK+455LW/i47TSp2iaIUiKVoUSQH0z/5bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Nov 5 00:50:36 2025 GMT Not After : Nov 12 00:50:36 2025 GMT Subject: CN=690a9f5c-a1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e8:ef:ec:f5:8c:1c:d4:f5:96:16:e3:01:de: 04:ca:69:a0:9a:48:36:00:06:01:71:45:10:8d:2f: 4f:0a:99:2d:67:c2:63:1e:8a:c7:99:45:46:bf:2a: a4:1d:d4:a8:23:0a:1d:f7:10:a3:82:97:f6:b7:3d: 7b:a8:9f:59:c6:ca:af:b0:36:67:e2:47:df:a1:25: 69:1c:f3:de:d9:9f:48:da:d6:92:bb:e7:fc:89:98: 09:89:aa:7e:c2:21:c0:d3:6a:ef:03:49:33:c0:94: 42:04:62:e6:e8:eb:ff:4b:a3:ca:4a:9b:13:55:e1: 78:d8:99:b5:0e:da:c5:68:0c:cb:85:4f:7e:7a:99: 87:97:4c:b6:47:47:54:b4:55:80:38:c8:94:8b:0a: 74:ae:61:d6:71:de:c3:4d:ee:84:4c:d9:50:b9:be: 9f:c3:3c:9b:31:c3:8e:96:77:d3:52:d1:0c:f6:62: fa:11:d7:96:6c:6a:ca:14:1e:12:33:d5:3e:b2:27: 9d:8d:e1:65:9c:a8:fe:ce:74:cf:cb:b2:af:e6:64: 63:b7:2f:18:a1:5f:28:3f:3a:60:21:8d:71:45:60: fa:06:73:ff:f0:4d:40:84:45:67:97:c1:a3:bd:0a: 87:5d:8c:57:b4:b8:32:3f:6c:e9:8a:c2:b2:b5:6a: a3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:05:A7:3A:BE:D5:85:95:F9:75:48:49:21:12:6B:01:7A:F3:40:9C X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:44:a2:a9:ce:f8:e2:f1:78:93:76:93:e6:d9:a2:dd:72:1d: 4c:b4:39:be:3d:d1:08:83:20:fe:41:a0:21:a3:19:17:36:c5: 82:99:3d:f1:37:92:e5:4b:61:e3:d4:17:3c:09:b2:4d:e0:87: 8f:b9:28:07:90:05:52:42:5b:83:a6:86:f4:f3:5c:0b:b3:26: c0:c2:53:6b:fc:f7:7b:6e:0c:3d:31:fe:cb:1a:19:20:b4:6c: ba:a0:85:0e:c3:f6:52:16:79:98:56:94:7c:06:ee:ba:2b:eb: dc:0b:74:e3:70:67:25:2f:31:c1:86:05:a3:f0:1e:18:b6:98: 6b:f6:75:54:b1:4a:b7:85:78:30:a9:87:24:e9:41:a5:b5:ea: 9e:93:b6:56:7c:9d:44:9a:f8:a1:d3:5e:e0:a4:e9:1b:9e:11: 8b:cf:ee:65:15:8f:8b:0f:db:f0:1d:fc:a9:8b:43:87:dc:58: 25:c6:29:69:be:77:58:06:22:6e:c2:aa:54:2a:8c:91:a4:e5: 81:a7:7f:11:80:44:3e:79:04:f5:ba:93:b8:ee:b0:f9:46:ee: 4f:5c:14:35:dd:3c:e1:ab:eb:f3:c5:97:a9:87:7d:76:80:eb: f1:81:fe:72:6c:96:59:0c:a7:78:c1:6e:bf:71:73:c8:60:6d: 40:18:85:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUxMTA1MDA1MDM2WhcNMjUxMTEyMDA1MDM2WjAYMRYwFAYD VQQDEw02OTBhOWY1Yy1hMWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtujv7PWMHNT1lhbjAd4Eymmgmkg2AAYBcUUQjS9PCpktZ8JjHorHmUVGvyqk HdSoIwod9xCjgpf2tz17qJ9ZxsqvsDZn4kffoSVpHPPe2Z9I2taSu+f8iZgJiap+ wiHA02rvA0kzwJRCBGLm6Ov/S6PKSpsTVeF42Jm1DtrFaAzLhU9+epmHl0y2R0dU tFWAOMiUiwp0rmHWcd7DTe6ETNlQub6fwzybMcOOlnfTUtEM9mL6EdeWbGrKFB4S M9U+siedjeFlnKj+znTPy7Kv5mRjty8YoV8oPzpgIY1xRWD6BnP/8E1AhEVnl8Gj vQqHXYxXtLgyP2zpisKytWqj3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsFpzq+ 1YWV+XVISSESawF680CcMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPRKKpzvji8XiTdpPm2aLdch1MtDm+PdEIgyD+QaAhoxkXNsWCmT3x N5LlS2Hj1Bc8CbJN4IePuSgHkAVSQluDpob081wLsybAwlNr/Pd7bgw9Mf7LGhkg tGy6oIUOw/ZSFnmYVpR8Bu66K+vcC3TjcGclLzHBhgWj8B4Ytphr9nVUsUq3hXgw qYck6UGlteqek7ZWfJ1Emvih017gpOkbnhGLz+5lFY+LD9vwHfypi0OH3Fglxilp vndYBiJuwqpUKoyRpOWBp38RgEQ+eQT1upO47rD5Ru5PXBQ13Tzhq+vzxZeph312 gOvxgf5ybJZZDKd4wW6/cXPIYG1AGIU+ -----END CERTIFICATE-----Generated at Wed Nov 5 15:02:57 2025 by rpki-client